date:20181018

[cas-user] CAS Version 5.3.4 Embedded Tomcat jar JAR entry FileNotFoundException

2018-10-18 Thread casuser

Dear All, 

I have just downloaded cas maven war overlay 5.3.4 , created thekeystore 

keytool -genkey -alias cas -keyalg RSA -validity 999 -keystore 
/etc/cas/thekeystore -ext san=dns:$mypc

and put in in /etc/cas/ folder. After that I ran the ./build.sh run command 
I am getting the error failed to scan JAR error. For this I have tried 
removing everything from my .m2/repository/ directory so that maven pulls 
all of the dependencies again but I am still getting this same error. 


This is the error 


2018-10-19 12:48:51,505 INFO 
[org.apereo.cas.configuration.DefaultCasConfigurationPropertiesSourceLocator] 
- 
2018-10-19 12:48:51,529 INFO 
[org.springframework.cloud.bootstrap.config.PropertySourceBootstrapConfiguration]
 
- 
2018-10-19 12:48:56,392 WARN 
[org.apereo.cas.config.CasCoreTicketsConfiguration] - 
2018-10-19 12:49:06,028 WARN 
[org.apache.tomcat.util.scan.StandardJarScanner] - 
java.io.FileNotFoundException: JAR entry 
WEB-INF/lib/tomcat-embed-core-8.5.34.jar!/javax/servlet/resources/web-jsptaglibrary_1_2.dtd
 
not found in 
/home/fazlarabby/.m2/repository/org/apereo/cas/cas-server-webapp-tomcat/5.3.4/cas-server-webapp-tomcat-5.3.4.war
at 
sun.net.www.protocol.jar.JarURLConnection.connect(JarURLConnection.java:144) 
~[?:1.8.0_181]
at 
sun.net.www.protocol.jar.JarURLConnection.getInputStream(JarURLConnection.java:152)
 
~[?:1.8.0_181]
at 
com.sun.org.apache.xerces.internal.impl.XMLEntityManager.setupCurrentEntity(XMLEntityManager.java:623)
 
~[?:1.8.0_181]
at 
com.sun.org.apache.xerces.internal.impl.XMLEntityManager.startEntity(XMLEntityManager.java:1304)
 
~[?:1.8.0_181]
at 
com.sun.org.apache.xerces.internal.impl.XMLEntityManager.startDTDEntity(XMLEntityManager.java:1270)
 
~[?:1.8.0_181]
at 
com.sun.org.apache.xerces.internal.impl.XMLDTDScannerImpl.setInputSource(XMLDTDScannerImpl.java:264)
 
~[?:1.8.0_181]
at 
com.sun.org.apache.xerces.internal.impl.XMLDocumentScannerImpl$DTDDriver.dispatch(XMLDocumentScannerImpl.java:1161)
 
~[?:1.8.0_181]
at 
com.sun.org.apache.xerces.internal.impl.XMLDocumentScannerImpl$DTDDriver.next(XMLDocumentScannerImpl.java:1045)
 
~[?:1.8.0_181]
at 
com.sun.org.apache.xerces.internal.impl.XMLDocumentScannerImpl$PrologDriver.next(XMLDocumentScannerImpl.java:959)
 
~[?:1.8.0_181]
at 
com.sun.org.apache.xerces.internal.impl.XMLDocumentScannerImpl.next(XMLDocumentScannerImpl.java:602)
 
~[?:1.8.0_181]
at 
com.sun.org.apache.xerces.internal.impl.XMLNSDocumentScannerImpl.next(XMLNSDocumentScannerImpl.java:112)
 
~[?:1.8.0_181]
at 
com.sun.org.apache.xerces.internal.impl.XMLDocumentFragmentScannerImpl.scanDocument(XMLDocumentFragmentScannerImpl.java:505)
 
~[?:1.8.0_181]
at 
com.sun.org.apache.xerces.internal.parsers.XML11Configuration.parse(XML11Configuration.java:842)
 
~[?:1.8.0_181]
at 
com.sun.org.apache.xerces.internal.parsers.XML11Configuration.parse(XML11Configuration.java:771)
 
~[?:1.8.0_181]
at 
com.sun.org.apache.xerces.internal.parsers.XMLParser.parse(XMLParser.java:141) 
~[?:1.8.0_181]
at 
com.sun.org.apache.xerces.internal.parsers.AbstractSAXParser.parse(AbstractSAXParser.java:1213)
 
~[?:1.8.0_181]
at 
com.sun.org.apache.xerces.internal.jaxp.SAXParserImpl$JAXPSAXParser.parse(SAXParserImpl.java:643)
 
~[?:1.8.0_181]
at org.apache.tomcat.util.digester.Digester.parse(Digester.java:1518) 
~[tomcat-embed-core-8.5.34.jar!/:8.5.34]
at 
org.apache.tomcat.util.descriptor.tld.TldParser.parse(TldParser.java:76) 
~[tomcat-embed-core-8.5.34.jar!/:8.5.34]
at org.apache.jasper.servlet.TldScanner.parseTld(TldScanner.java:279) 
~[tomcat-embed-jasper-8.5.34.jar!/:8.5.34]
at 
org.apache.jasper.servlet.TldScanner$TldScannerCallback.scan(TldScanner.java:313)
 
~[tomcat-embed-jasper-8.5.34.jar!/:8.5.34]
at 
org.apache.tomcat.util.scan.StandardJarScanner.process(StandardJarScanner.java:378)
 
~[tomcat-embed-core-8.5.34.jar!/:8.5.34]
at 
org.apache.tomcat.util.scan.StandardJarScanner.scan(StandardJarScanner.java:191)
 
~[tomcat-embed-core-8.5.34.jar!/:8.5.34]
at org.apache.jasper.servlet.TldScanner.scanJars(TldScanner.java:262) 
~[tomcat-embed-jasper-8.5.34.jar!/:8.5.34]
at org.apache.jasper.servlet.TldScanner.scan(TldScanner.java:104) 
~[tomcat-embed-jasper-8.5.34.jar!/:8.5.34]
at 
org.apache.jasper.servlet.JasperInitializer.onStartup(JasperInitializer.java:101)
 
~[tomcat-embed-jasper-8.5.34.jar!/:8.5.34]
at 
org.apache.catalina.core.StandardContext.startInternal(StandardContext.java:5245)
 
~[tomcat-embed-core-8.5.34.jar!/:8.5.34]
at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:150) 
~[tomcat-embed-core-8.5.34.jar!/:8.5.34]
at 
org.apache.catalina.core.ContainerBase$StartChild.call(ContainerBase.java:1420) 
~[tomcat-embed-core-8.5.34.jar!/:8.5.34]
at 
org.apache.catalina.core.ContainerBase$StartChild.call(ContainerBase.java:1410) 
~[tomcat-embed-core-8.5.34.jar!/:8.5.34]
at java.util.concurrent.FutureTask.run(FutureTask.java:266)

Re: [cas-user] Deploying Apereo CAS document updated (finally)!

2018-10-18 Thread Andy Ng

Nice work David! Definitely worth the wait :) - Andy

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/e2b88275-9acd-4068-9a47-63d6cf9e24a4%40apereo.org.

Re: [cas-user] Re: Which dependencies can I remove if I am not using embedded Tomcat?

2018-10-18 Thread Ganesh Prasad

Thanks, David. That's reassuring.

I have another question. If I need to force the Maven build to use a later 
version of a library, how do I do it, given that I don't have control over 
the transitive dependencies of the build?

For example, if I build CAS 5.3.4, the war file has 
'spring-webmvc-pac4j-3.0.0.jar', but I would like it to bundle 
'spring-webmvc-pac4j-3.0.6.jar' instead. For security or other reasons, the 
later version of the library may be recommended, but it doesn't 
automatically get bundled as part of the default build, even the very 
latest one.

Regards,
Ganesh

On Friday, 19 October 2018 04:02:06 UTC+11, David Curry wrote:
>
> Ganesh,
>
> Our CAS 5.2.7 WAR file is 121MB with the following dependencies:
>
> cas-server-support-mongo-service-registry
> cas-server-support-ldap
> cas-server-support-saml
> cas-server-support-saml-idp
> cas-server-support-saml-googleapps
> cas-server-support-duo
> cas-server-support-mongo-ticket-registry
>
>
> We deploy it to a standalone Tomcat, but we deploy as an exploded WAR file 
> (directory).
>
> --Dave
>
> --
>
> DAVID A. CURRY, CISSP
> *DIRECTOR OF INFORMATION SECURITY*
> INFORMATION TECHNOLOGY
>
> 71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
> +1 212 229-5300 x4728 • david.cu...@newschool.edu 
>
> [image: The New School]
>
>
> On Thu, Oct 18, 2018 at 12:48 PM Ganesh Prasad  > wrote:
>
>> Thanks for your help, Andy, and sorry for troubling you again.
>>
>> I could remove all the other libraries below:
>>
>> tomcat-embed-core
>> tomcat-embed-el
>> jstl
>> javax.inject
>> servlet-api
>>
>> But when I removed tomcat-catalina, I got an error when Maven was about 
>> to build the war file:
>>
>> Failed to execute goal 
>> org.apache.maven.plugins:maven-war-plugin:3.2.1:war (default-war) on 
>> project iam: Error assembling WAR: webxml attribute is required (or 
>> pre-existing WEB-INF/web.xml if executing in update mode)
>>
>> What could be going wrong?
>>
>> Also, since you deploy the war file to a standalone Tomcat server, how 
>> large is your war file? Mine is 102 MB. Is this reasonable?
>>
>> Regards,
>> Ganesh
>>
>> On Thursday, 18 October 2018 18:56:03 UTC+11, Andy Ng wrote:
>>>
>>> Hi Ganesh,
>>>
>>> I forget to clarify, our CAS server is also using Tomcat war deployment 
>>> (CAS 5.x, been running for at least 5 months now), and I don't have the 
>>> following in my pom.xml
>>>
>>>- tomcat-embed-core
>>>- tomcat-embed-el
>>>- tomcat-catalina
>>>- jstl
>>>
>>> So I think it is safe to assume those are not needed.
>>>
>>> As for:
>>>
>>>- javax.inject
>>>- servlet-api
>>>
>>> Those are used by us to enable some custom features. If I remove those 
>>> customization, those 2 are not needed as well.
>>>
>>> Hope these info give you more peace in mind when cleaning up your 
>>> pom.xml :)
>>>
>>> Cheers!
>>> - Andy
>>>
>>>
>>>
>>>
>>> -- 
>> - Website: https://apereo.github.io/cas
>> - Gitter Chatroom: https://gitter.im/apereo/cas
>> - List Guidelines: https://goo.gl/1VRrw7
>> - Contributions: https://goo.gl/mh7qDG
>> --- 
>> You received this message because you are subscribed to the Google Groups 
>> "CAS Community" group.
>> To unsubscribe from this group and stop receiving emails from it, send an 
>> email to cas-user+u...@apereo.org .
>> To view this discussion on the web visit 
>> https://groups.google.com/a/apereo.org/d/msgid/cas-user/86b2862a-dc53-4d78-94a6-352a49e40258%40apereo.org
>>  
>> 
>> .
>>
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/4728bf0a-4eb2-47be-9923-72803739bcef%40apereo.org.

Re: [cas-user] Deploying Apereo CAS document updated (finally)!

2018-10-18 Thread Matthew Uribe

This is *hugely* helpful, David. Thank you for all the work you've done on
this documentation, for sharing it, and for being so active in the CAS
community!

[image: Aims Community College Top Work Places 2018 - The Denver Post]
Matt Uribe
Programmer Analyst II
Information Technology
Aims Community College
970.339.6375
matthew.ur...@aims.edu
5401 W. 20th Street

Greeley, CO, 80634

www.aims.edu



*IT staff will never ask you for your username and password. *


*Always decline to provide the information and report such attempts to
the Help Desk (x6380).*



On Thu, Oct 18, 2018 at 1:14 PM David Curry 
wrote:

>
> For those of you who have been waiting (and waiting, and waiting, ...) for
> me to update my *Deploying Apereo CAS* documentation, I have finally
> gotten enough time to do that. Aside from dozens of minor updates and
> corrections accumulated over the last 8 or 9 months, the following major
> sections have been completed/added:
>
>- Customizing the CAS user interface
>   - How CAS themes work
>   - How Thymeleaf layouts work
>   - Add a new theme to the overlay
>   - Build and deploy the overlay
>   - Develop the custom theme
>- Google Apps (G Suite) integration
>   - Generate keys and certificates
>   - Configure Google single sign-on
>- Moving to production
>- Configuration changes
>   - Problems encountered
>
> As always, the documentation can be found here:
> https://dacurry-tns.github.io/deploying-apereo-cas/
> 
>
> This pretty much does it for now -- the document more or less reflects
> what we're running in production (CAS 5.2.*x*), and we don't plan to go
> to CAS 5.3 unless something forces us to. The next major release for us
> will be CAS 6.*something.* I will almost certainly be updating the
> document once we start working on that, since we use it internally as a
> reference as well. But that probably won't happen until the end of this
> year or the beginning of next year at the earliest (sorry).
>
> Enjoy,
> --Dave
>
> --
>
> DAVID A. CURRY, CISSP
> *DIRECTOR OF INFORMATION SECURITY*
> INFORMATION TECHNOLOGY
>
> 71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
> +1 212 229-5300 x4728 • david.cu...@newschool.edu
>
> [image: The New School]
>
> --
> - Website: https://apereo.github.io/cas
> 
> - Gitter Chatroom: https://gitter.im/apereo/cas
> 
> - List Guidelines: https://goo.gl/1VRrw7
> 
> - Contributions: https://goo.gl/mh7qDG
> 
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit
> https://groups.google.com/a/apereo.org/d/msgid/cas-user/CA%2Bd9XAO_O%2B9v2_Owur%2B95%2B6YE3%3DRjhQJB3SjvhpU0o1BbzH9JQ%40mail.gmail.com
> 
> .
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from

[cas-user] Re: Where exactly to add dependencies in pom.xml

2018-10-18 Thread Marcel Sansaricq

Note that I get the errors when:



*true*

On Thursday, October 18, 2018 at 4:31:06 PM UTC-4, Marcel Sansaricq wrote:
>
> Hi,
> I am working with cas-overlay-template-5.2 and getting war deployment 
> errors after adding dependencies. I added two dependencies (highlighted 
> below + pom.xml attached) under the default profile but I get errors when I 
> deploy the war to tomcat (error enclosed below). What is the best place to 
> add dependencies in the pom?
>
> Thanks in advance for your help,
> Marcel
>
> 
> 
> 
> false
> 
> default
> 
> 
> org.apereo.cas
> cas-server-webapp${app.server}
> ${cas.version}
> war
> runtime
> 
> 
> * *
> * org.apereo.cas*
> * cas-server-support-pac4j-webflow*
> * ${cas.version}*
> * *
> * *
> * org.apereo.cas*
> * cas-server-support-saml*
> * ${cas.version}*
> * *
> 
> 
>
>
> Error:
> 18-Oct-2018 16:11:46.764 INFO [main] 
> org.apache.catalina.startup.HostConfig.deployWAR Deploying web application 
> archive [C:\Tomcat\apache-tomcat-9.0.12\webapps\cas.war]
> 18-Oct-2018 16:11:58.224 SEVERE [main] 
> org.apache.catalina.core.ContainerBase.addChildInternal 
> ContainerBase.addChild: start:
>  org.apache.catalina.LifecycleException: Failed to initialize component 
> [org.apache.catalina.webresources.JarResourceSet@ea6147e]
> at 
> org.apache.catalina.util.LifecycleBase.handleSubClassException(LifecycleBase.java:441)
> at 
> org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:139)
> at 
> org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:173)
> at 
> org.apache.catalina.webresources.StandardRoot.startInternal(StandardRoot.java:724)
> at 
> org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:183)
> at 
> org.apache.catalina.core.StandardContext.resourcesStart(StandardContext.java:4758)
> at 
> org.apache.catalina.core.StandardContext.startInternal(StandardContext.java:4893)
> at 
> org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:183)
> at 
> org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:743)
> at 
> org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:719)
> at 
> org.apache.catalina.core.StandardHost.addChild(StandardHost.java:703)
> at 
> org.apache.catalina.startup.HostConfig.deployWAR(HostConfig.java:986)
> at 
> org.apache.catalina.startup.HostConfig$DeployWar.run(HostConfig.java:1858)
> at 
> java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:511)
> at java.util.concurrent.FutureTask.run(FutureTask.java:266)
> at 
> org.apache.tomcat.util.threads.InlineExecutorService.execute(InlineExecutorService.java:75)
> at 
> java.util.concurrent.AbstractExecutorService.submit(AbstractExecutorService.java:112)
> at 
> org.apache.catalina.startup.HostConfig.deployWARs(HostConfig.java:772)
> at 
> org.apache.catalina.startup.HostConfig.deployApps(HostConfig.java:426)
> at 
> org.apache.catalina.startup.HostConfig.start(HostConfig.java:1585)
> at 
> org.apache.catalina.startup.HostConfig.lifecycleEvent(HostConfig.java:308)
> at 
> org.apache.catalina.util.LifecycleBase.fireLifecycleEvent(LifecycleBase.java:123)
> at 
> org.apache.catalina.util.LifecycleBase.setStateInternal(LifecycleBase.java:424)
> at 
> org.apache.catalina.util.LifecycleBase.setState(LifecycleBase.java:367)
> at 
> org.apache.catalina.core.ContainerBase.startInternal(ContainerBase.java:969)
> at 
> org.apache.catalina.core.StandardHost.startInternal(StandardHost.java:839)
> at 
> org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:183)
> at 
> org.apache.catalina.core.ContainerBase$StartChild.call(ContainerBase.java:1429)
> at 
> org.apache.catalina.core.ContainerBase$StartChild.call(ContainerBase.java:1419)
> at java.util.concurrent.FutureTask.run(FutureTask.java:266)
> at 
> org.apache.tomcat.util.threads.InlineExecutorService.execute(InlineExecutorService.java:75)
> at 
> java.util.concurrent.AbstractExecutorService.submit(AbstractExecutorService.java:134)
> at 
> org.apache.catalina.core.ContainerBase.startInternal(ContainerBase.java:944)
> at 
> org.apache.catalina.core.StandardEngine.startInternal(StandardEngine.java:261)
> at 
> org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:183)
> at 
> org.apache.catalina.core.StandardService.startInternal(StandardService.java:422)
> at 
> org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:183)
> at 
>

Re: [cas-user] Deploying Apereo CAS document updated (finally)!

2018-10-18 Thread Trenton D. Adams


Would it maybe be better to re-integrate that into the CAS docs themselves?  
Then it can be maintained long term with the CAS project.

On 10/18/2018 01:14 PM, David Curry wrote:

For those of you who have been waiting (and waiting, and waiting, ...) for me 
to update my Deploying Apereo CAS documentation, I have finally gotten enough 
time to do that. Aside from dozens of minor updates and corrections accumulated 
over the last 8 or 9 months, the following major sections have been 
completed/added:

 *   Customizing the CAS user interface
*   How CAS themes work
*   How Thymeleaf layouts work
*   Add a new theme to the overlay
*   Build and deploy the overlay
*   Develop the custom theme
 *   Google Apps (G Suite) integration
*   Generate keys and certificates
*   Configure Google single sign-on
 *   Moving to production
*   Configuration changes
*   Problems encountered

As always, the documentation can be found here:   
https://dacurry-tns.github.io/deploying-apereo-cas/

This pretty much does it for now -- the document more or less reflects what 
we're running in production (CAS 5.2.x), and we don't plan to go to CAS 5.3 
unless something forces us to. The next major release for us will be CAS 
6.something. I will almost certainly be updating the document once we start 
working on that, since we use it internally as a reference as well. But that 
probably won't happen until the end of this year or the beginning of next year 
at the earliest (sorry).

Enjoy,
--Dave


--

DAVID A. CURRY, CISSP
DIRECTOR OF INFORMATION SECURITY
INFORMATION TECHNOLOGY

71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
+1 212 229-5300 x4728 • 
david.cu...@newschool.edu

[The New School]

--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email to 
cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CA%2Bd9XAO_O%2B9v2_Owur%2B95%2B6YE3%3DRjhQJB3SjvhpU0o1BbzH9JQ%40mail.gmail.com.


--
Trenton D. Adams
Senior Systems Analyst/Web Software Developer
Applications Unit - ITS
Athabasca University
(780) 675-6195

It is only when you are surrounded by a supportive team, that you can achieve
your best.  Instead of tearing people down, try building them up!

--
This communication is intended for the use of the recipient to whom it is 
addressed, and may contain confidential, personal, and or privileged 
information. Please contact us immediately if you are not the intended 
recipient of this communication, and do not copy, distribute, or take action 
relying on it. Any communications received in error, or subsequent reply, 
should be deleted or destroyed.
---

--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS Community" group.

To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/5a534ec0-fa84-fb27-209d-71744acc4d10%40athabascau.ca.

[cas-user] Where exactly to add dependencies in pom.xml

2018-10-18 Thread Marcel Sansaricq

Hi,
I am working with cas-overlay-template-5.2 and getting war deployment 
errors after adding dependencies. I added two dependencies (highlighted 
below + pom.xml attached) under the default profile but I get errors when I 
deploy the war to tomcat (error enclosed below). What is the best place to 
add dependencies in the pom?

Thanks in advance for your help,
Marcel




false

default


org.apereo.cas
cas-server-webapp${app.server}
${cas.version}
war
runtime


* *
* org.apereo.cas*
* cas-server-support-pac4j-webflow*
* ${cas.version}*
* *
* *
* org.apereo.cas*
* cas-server-support-saml*
* ${cas.version}*
* *




Error:
18-Oct-2018 16:11:46.764 INFO [main] 
org.apache.catalina.startup.HostConfig.deployWAR Deploying web application 
archive [C:\Tomcat\apache-tomcat-9.0.12\webapps\cas.war]
18-Oct-2018 16:11:58.224 SEVERE [main] 
org.apache.catalina.core.ContainerBase.addChildInternal 
ContainerBase.addChild: start:
 org.apache.catalina.LifecycleException: Failed to initialize component 
[org.apache.catalina.webresources.JarResourceSet@ea6147e]
at 
org.apache.catalina.util.LifecycleBase.handleSubClassException(LifecycleBase.java:441)
at 
org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:139)
at 
org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:173)
at 
org.apache.catalina.webresources.StandardRoot.startInternal(StandardRoot.java:724)
at 
org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:183)
at 
org.apache.catalina.core.StandardContext.resourcesStart(StandardContext.java:4758)
at 
org.apache.catalina.core.StandardContext.startInternal(StandardContext.java:4893)
at 
org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:183)
at 
org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:743)
at 
org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:719)
at 
org.apache.catalina.core.StandardHost.addChild(StandardHost.java:703)
at 
org.apache.catalina.startup.HostConfig.deployWAR(HostConfig.java:986)
at 
org.apache.catalina.startup.HostConfig$DeployWar.run(HostConfig.java:1858)
at 
java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:511)
at java.util.concurrent.FutureTask.run(FutureTask.java:266)
at 
org.apache.tomcat.util.threads.InlineExecutorService.execute(InlineExecutorService.java:75)
at 
java.util.concurrent.AbstractExecutorService.submit(AbstractExecutorService.java:112)
at 
org.apache.catalina.startup.HostConfig.deployWARs(HostConfig.java:772)
at 
org.apache.catalina.startup.HostConfig.deployApps(HostConfig.java:426)
at 
org.apache.catalina.startup.HostConfig.start(HostConfig.java:1585)
at 
org.apache.catalina.startup.HostConfig.lifecycleEvent(HostConfig.java:308)
at 
org.apache.catalina.util.LifecycleBase.fireLifecycleEvent(LifecycleBase.java:123)
at 
org.apache.catalina.util.LifecycleBase.setStateInternal(LifecycleBase.java:424)
at 
org.apache.catalina.util.LifecycleBase.setState(LifecycleBase.java:367)
at 
org.apache.catalina.core.ContainerBase.startInternal(ContainerBase.java:969)
at 
org.apache.catalina.core.StandardHost.startInternal(StandardHost.java:839)
at 
org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:183)
at 
org.apache.catalina.core.ContainerBase$StartChild.call(ContainerBase.java:1429)
at 
org.apache.catalina.core.ContainerBase$StartChild.call(ContainerBase.java:1419)
at java.util.concurrent.FutureTask.run(FutureTask.java:266)
at 
org.apache.tomcat.util.threads.InlineExecutorService.execute(InlineExecutorService.java:75)
at 
java.util.concurrent.AbstractExecutorService.submit(AbstractExecutorService.java:134)
at 
org.apache.catalina.core.ContainerBase.startInternal(ContainerBase.java:944)
at 
org.apache.catalina.core.StandardEngine.startInternal(StandardEngine.java:261)
at 
org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:183)
at 
org.apache.catalina.core.StandardService.startInternal(StandardService.java:422)
at 
org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:183)
at 
org.apache.catalina.core.StandardServer.startInternal(StandardServer.java:770)
at 
org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:183)
at org.apache.catalina.startup.Catalina.start(Catalina.java:682)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at 
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
at

[cas-user] Attributes: Inline Groovy Script to Return Array?

2018-10-18 Thread Oscar Frink

The examples and documentation are very clear and show how to return one 
item, but I cannot figure out how to successfully return an array of items.

For example, one of my attributes is an array of values. I want to mutate 
the source array and return a new array. The groovy compiler keeps telling 
me that I have syntax errors, but I cannot find any examples of this online 
- only the reference example of returning one item. Does anyone know of 
examples? I tried using the arrow function and that too was not recognized.

Reference:
https://apereo.github.io/cas/5.3.x/integration/Attribute-Release-Policies.html#inline-groovy-attributes


-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/d1e27d49-89b6-4297-b26e-a83ddf84a909%40apereo.org.

[cas-user] Deploying Apereo CAS document updated (finally)!

2018-10-18 Thread David Curry

For those of you who have been waiting (and waiting, and waiting, ...) for
me to update my *Deploying Apereo CAS* documentation, I have finally gotten
enough time to do that. Aside from dozens of minor updates and corrections
accumulated over the last 8 or 9 months, the following major sections have
been completed/added:

   - Customizing the CAS user interface
  - How CAS themes work
  - How Thymeleaf layouts work
  - Add a new theme to the overlay
  - Build and deploy the overlay
  - Develop the custom theme
   - Google Apps (G Suite) integration
  - Generate keys and certificates
  - Configure Google single sign-on
   - Moving to production
   - Configuration changes
  - Problems encountered

As always, the documentation can be found here:
https://dacurry-tns.github.io/deploying-apereo-cas/

This pretty much does it for now -- the document more or less reflects what
we're running in production (CAS 5.2.*x*), and we don't plan to go to CAS
5.3 unless something forces us to. The next major release for us will be
CAS 6.*something.* I will almost certainly be updating the document once we
start working on that, since we use it internally as a reference as well.
But that probably won't happen until the end of this year or the beginning
of next year at the earliest (sorry).

Enjoy,
--Dave

--

DAVID A. CURRY, CISSP
*DIRECTOR OF INFORMATION SECURITY*
INFORMATION TECHNOLOGY

71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
+1 212 229-5300 x4728 • david.cu...@newschool.edu

[image: The New School]

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CA%2Bd9XAO_O%2B9v2_Owur%2B95%2B6YE3%3DRjhQJB3SjvhpU0o1BbzH9JQ%40mail.gmail.com.

Re: [cas-user] Rerequesting CAS attributes

2018-10-18 Thread Ray Bon

Pavel,

I suspect getting attributes for protocol 3 will be same as SAML 1.1.

AttributePrincipal principal = (AttributePrincipal)request.getUserPrincipal();
Map attributes = principal.getAttributes();

There should be no need to go back to CAS.

Ray


On Thu, 2018-10-18 at 05:31 -0700, Pavel Antonov wrote:
Hi! I'm developing an API using the Spring Framework.
CAS server version 5.3.1, CAS protocol version 3 and CAS client included with 
Spring Security are used for user authentication.
Based on this example 
https://apereo.github.io/2018/02/20/cas-service-rbac-attributeresolution/ I use 
CAS attributes as user roles in my API.
It's necessary to rerequest CAS from my API to update the roles for already 
authenticated user.
Is it possible to do that without user browser redirects?

--
Ray Bon
Programmer analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/1539883619.2864.46.camel%40uvic.ca.

Re: [cas-user] Re: Which dependencies can I remove if I am not using embedded Tomcat?

2018-10-18 Thread David Curry

Ganesh,

Our CAS 5.2.7 WAR file is 121MB with the following dependencies:

cas-server-support-mongo-service-registry
cas-server-support-ldap
cas-server-support-saml
cas-server-support-saml-idp
cas-server-support-saml-googleapps
cas-server-support-duo
cas-server-support-mongo-ticket-registry


We deploy it to a standalone Tomcat, but we deploy as an exploded WAR file
(directory).

--Dave

--

DAVID A. CURRY, CISSP
*DIRECTOR OF INFORMATION SECURITY*
INFORMATION TECHNOLOGY

71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
+1 212 229-5300 x4728 • david.cu...@newschool.edu

[image: The New School]


On Thu, Oct 18, 2018 at 12:48 PM Ganesh Prasad  wrote:

> Thanks for your help, Andy, and sorry for troubling you again.
>
> I could remove all the other libraries below:
>
> tomcat-embed-core
> tomcat-embed-el
> jstl
> javax.inject
> servlet-api
>
> But when I removed tomcat-catalina, I got an error when Maven was about to
> build the war file:
>
> Failed to execute goal org.apache.maven.plugins:maven-war-plugin:3.2.1:war
> (default-war) on project iam: Error assembling WAR: webxml attribute is
> required (or pre-existing WEB-INF/web.xml if executing in update mode)
>
> What could be going wrong?
>
> Also, since you deploy the war file to a standalone Tomcat server, how
> large is your war file? Mine is 102 MB. Is this reasonable?
>
> Regards,
> Ganesh
>
> On Thursday, 18 October 2018 18:56:03 UTC+11, Andy Ng wrote:
>>
>> Hi Ganesh,
>>
>> I forget to clarify, our CAS server is also using Tomcat war deployment
>> (CAS 5.x, been running for at least 5 months now), and I don't have the
>> following in my pom.xml
>>
>>- tomcat-embed-core
>>- tomcat-embed-el
>>- tomcat-catalina
>>- jstl
>>
>> So I think it is safe to assume those are not needed.
>>
>> As for:
>>
>>- javax.inject
>>- servlet-api
>>
>> Those are used by us to enable some custom features. If I remove those
>> customization, those 2 are not needed as well.
>>
>> Hope these info give you more peace in mind when cleaning up your pom.xml
>> :)
>>
>> Cheers!
>> - Andy
>>
>>
>>
>>
>> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit
> https://groups.google.com/a/apereo.org/d/msgid/cas-user/86b2862a-dc53-4d78-94a6-352a49e40258%40apereo.org
> 
> .
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CA%2Bd9XAOp67wrF3TnWKtCR1LxmHazKOBvL%2BTw9qJTgdzjeVAf3g%40mail.gmail.com.

Re: [cas-user] Re: Which dependencies can I remove if I am not using embedded Tomcat?

2018-10-18 Thread Ganesh Prasad

Thanks for your help, Andy, and sorry for troubling you again.

I could remove all the other libraries below:

tomcat-embed-core
tomcat-embed-el
jstl
javax.inject
servlet-api

But when I removed tomcat-catalina, I got an error when Maven was about to 
build the war file:

Failed to execute goal org.apache.maven.plugins:maven-war-plugin:3.2.1:war 
(default-war) on project iam: Error assembling WAR: webxml attribute is 
required (or pre-existing WEB-INF/web.xml if executing in update mode)

What could be going wrong?

Also, since you deploy the war file to a standalone Tomcat server, how 
large is your war file? Mine is 102 MB. Is this reasonable?

Regards,
Ganesh

On Thursday, 18 October 2018 18:56:03 UTC+11, Andy Ng wrote:
>
> Hi Ganesh,
>
> I forget to clarify, our CAS server is also using Tomcat war deployment 
> (CAS 5.x, been running for at least 5 months now), and I don't have the 
> following in my pom.xml
>
>- tomcat-embed-core
>- tomcat-embed-el
>- tomcat-catalina
>- jstl
>
> So I think it is safe to assume those are not needed.
>
> As for:
>
>- javax.inject
>- servlet-api
>
> Those are used by us to enable some custom features. If I remove those 
> customization, those 2 are not needed as well.
>
> Hope these info give you more peace in mind when cleaning up your pom.xml 
> :)
>
> Cheers!
> - Andy
>
>
>
>
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/86b2862a-dc53-4d78-94a6-352a49e40258%40apereo.org.

[cas-user] Rerequesting CAS attributes

2018-10-18 Thread Pavel Antonov

Hi! I'm developing an API using the Spring Framework.
CAS server version 5.3.1, CAS protocol version 3 and CAS client included 
with Spring Security are used for user authentication.
Based on this example 
https://apereo.github.io/2018/02/20/cas-service-rbac-attributeresolution/ I 
use CAS attributes as user roles in my API.
It's necessary to rerequest CAS from my API to update the roles for already 
authenticated user.
Is it possible to do that without user browser redirects?

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/90aa4727-098f-4773-8ca8-3b34c3aa87a2%40apereo.org.

Re: [cas-user] Re: Which dependencies can I remove if I am not using embedded Tomcat?

2018-10-18 Thread Andy Ng

Hi Ganesh,

I forget to clarify, our CAS server is also using Tomcat war deployment 
(CAS 5.x, been running for at least 5 months now), and I don't have the 
following in my pom.xml

   - tomcat-embed-core
   - tomcat-embed-el
   - tomcat-catalina
   - jstl

So I think it is safe to assume those are not needed.

As for:

   - javax.inject
   - servlet-api

Those are used by us to enable some custom features. If I remove those 
customization, those 2 are not needed as well.

Hope these info give you more peace in mind when cleaning up your pom.xml :)

Cheers!
- Andy




-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/c12f652d-e66c-48a3-849d-15814a3741b0%40apereo.org.

Re: [cas-user] Re: Which dependencies can I remove if I am not using embedded Tomcat?

2018-10-18 Thread Ganesh and Sashi Prasad

Thanks, Andy, I will try this.

Yes, the cas-server-* ones are there because I need those features.

Regards,
Ganesh

On Thu, 18 Oct 2018 at 17:21, Andy Ng  wrote:

> Hi Ganesh,
>
> CAS war file will run fine by just the default cas overlay pom.xml (
> https://github.com/apereo/cas-overlay-template/blob/5.3/pom.xml)
> So what to keep really depends on what you need to add beyond the barebone
> CAS configuration.
>
> I think for all of the one starting with "cas-server", like:
>
>- cas-server-webapp${app.server},
>- cas-server-support-ldap,
>- cas-server-support-jdbc,
>- cas-server-support-pac4j-webflow,
>- cas-server-support-saml,
>- cas-server-support-pm,
>- cas-server-support-pm-ldap,
>- cas-server-support-cookie,
>- cas-server-support-throttle
>
> You are intentionally adding them to enable some features, so those
> definitely cannot be removed (unless you did not need them anymore)
>
> For the other, you can test whether or not you need the dependency by
> simply removing them and see what happens.
> If there is any build error or missing features, just add them back in.
> Repeat that for all your dependencies and you should be good to go.
>
>
> I don't think there will be many high risk with the above "try and error"
> method as long as your CAS still functional, however of course remove them
> at your own risk.
>
> Cheers!
> - Andy
>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit
> https://groups.google.com/a/apereo.org/d/msgid/cas-user/5c437751-39ee-4248-94af-38044c7ac439%40apereo.org
> 
> .
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAOEeopjK_LHqXEqoumToMUy6njv6kmBrpjEGtrFGWjwTcUhAjw%40mail.gmail.com.

[cas-user] Re: Which dependencies can I remove if I am not using embedded Tomcat?

2018-10-18 Thread Andy Ng

Hi Ganesh,

CAS war file will run fine by just the default cas overlay pom.xml 
(https://github.com/apereo/cas-overlay-template/blob/5.3/pom.xml)
So what to keep really depends on what you need to add beyond the barebone 
CAS configuration.

I think for all of the one starting with "cas-server", like:

   - cas-server-webapp${app.server},
   - cas-server-support-ldap,
   - cas-server-support-jdbc,
   - cas-server-support-pac4j-webflow,
   - cas-server-support-saml,
   - cas-server-support-pm,
   - cas-server-support-pm-ldap,
   - cas-server-support-cookie,
   - cas-server-support-throttle
   
You are intentionally adding them to enable some features, so those 
definitely cannot be removed (unless you did not need them anymore)

For the other, you can test whether or not you need the dependency by 
simply removing them and see what happens. 
If there is any build error or missing features, just add them back in. 
Repeat that for all your dependencies and you should be good to go.


I don't think there will be many high risk with the above "try and error" 
method as long as your CAS still functional, however of course remove them 
at your own risk. 

Cheers!
- Andy

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/5c437751-39ee-4248-94af-38044c7ac439%40apereo.org.

[cas-user] CAS Version 5.3.4 Embedded Tomcat jar JAR entry FileNotFoundException

Re: [cas-user] Deploying Apereo CAS document updated (finally)!

Re: [cas-user] Re: Which dependencies can I remove if I am not using embedded Tomcat?

Re: [cas-user] Deploying Apereo CAS document updated (finally)!

[cas-user] Re: Where exactly to add dependencies in pom.xml

Re: [cas-user] Deploying Apereo CAS document updated (finally)!

[cas-user] Where exactly to add dependencies in pom.xml

[cas-user] Attributes: Inline Groovy Script to Return Array?

[cas-user] Deploying Apereo CAS document updated (finally)!

Re: [cas-user] Rerequesting CAS attributes

Re: [cas-user] Re: Which dependencies can I remove if I am not using embedded Tomcat?

Re: [cas-user] Re: Which dependencies can I remove if I am not using embedded Tomcat?

[cas-user] Rerequesting CAS attributes

Re: [cas-user] Re: Which dependencies can I remove if I am not using embedded Tomcat?

Re: [cas-user] Re: Which dependencies can I remove if I am not using embedded Tomcat?

[cas-user] Re: Which dependencies can I remove if I am not using embedded Tomcat?

16 matches

Site Navigation

Mail list logo

Footer information