[cas-user] Jackson Kotlin Warning on Startup

[Wickham, Jeremy]

I am looking upgrade our CAS environment to 6.1.x and I am currently ironing 
out all of my errors/warnings. There is one warning I'm receiving

WARN [org.springframework.http.converter.json.Jackson2ObjectMapperBuilder] - 


Is this something I should be concerned about? I see this warning on startup. I 
see that the class is used in some tests, but not in actual code. Just want to 
put my mind at ease as I'm upgrading our production environment.

Cheers,
 -Jeremy

Jeremy Wickham
Senior Systems Analyst
Mississippi State University
jeremy.wick...@msstate.edu

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/BL0PR01MB45164E1C4FC5E6FDFB17677A991A0%40BL0PR01MB4516.prod.exchangelabs.com.

Re: [cas-user] CAS 5.2.0 Non-secure Connection warning

[Ray Bon]

cas.properties

On Wed, 2020-02-12 at 21:39 -0800, Choudhary Tanuj Badhala wrote:
Dear Sir
   Which file that we can configuration this line

On Thursday, December 14, 2017 at 2:06:51 PM UTC+5:30, leleuj wrote:
Hi,

I would try: cas.server.httpProxy.secure=true
Thanks.
Best regards,
Jérôme


On Thu, Dec 14, 2017 at 1:46 AM, casuser > 
wrote:
How to remove the warning "Non-secure Connection" from the log in page? I want 
to get rid of it because from the load balancer to the CAS server the 
connection will be HTTP.

I have tried the following configurations to remove the warning:


"In the event that you decide to run CAS without any SSL configuration in the 
embedded Tomcat container and on a non-secure port yet wish to customize the 
connector configuration that is linked to the running port (i.e. 8080), the 
following settings may apply":



cas.server.httpProxy.enabled=

true

cas.server.httpProxy.secure=

false ## changed from True

cas.server.httpProxy.protocol=

AJP/1.3

cas.server.httpProxy.scheme=

http ## changed to http

cas.server.httpProxy.

redirectPort=8080

cas.server.httpProxy.

proxyPort=8080

cas.server.httpProxy.

attributes.attributeName=

attributeValue


to disable the warning:
"Non-secure Connection You are currently accessing CAS over a non-secure 
connection. Single Sign On WILL NOT WORK. In order to have single sign on work, 
you MUST log in over HTTPS." but the warning still remains.
"https://apereo.github.io/cas/5.2.x/installation/Configuration-Properties.html#http-proxying;
CAS 
Properties
apereo.github.io
CAS - Enterprise Single Sign-On for the Web


--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/3a140395-7e27-469b-ace3-eb43ef89828a%40apereo.org.


--

Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca

I respectfully acknowledge that my place of work is located within the 
ancestral, traditional and unceded territory of the Songhees, Esquimalt and 
WSÁNEĆ Nations.

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/420386280261750661b2491542eae697ff1066c3.camel%40uvic.ca.

[cas-user] SAML2 service doesn't respect theme attribute

[john.sebert]

When using a SAML2 service in CAS the theme attribute doesn't seem to be 
respected. The theme settings work for our CAS entries. Using both CAS 5.1 
and 5.3.



{
  "@class" : "org.apereo.cas.support.saml.services.SamlRegisteredService",
 "attributeReleasePolicy": {
 "@class": 
"org.apereo.cas.services.ReturnMappedAttributeReleasePolicy",
 "allowedAttributes": {
 "@class": "java.util.TreeMap",
   "uid": "uis",
   "mail": "mail",
   "givenName": "givenName",
 "sn" : "sn"
 }
 },
  "serviceId" : "my-service-entity-id",
  "name" : "Simple SAML php",
  "id" : 2,
  "evaluationOrder" : 1 ,
  "metadataLocation" : "path-to-my-metadata",
  "theme": "my-unique-theme"
}

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/4aa5c916-fc4b-4385-b54b-04c2417bcdec%40apereo.org.

Re: [cas-user] Re: CAS 6.X jwt issue with base64 encoded

[Nguyen Tran Thanh Lam]

Sorry, Mr Mathieu HETRU,
Have you success in CAS version 6.0?
If you success, could you show me how to config this?



Vào Th 5, 13 thg 2, 2020 vào lúc 14:03 Nguyen Tran Thanh Lam <
naphaluan211...@gmail.com> đã viết:

> Yeah, I found this. Thanks
>
> Vào Th 5, 13 thg 2, 2020 vào lúc 14:00 Mathieu HETRU 
> đã viết:
>
>> You can get theses values at the launch of cas server in the logs.
>>
>> Le 13 févr. 2020 à 04:36, Napoleon Ponaparte 
>> a écrit :
>>
>> 
>> Hi Raheem, How to get this value?
>> cas.authn.token.crypto.signing.key=
>> cas.authn.token.crypto.encryption.key=
>> THanks
>>
>> On Thursday, January 30, 2020 at 7:39:50 PM UTC+7, Raheem Shaik wrote:
>>>
>>> Hi,
>>>
>>> I am trying to upgrading from 5.2.x t0 6.x version for my testing but
>>> getting but getting issue with  base64 encode which is not working
>>> properly, When i try to decode the jwt token it is not able to get the
>>> payload data. But in earlier version 5.2.x i did not have any issues
>>>
>>> can somebody help me on this.
>>>
>>> build.gardle dependencies
>>>
>>>  compile
>>> "org.apereo.cas:cas-server-webapp${project.appServer}:${casServerVersion}"
>>>  compile
>>> "org.apereo.cas:cas-server-support-rest:${project.'cas.version'}"
>>>  compile
>>> "org.apereo.cas:cas-server-support-rest-tokens:${project.'cas.version'}"
>>>  compile
>>> "org.apereo.cas:cas-server-support-json-service-registry:${project.'cas.version'}"
>>>  compile
>>> "org.apereo.cas:cas-server-support-token-tickets:${project.'cas.version'}"
>>>  compile
>>> "org.apereo.cas:cas-server-support-rest-authentication:${project.'cas.version'}"
>>>
>>> cas.authn.token.crypto.enabled=false
>>> cas.authn.token.crypto.encryptionEnabled=false
>>> cas.authn.token.crypto.signing.key=
>>> cas.authn.token.crypto.signing.keySize=512
>>> cas.authn.token.crypto.encryption.key=
>>> cas.authn.token.crypto.encryption.keySize=256
>>>
>>> and
>>>
>>> {
>>>   "@class" : "org.apereo.cas.services.RegexRegisteredService",
>>>   "serviceId" : https://.*.example.com;,
>>>   "name" : "myApplication",
>>>   "id" : 1001,
>>>   "description" : "This service definition authorized all application
>>> urls that support HTTPS protocol.",
>>>   "evaluationOrder": 2
>>>   "proxyPolicy" : {
>>> "@class" :
>>> "org.apereo.cas.services.RefuseRegisteredServiceProxyPolicy"
>>>   },
>>>   "usernameAttributeProvider" : {
>>> "@class" :
>>> "org.apereo.cas.services.DefaultRegisteredServiceUsernameProvider"
>>>   },
>>>
>>>   "attributeReleasePolicy" : {
>>> "@class" : "org.apereo.cas.services.ReturnAllAttributeReleasePolicy",
>>>   "principalAttributesRepository" : {
>>>   "@class" :
>>> "org.apereo.cas.authentication.principal.DefaultPrincipalAttributesRepository"
>>> },
>>> "authorizedToReleaseCredentialPassword" : false,
>>> "authorizedToReleaseProxyGrantingTicket" : false
>>> },
>>> "logoutType" : "BACK_CHANNEL",
>>> "accessStrategy" : {
>>> "@class" :
>>> "org.apereo.cas.services.DefaultRegisteredServiceAccessStrategy",
>>> "enabled" : true,
>>> "ssoEnabled" : true
>>> },
>>>   "properties" : {
>>> "@class" : "java.util.HashMap",
>>> "jwtSigningSecret" : {
>>>   "@class" :
>>> "org.apereo.cas.services.DefaultRegisteredServiceProperty",
>>>   "values" : [ "java.util.HashSet", [ "9qzDlSwNx" ] ]
>>> },
>>> "jwtAsResponse" : {
>>>   "@class" :
>>> "org.apereo.cas.services.DefaultRegisteredServiceProperty",
>>>   "values" : [ "java.util.HashSet", [ "true" ] ]
>>> }
>>> }
>>>
>>> Regards,
>>> Raheem
>>>
>>> --
>> - Website: https://apereo.github.io/cas
>> - Gitter Chatroom: https://gitter.im/apereo/cas
>> - List Guidelines: https://goo.gl/1VRrw7
>> - Contributions: https://goo.gl/mh7qDG
>> ---
>> You received this message because you are subscribed to the Google Groups
>> "CAS Community" group.
>> To unsubscribe from this group and stop receiving emails from it, send an
>> email to cas-user+unsubscr...@apereo.org.
>> To view this discussion on the web visit
>> https://groups.google.com/a/apereo.org/d/msgid/cas-user/feff506b-e209-4550-95d4-9e0831f07225%40apereo.org
>> 
>> .
>>
>> --
>> - Website: https://apereo.github.io/cas
>> - Gitter Chatroom: https://gitter.im/apereo/cas
>> - List Guidelines: https://goo.gl/1VRrw7
>> - Contributions: https://goo.gl/mh7qDG
>> ---
>> You received this message because you are subscribed to the Google Groups
>> "CAS Community" group.
>> To unsubscribe from this group and stop receiving emails from it, send an
>> email to cas-user+unsubscr...@apereo.org.
>> To view this discussion on the web visit
>> https://groups.google.com/a/apereo.org/d/msgid/cas-user/63B44D43-DD53-40B0-A097-4A5CF1E2C908%40gmail.com
>>