Re: [cas-user] CAS Login Page Cutomization

2018-05-24 Thread Andy Ng
:)

On Friday, 25 May 2018 01:57:49 UTC+8, Lionel Samuel wrote:
>
> Echoing Andy :)
>
> Andy -- thank you also for your all your posts -- we have googled on  
> issues we faced -- your, David, and a few others have posted responses that 
> were extremely helpful! Apereo should have a lists of names to recognize 
> those that have been very supportive of the CAS community.
>
> On Wednesday, May 23, 2018 at 7:20:21 AM UTC-7, Andy Ng wrote:
>>
>> Still waiting for glorious day that this page:
>> https://dacurry-tns.github.io/deploying-apereo-cas/ui_overview.html 
>> to come to live :)
>>
>> - Andy
>>
>> On Wednesday, 23 May 2018 20:01:29 UTC+8, David Curry wrote:
>>>
>>> These two threads are somewhat helpful:
>>>
>>>
>>> https://groups.google.com/a/apereo.org/forum/#!searchin/cas-user/themes/cas-user/k-yfoou7Zy0/BXry1PxgFAAJ
>>>
>>> https://groups.google.com/a/apereo.org/forum/#!searchin/cas-user/template/cas-user/3eaKVAMhFYE/uuj7eEpCAwAJ
>>>
>>> Assuming you're making new templates, most of your work will probably 
>>> get done in layout.html, fragments/bottom.html, and 
>>> fragments/loginform.html.
>>>
>>> --Dave
>>>
>>> --
>>>
>>> DAVID A. CURRY, CISSP
>>> *DIRECTOR OF INFORMATION SECURITY*
>>> INFORMATION TECHNOLOGY
>>>
>>> 71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
>>> +1 212 229-5300 x4728 • david.cu...@newschool.edu
>>>
>>> [image: The New School]
>>>
>>>
>>> On Wed, May 23, 2018 at 12:02 AM Lionel Samuel  
>>> wrote:
>>>
 We are planning of customizing the CAS login page --- would anyone know 
 of a resource that lists the files for us to update?

 I'm a bit lost -- as I don't see a master file that builds the login 
 page (it probably me still getting used to the changes from v3 to v5.2)

 src/main/resources/messages.properties
 src/main/resources/cas-theme-default.properties
 src/main/resources/templates/casLoginView.html
 src/main/resources/templates/casLoginMessageView.html

 -- 
 - Website: https://apereo.github.io/cas
 - Gitter Chatroom: https://gitter.im/apereo/cas
 - List Guidelines: https://goo.gl/1VRrw7
 - Contributions: https://goo.gl/mh7qDG
 --- 
 You received this message because you are subscribed to the Google 
 Groups "CAS Community" group.
 To unsubscribe from this group and stop receiving emails from it, send 
 an email to cas-user+u...@apereo.org.
 To view this discussion on the web visit 
 https://groups.google.com/a/apereo.org/d/msgid/cas-user/dd1a0b6a-c288-4d53-b95e-a019905233f8%40apereo.org
  
 
 .

>>>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/30aa7603-959b-4cdf-83bc-93bb596b7909%40apereo.org.


[cas-user] ajp with cas-management-overlay

2018-05-24 Thread Sam Erie
Is there a way to use ajp with the cas-management-overlay?

I am using ajp with cas-overlay 5.2.4, but it uses the tomcat appserver -
and it doesn't look like that is available yet for the
cas-management-overlay.

The settings for my cas-overlay are as follows:

cas.server.ajp.secure=true
cas.server.ajp.enabled=true
cas.server.ajp.proxyPort=443
cas.server.ajp.protocol=AJP/1.3
cas.server.ajp.asyncTimeout=5
cas.server.ajp.scheme=https
cas.server.ajp.maxPostSize=20971520
cas.server.ajp.port=8009

I have tried to use similar properties for the manager, but it doesn't
work. I'm not entirely sure how the executable profile works, so I don't
know if what I'm trying is even possible.

The server I'm setting up needs to use httpd to serve pages, so ajp is not
an option at this point. I could attempt to use the built war in my own
servlet container to accomplish this, but if there is an easier way that is
just not documented yet I want to know.

Thanks in advance, I'm pretty new to this so any advice is appreciated.

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAMM6z%2BK-XHEeSWcXiCVYA9XvpxvdZvMSgq9HbzeWYucpps89Vg%40mail.gmail.com.


Re: [cas-user] How to route new page

2018-05-24 Thread Sam Erie
Seems so obvious now that you say it. Thank you very much, works like a
charm.

On Thu, May 24, 2018 at 12:14 PM, David Curry 
wrote:

> The "root" of the web server, i.e., where "https://casserver/cas; points,
> is the ".../webapps/cas/WEB-INF/classes/static" directory. And you can't
> "../" your way out of there, for security reasons.
>
> So on further thought, you probably need to move "timeout.html" into the
> "static" directory and then redirect to "/timeout.html".
>
> --Dave
>
> --
>
> DAVID A. CURRY, CISSP
> *DIRECTOR OF INFORMATION SECURITY*
> INFORMATION TECHNOLOGY
>
> 71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
> 
> +1 212 229-5300 x4728 • david.cu...@newschool.edu
>
> [image: The New School]
>
>
> On Thu, May 24, 2018 at 4:05 PM Sam Erie  wrote:
>
>> Absolutely that would work. I think I am still doing something wrong
>> though. I have timedOut.html under templates next to casLoginView.html etc.
>> When I redirect to /cas/timedOut.html it gives me a cas page not found
>> page. When I redirect to /timedOut.html it says my page is not found on the
>> server. I could put the page directly on my server, but I would much rather
>> keep it in the cas webapp to make deploying on other servers easier.
>>
>> Perhaps there is a better way to redirect, I'm upgrading an old version
>> of cas so I may be using an outdated method. I do window.location =
>> myRedirect; in a script in the loginform.html fragment. Where myRedirect is
>> "/cas/timedOut.html". It just goes to https://server/cas/timedOut.html.
>>
>> Thank you for your time, and I apologize I have limited experience with
>> java webflows.
>>
>> On Thu, May 24, 2018 at 11:39 AM, David Curry 
>> wrote:
>>
>>> How strongly do you feel about having "https://server/cas/timeout; as
>>> opposed to "https://server/cas/timeout.html;?
>>>
>>> If you're fine with the latter, you should just be able to drop
>>> "timeout.html" into the same place where all the other casWhateverView.html
>>> pages are and redirect to "/timeout.html".
>>>
>>> Or, since you have access to jQuery and all that good stuff, you could
>>> perhaps do something like:
>>>
>>> $("#cas.login").replaceWith("TimeoutYou are too slow. Go
>>> away.");
>>>
>>>
>>> If you really want the "/cas/timeout" thing, then I believe you'd have
>>> to add it to extend the webflow (or create a new one?).
>>>
>>> Just some ideas...
>>>
>>> --
>>>
>>> DAVID A. CURRY, CISSP
>>> *DIRECTOR OF INFORMATION SECURITY*
>>> INFORMATION TECHNOLOGY
>>>
>>> 71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
>>> 
>>> +1 212 229-5300 x4728 • david.cu...@newschool.edu
>>>
>>> [image: The New School]
>>>
>>>
>>> On Thu, May 24, 2018 at 3:18 PM Sam Erie  wrote:
>>>
 I am trying to provide a timeout page to redirect to when a timer on my
 login page goes off. I can get it to redirect, but there is no page so it
 just goes to the not found page. Is there an easy way to route an extra
 page so I can go to https://server:8443/cas/timeOut?

 Or how would I go about using fragments to show my timeOut.html page?

 --
 - Website: https://apereo.github.io/cas
 - Gitter Chatroom: https://gitter.im/apereo/cas
 - List Guidelines: https://goo.gl/1VRrw7
 - Contributions: https://goo.gl/mh7qDG
 ---
 You received this message because you are subscribed to the Google
 Groups "CAS Community" group.
 To unsubscribe from this group and stop receiving emails from it, send
 an email to cas-user+unsubscr...@apereo.org.
 To view this discussion on the web visit https://groups.google.com/a/
 apereo.org/d/msgid/cas-user/CAMM6z%2BJzJRHQPvCm09Wo8M_3%
 2BL_b1%3DHZCc04bmSROZkiyzE9QQ%40mail.gmail.com
 
 .

>>> --
>>> - Website: https://apereo.github.io/cas
>>> - Gitter Chatroom: https://gitter.im/apereo/cas
>>> - List Guidelines: https://goo.gl/1VRrw7
>>> - Contributions: https://goo.gl/mh7qDG
>>> ---
>>> You received this message because you are subscribed to the Google
>>> Groups "CAS Community" group.
>>> To unsubscribe from this group and stop receiving emails from it, send
>>> an email to cas-user+unsubscr...@apereo.org.
>>> To view this discussion on the web visit https://groups.google.com/a/
>>> apereo.org/d/msgid/cas-user/CA%2Bd9XAPcBDMjbs76yN0uaLurdd8exn
>>> PLO6QbDMxvfWxLqLmjZg%40mail.gmail.com
>>> 
>>> .
>>>
>>
>> --
>> - Website: https://apereo.github.io/cas
>> - Gitter Chatroom: 

Re: [cas-user] How to route new page

2018-05-24 Thread Sam Erie
Absolutely that would work. I think I am still doing something wrong
though. I have timedOut.html under templates next to casLoginView.html etc.
When I redirect to /cas/timedOut.html it gives me a cas page not found
page. When I redirect to /timedOut.html it says my page is not found on the
server. I could put the page directly on my server, but I would much rather
keep it in the cas webapp to make deploying on other servers easier.

Perhaps there is a better way to redirect, I'm upgrading an old version of
cas so I may be using an outdated method. I do window.location =
myRedirect; in a script in the loginform.html fragment. Where myRedirect is
"/cas/timedOut.html". It just goes to https://server/cas/timedOut.html.

Thank you for your time, and I apologize I have limited experience with
java webflows.

On Thu, May 24, 2018 at 11:39 AM, David Curry 
wrote:

> How strongly do you feel about having "https://server/cas/timeout; as
> opposed to "https://server/cas/timeout.html;?
>
> If you're fine with the latter, you should just be able to drop
> "timeout.html" into the same place where all the other casWhateverView.html
> pages are and redirect to "/timeout.html".
>
> Or, since you have access to jQuery and all that good stuff, you could
> perhaps do something like:
>
> $("#cas.login").replaceWith("TimeoutYou are too slow. Go
> away.");
>
>
> If you really want the "/cas/timeout" thing, then I believe you'd have to
> add it to extend the webflow (or create a new one?).
>
> Just some ideas...
>
> --
>
> DAVID A. CURRY, CISSP
> *DIRECTOR OF INFORMATION SECURITY*
> INFORMATION TECHNOLOGY
>
> 71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
> 
> +1 212 229-5300 x4728 • david.cu...@newschool.edu
>
> [image: The New School]
>
>
> On Thu, May 24, 2018 at 3:18 PM Sam Erie  wrote:
>
>> I am trying to provide a timeout page to redirect to when a timer on my
>> login page goes off. I can get it to redirect, but there is no page so it
>> just goes to the not found page. Is there an easy way to route an extra
>> page so I can go to https://server:8443/cas/timeOut?
>>
>> Or how would I go about using fragments to show my timeOut.html page?
>>
>> --
>> - Website: https://apereo.github.io/cas
>> - Gitter Chatroom: https://gitter.im/apereo/cas
>> - List Guidelines: https://goo.gl/1VRrw7
>> - Contributions: https://goo.gl/mh7qDG
>> ---
>> You received this message because you are subscribed to the Google Groups
>> "CAS Community" group.
>> To unsubscribe from this group and stop receiving emails from it, send an
>> email to cas-user+unsubscr...@apereo.org.
>> To view this discussion on the web visit https://groups.google.com/a/
>> apereo.org/d/msgid/cas-user/CAMM6z%2BJzJRHQPvCm09Wo8M_3%
>> 2BL_b1%3DHZCc04bmSROZkiyzE9QQ%40mail.gmail.com
>> 
>> .
>>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit https://groups.google.com/a/
> apereo.org/d/msgid/cas-user/CA%2Bd9XAPcBDMjbs76yN0uaLurdd8exn
> PLO6QbDMxvfWxLqLmjZg%40mail.gmail.com
> 
> .
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAMM6z%2BL4-h3xAQioCOLCpvJpetAAP%2BVBK6e73oQdT8L0jc%3Di%2Bg%40mail.gmail.com.


Re: [cas-user] How to route new page

2018-05-24 Thread David Curry
How strongly do you feel about having "https://server/cas/timeout; as
opposed to "https://server/cas/timeout.html;?

If you're fine with the latter, you should just be able to drop
"timeout.html" into the same place where all the other casWhateverView.html
pages are and redirect to "/timeout.html".

Or, since you have access to jQuery and all that good stuff, you could
perhaps do something like:

$("#cas.login").replaceWith("TimeoutYou are too slow. Go
away.");


If you really want the "/cas/timeout" thing, then I believe you'd have to
add it to extend the webflow (or create a new one?).

Just some ideas...

--

DAVID A. CURRY, CISSP
*DIRECTOR OF INFORMATION SECURITY*
INFORMATION TECHNOLOGY

71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
+1 212 229-5300 x4728 • david.cu...@newschool.edu

[image: The New School]


On Thu, May 24, 2018 at 3:18 PM Sam Erie  wrote:

> I am trying to provide a timeout page to redirect to when a timer on my
> login page goes off. I can get it to redirect, but there is no page so it
> just goes to the not found page. Is there an easy way to route an extra
> page so I can go to https://server:8443/cas/timeOut?
>
> Or how would I go about using fragments to show my timeOut.html page?
>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit
> https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAMM6z%2BJzJRHQPvCm09Wo8M_3%2BL_b1%3DHZCc04bmSROZkiyzE9QQ%40mail.gmail.com
> 
> .
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CA%2Bd9XAPcBDMjbs76yN0uaLurdd8exnPLO6QbDMxvfWxLqLmjZg%40mail.gmail.com.


[cas-user] How to route new page

2018-05-24 Thread Sam Erie
I am trying to provide a timeout page to redirect to when a timer on my
login page goes off. I can get it to redirect, but there is no page so it
just goes to the not found page. Is there an easy way to route an extra
page so I can go to https://server:8443/cas/timeOut?

Or how would I go about using fragments to show my timeOut.html page?

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAMM6z%2BJzJRHQPvCm09Wo8M_3%2BL_b1%3DHZCc04bmSROZkiyzE9QQ%40mail.gmail.com.


[cas-user] 2 "Username" Options and How it Works with Attributes

2018-05-24 Thread John D Giotta
I have this requirement where we're supposed to allow users to sign-in with 
either an email address or a phone number.

1) Can I tailor CAS for either of those 2 options? 

2) When it comes to attributes, how do I pair that user (because the user 
id is different) with the attributes clause?


-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/f2187f48-8971-4b74-ba80-481ac2566aad%40apereo.org.


Re: [cas-user] User Attributes for SAML 2.0

2018-05-24 Thread John D Giotta
That got it! Thank you so much, David!

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/15d02a8c-f3e7-4d55-9bc4-c67e9c352c4f%40apereo.org.


Re: [cas-user] CAS Login Page Cutomization

2018-05-24 Thread Lionel Samuel
Echoing Andy :)

Andy -- thank you also for your all your posts -- we have googled on  
issues we faced -- your, David, and a few others have posted responses that 
were extremely helpful! Apereo should have a lists of names to recognize 
those that have been very supportive of the CAS community.

On Wednesday, May 23, 2018 at 7:20:21 AM UTC-7, Andy Ng wrote:
>
> Still waiting for glorious day that this page:
> https://dacurry-tns.github.io/deploying-apereo-cas/ui_overview.html 
> to come to live :)
>
> - Andy
>
> On Wednesday, 23 May 2018 20:01:29 UTC+8, David Curry wrote:
>>
>> These two threads are somewhat helpful:
>>
>>
>> https://groups.google.com/a/apereo.org/forum/#!searchin/cas-user/themes/cas-user/k-yfoou7Zy0/BXry1PxgFAAJ
>>
>> https://groups.google.com/a/apereo.org/forum/#!searchin/cas-user/template/cas-user/3eaKVAMhFYE/uuj7eEpCAwAJ
>>
>> Assuming you're making new templates, most of your work will probably get 
>> done in layout.html, fragments/bottom.html, and fragments/loginform.html.
>>
>> --Dave
>>
>> --
>>
>> DAVID A. CURRY, CISSP
>> *DIRECTOR OF INFORMATION SECURITY*
>> INFORMATION TECHNOLOGY
>>
>> 71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
>> +1 212 229-5300 x4728 • david.cu...@newschool.edu
>>
>> [image: The New School]
>>
>>
>> On Wed, May 23, 2018 at 12:02 AM Lionel Samuel  
>> wrote:
>>
>>> We are planning of customizing the CAS login page --- would anyone know 
>>> of a resource that lists the files for us to update?
>>>
>>> I'm a bit lost -- as I don't see a master file that builds the login 
>>> page (it probably me still getting used to the changes from v3 to v5.2)
>>>
>>> src/main/resources/messages.properties
>>> src/main/resources/cas-theme-default.properties
>>> src/main/resources/templates/casLoginView.html
>>> src/main/resources/templates/casLoginMessageView.html
>>>
>>> -- 
>>> - Website: https://apereo.github.io/cas
>>> - Gitter Chatroom: https://gitter.im/apereo/cas
>>> - List Guidelines: https://goo.gl/1VRrw7
>>> - Contributions: https://goo.gl/mh7qDG
>>> --- 
>>> You received this message because you are subscribed to the Google 
>>> Groups "CAS Community" group.
>>> To unsubscribe from this group and stop receiving emails from it, send 
>>> an email to cas-user+u...@apereo.org.
>>> To view this discussion on the web visit 
>>> https://groups.google.com/a/apereo.org/d/msgid/cas-user/dd1a0b6a-c288-4d53-b95e-a019905233f8%40apereo.org
>>>  
>>> 
>>> .
>>>
>>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/4bdb56f3-38d5-4ecd-8938-13838ef39542%40apereo.org.


Re: [cas-user] CAS Login Page Cutomization

2018-05-24 Thread Lionel Samuel
Thanks David :)

This was exactly what we needed.

Much appreciated...

On Wednesday, May 23, 2018 at 5:01:29 AM UTC-7, David Curry wrote:
>
> These two threads are somewhat helpful:
>
>
> https://groups.google.com/a/apereo.org/forum/#!searchin/cas-user/themes/cas-user/k-yfoou7Zy0/BXry1PxgFAAJ
>
> https://groups.google.com/a/apereo.org/forum/#!searchin/cas-user/template/cas-user/3eaKVAMhFYE/uuj7eEpCAwAJ
>
> Assuming you're making new templates, most of your work will probably get 
> done in layout.html, fragments/bottom.html, and fragments/loginform.html.
>
> --Dave
>
> --
>
> DAVID A. CURRY, CISSP
> *DIRECTOR OF INFORMATION SECURITY*
> INFORMATION TECHNOLOGY
>
> 71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
> +1 212 229-5300 x4728 • david.cu...@newschool.edu 
>
> [image: The New School]
>
>
> On Wed, May 23, 2018 at 12:02 AM Lionel Samuel  > wrote:
>
>> We are planning of customizing the CAS login page --- would anyone know 
>> of a resource that lists the files for us to update?
>>
>> I'm a bit lost -- as I don't see a master file that builds the login page 
>> (it probably me still getting used to the changes from v3 to v5.2)
>>
>> src/main/resources/messages.properties
>> src/main/resources/cas-theme-default.properties
>> src/main/resources/templates/casLoginView.html
>> src/main/resources/templates/casLoginMessageView.html
>>
>> -- 
>> - Website: https://apereo.github.io/cas
>> - Gitter Chatroom: https://gitter.im/apereo/cas
>> - List Guidelines: https://goo.gl/1VRrw7
>> - Contributions: https://goo.gl/mh7qDG
>> --- 
>> You received this message because you are subscribed to the Google Groups 
>> "CAS Community" group.
>> To unsubscribe from this group and stop receiving emails from it, send an 
>> email to cas-user+u...@apereo.org .
>> To view this discussion on the web visit 
>> https://groups.google.com/a/apereo.org/d/msgid/cas-user/dd1a0b6a-c288-4d53-b95e-a019905233f8%40apereo.org
>>  
>> 
>> .
>>
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/38cea20d-941e-4feb-acef-3c11872d9f3a%40apereo.org.


Re: [cas-user] attribute mapping ldap

2018-05-24 Thread Ray Bon
Jen,

On the Attribute Release tab for a service in service manager.
You may also have to set a list of released attributes in management.properties:

# --- Global Attributes --- #
cas.authn.attributeRepository.stub.attributes.uvicEduPersonSpridenID=uvicEduPersonSpridenID

Ray

On Thu, 2018-05-24 at 08:45 -0700, Jennifer LaVoie wrote:
Hi there

In my old CAS installation, I have attribute mapping that looks like this

 













Where and what syntax do I use to  put the UDC_IDENTIFIER in my cas.properties 
files?

Thank you
Jen

--
Ray Bon
Programmer analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/1527177849.1830.60.camel%40uvic.ca.


[cas-user] attribute mapping ldap

2018-05-24 Thread Jennifer LaVoie
Hi there

In my old CAS installation, I have attribute mapping that looks like this

 













Where and what syntax do I use to  put the UDC_IDENTIFIER in my 
cas.properties files?

Thank you
Jen

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/928462e5-c3e8-40cf-b302-0e50dc924eb7%40apereo.org.


Re: [cas-user] SLO and SSO using Mod_auth_cas

2018-05-24 Thread David Curry
I'm not sure what you mean by the logoutUrl "supporting" SLO. If you mean
will SLO suddenly start working just because you put a value in that
property, then the answer is no.

The logoutUrl property is exactly what the documentation says it is -- a
way to let an application receive a logout request from the CAS server when
the application is using a CAS client that doesn't implement logout
requests itself (in this case, mod_auth_cas). It's completely up to you to
actually implement the logout process.

So, since "logging out" of mod_auth_cas involves manually deleting the
"MOD_AUTH_CAS_S" cookie from the browser, then I would suppose you could
make your logoutUrl point to "https://your.web.server/logout.html; or
something, and make logout.html contain some JavaScript to delete the
cookie:




  document.cookie = 'MOD_AUTH_CAS_S=; expires=Thu, 01 Jan 1970
00:00:01 GMT;';
  Goodbye!




Note that the cookie is set relative to the path you secured with
mod_auth_cas, so you should put the logout.html file in the same directory
that you put your protected content in. This means that if you have
multiple directories protected by mod_auth_cas on the same server, you'll
need to put a logout.html into each one of them (or make the JavaScript
smarter than what's shown above).

Note that mod_auth_cas itself DOES NOT know anything about the logoutUrl.
This is basically a hack to get around the fact that mod_auth_cas does not
implement logout.

--Dave

P.S. - I have not tried any of the above, so you may need to play with it a
bit to get it to work.



--

DAVID A. CURRY, CISSP
*DIRECTOR OF INFORMATION SECURITY*
INFORMATION TECHNOLOGY

71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
+1 212 229-5300 x4728 • david.cu...@newschool.edu

[image: The New School]


On Thu, May 24, 2018 at 9:45 AM Ramakrishna G  wrote:

> Hey David,
>
> Firstly thanks for your response and clarifying few things. My query to
> you now is
>
> Does logoutUrl property support SLO? If so, which all cookie should I be
> deleting?
>
>
>
> On Thu, May 24, 2018 at 6:17 PM, David Curry 
> wrote:
>
>> What do you mean when you say you are "using mod_auth_cas for reverse
>> proxy to my cas server"? Mod_auth_cas is not a (reverse) proxy. It's simply
>> a way to control access to content on an Apache web server using CAS
>> authentication. Think of it as an alternative to HTTP Basic Authentication.
>> It seems like this was explained  in an earlier thread; if you want to
>> spread the load across multiple CAS servers, you should just stick a load
>> balancer (NGINX, F5, etc.) in front of them. See, for example, the picture
>> here
>> https://apereo.github.io/cas/development/planning/High-Availability-Guide.html
>> .
>>
>> As for logging out, mod_auth_cas does not support SLO. This is documented
>> in the README file under "Known Limitations". If you really want to
>> implement logout with mod_auth_cas, you would somehow have to arrange for
>> the logout process (which mod_auth_cas is completely unaware of, since it
>> doesn't have its own "logout" link and it doesn't support SLO) to delete
>> the "MOD_AUTH_CAS_S" cookie from the user's browser. You MIGHT be able to
>> make use of the "logoutUrl" property in the service registry (
>> https://apereo.github.io/cas/development/installation/Logout-Single-Signout.html#service-endpoint-for-logout-requests)
>> to accomplish this, with the page that URL points do taking care of
>> deleting the cookie.
>>
>>
>>
>> --
>>
>> DAVID A. CURRY, CISSP
>> *DIRECTOR OF INFORMATION SECURITY*
>> INFORMATION TECHNOLOGY
>>
>> 71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
>> 
>> +1 212 229-5300 x4728 • david.cu...@newschool.edu
>>
>> [image: The New School]
>>
>>
>> On Thu, May 24, 2018 at 2:13 AM Ramakrishna G  wrote:
>>
>>> Hello,
>>>
>>> I am using Mod_auth_cas for reverse proxy to my cas server. How do I
>>> achive slo and sso using mod_auth_cas? Also when I logout I am still able
>>> to access my application without authentication. Is this the way
>>> mod_auth_cas works?
>>>
>>> Thanks
>>> Ramakrishna G
>>>
>>> --
>>> - Website: https://apereo.github.io/cas
>>> - Gitter Chatroom: https://gitter.im/apereo/cas
>>> - List Guidelines: https://goo.gl/1VRrw7
>>> - Contributions: https://goo.gl/mh7qDG
>>> ---
>>> You received this message because you are subscribed to the Google
>>> Groups "CAS Community" group.
>>> To unsubscribe from this group and stop receiving emails from it, send
>>> an email to cas-user+unsubscr...@apereo.org.
>>> To view this discussion on the web visit
>>> https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAGST5P_19UfBq%2BsefvrBRD9UBOJMQHQqJj%3DmJzvm3Op6JsSUAQ%40mail.gmail.com
>>> 
>>> .
>>>
>> --
>> - Website: 

Re: [cas-user] SLO and SSO using Mod_auth_cas

2018-05-24 Thread Ramakrishna G
Hey David,

Firstly thanks for your response and clarifying few things. My query to you
now is

Does logoutUrl property support SLO? If so, which all cookie should I be
deleting?



On Thu, May 24, 2018 at 6:17 PM, David Curry 
wrote:

> What do you mean when you say you are "using mod_auth_cas for reverse
> proxy to my cas server"? Mod_auth_cas is not a (reverse) proxy. It's simply
> a way to control access to content on an Apache web server using CAS
> authentication. Think of it as an alternative to HTTP Basic Authentication.
> It seems like this was explained  in an earlier thread; if you want to
> spread the load across multiple CAS servers, you should just stick a load
> balancer (NGINX, F5, etc.) in front of them. See, for example, the picture
> here https://apereo.github.io/cas/development/planning/High-
> Availability-Guide.html.
>
> As for logging out, mod_auth_cas does not support SLO. This is documented
> in the README file under "Known Limitations". If you really want to
> implement logout with mod_auth_cas, you would somehow have to arrange for
> the logout process (which mod_auth_cas is completely unaware of, since it
> doesn't have its own "logout" link and it doesn't support SLO) to delete
> the "MOD_AUTH_CAS_S" cookie from the user's browser. You MIGHT be able to
> make use of the "logoutUrl" property in the service registry (
> https://apereo.github.io/cas/development/installation/
> Logout-Single-Signout.html#service-endpoint-for-logout-requests) to
> accomplish this, with the page that URL points do taking care of deleting
> the cookie.
>
>
>
> --
>
> DAVID A. CURRY, CISSP
> *DIRECTOR OF INFORMATION SECURITY*
> INFORMATION TECHNOLOGY
>
> 71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
> 
> +1 212 229-5300 x4728 • david.cu...@newschool.edu
>
> [image: The New School]
>
>
> On Thu, May 24, 2018 at 2:13 AM Ramakrishna G  wrote:
>
>> Hello,
>>
>> I am using Mod_auth_cas for reverse proxy to my cas server. How do I
>> achive slo and sso using mod_auth_cas? Also when I logout I am still able
>> to access my application without authentication. Is this the way
>> mod_auth_cas works?
>>
>> Thanks
>> Ramakrishna G
>>
>> --
>> - Website: https://apereo.github.io/cas
>> - Gitter Chatroom: https://gitter.im/apereo/cas
>> - List Guidelines: https://goo.gl/1VRrw7
>> - Contributions: https://goo.gl/mh7qDG
>> ---
>> You received this message because you are subscribed to the Google Groups
>> "CAS Community" group.
>> To unsubscribe from this group and stop receiving emails from it, send an
>> email to cas-user+unsubscr...@apereo.org.
>> To view this discussion on the web visit https://groups.google.com/a/
>> apereo.org/d/msgid/cas-user/CAGST5P_19UfBq%2BsefvrBRD9UBOJMQHQqJj%
>> 3DmJzvm3Op6JsSUAQ%40mail.gmail.com
>> 
>> .
>>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit https://groups.google.com/a/
> apereo.org/d/msgid/cas-user/CA%2Bd9XANEnPPGQ66kyva4Wgvm8-
> 25-Up0Fdz-7MZLYk-PdUF5dA%40mail.gmail.com
> 
> .
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAGST5P9pD%3DC4t-THA6gX-V2Uh7yB8brVG0tk1sNYk0iZ-7nGtQ%40mail.gmail.com.


Re: [cas-user] Re: CAS5.3.x - Health & Version monitor Page

2018-05-24 Thread David Curry
https://apereo.github.io/cas/development/installation/Monitoring-Statistics.html

You do not need the CAS Management Overlay to enable the above; it's
accomplished with just some settings in cas.properties and creating the
user file and a service registry entry.

If you'd like step-by-step instructions, see here:
https://dacurry-tns.github.io/deploying-apereo-cas/building_server_dashboard_overview.html


--

DAVID A. CURRY, CISSP
*DIRECTOR OF INFORMATION SECURITY*
INFORMATION TECHNOLOGY

71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
+1 212 229-5300 x4728 • david.cu...@newschool.edu

[image: The New School]


On Thu, May 24, 2018 at 4:18 AM Jay 
wrote:

> Attaching the version page.
>
> On Thursday, May 24, 2018 at 3:14:05 AM UTC-5, Jay wrote:
>>
>> Hello everyone,
>> In our old CAS3.x version, we had the health page and version monitor
>> page.
>>
>> I am trying to figure if we have something similar in CAS5.3.x framework.
>> Health Page and Version page looks something like this.
>>
>> 
>>
>
>
>
>>
>> 
>> 
>>
>>
>> Could someone help me here to understand that this could be achieved
>> using only CAS-Management-Overlay. If so is it possible that anyone with a
>> link can access the above two pages without login or authentication.
>>
>> Thanks in advance.
>>
>> Regards,
>> Jay
>>
>> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit
> https://groups.google.com/a/apereo.org/d/msgid/cas-user/3fa8b8d7-c1a1-4552-b360-58b849567404%40apereo.org
> 
> .
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CA%2Bd9XAM6TDA7bAgyfZe95GVoLZz%2BBzskE0VcZVBOmbDqumUUpA%40mail.gmail.com.


Re: [cas-user] SLO and SSO using Mod_auth_cas

2018-05-24 Thread David Curry
What do you mean when you say you are "using mod_auth_cas for reverse proxy
to my cas server"? Mod_auth_cas is not a (reverse) proxy. It's simply a way
to control access to content on an Apache web server using CAS
authentication. Think of it as an alternative to HTTP Basic Authentication.
It seems like this was explained  in an earlier thread; if you want to
spread the load across multiple CAS servers, you should just stick a load
balancer (NGINX, F5, etc.) in front of them. See, for example, the picture
here
https://apereo.github.io/cas/development/planning/High-Availability-Guide.html
.

As for logging out, mod_auth_cas does not support SLO. This is documented
in the README file under "Known Limitations". If you really want to
implement logout with mod_auth_cas, you would somehow have to arrange for
the logout process (which mod_auth_cas is completely unaware of, since it
doesn't have its own "logout" link and it doesn't support SLO) to delete
the "MOD_AUTH_CAS_S" cookie from the user's browser. You MIGHT be able to
make use of the "logoutUrl" property in the service registry (
https://apereo.github.io/cas/development/installation/Logout-Single-Signout.html#service-endpoint-for-logout-requests)
to accomplish this, with the page that URL points do taking care of
deleting the cookie.



--

DAVID A. CURRY, CISSP
*DIRECTOR OF INFORMATION SECURITY*
INFORMATION TECHNOLOGY

71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
+1 212 229-5300 x4728 • david.cu...@newschool.edu

[image: The New School]


On Thu, May 24, 2018 at 2:13 AM Ramakrishna G  wrote:

> Hello,
>
> I am using Mod_auth_cas for reverse proxy to my cas server. How do I
> achive slo and sso using mod_auth_cas? Also when I logout I am still able
> to access my application without authentication. Is this the way
> mod_auth_cas works?
>
> Thanks
> Ramakrishna G
>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit
> https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAGST5P_19UfBq%2BsefvrBRD9UBOJMQHQqJj%3DmJzvm3Op6JsSUAQ%40mail.gmail.com
> 
> .
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CA%2Bd9XANEnPPGQ66kyva4Wgvm8-25-Up0Fdz-7MZLYk-PdUF5dA%40mail.gmail.com.


[cas-user] CAS 5.2.4. Is it possible to create custom registry cleaner

2018-05-24 Thread Govind Lohiya
Hi,

I am using CAS 5.2.4. I would like to know if its possible to create a 
custom ticket registry cleaner. I would like to log the user out of system 
database at the time of ticket clean up. 

I looked at cas-server-core-api-ticket and cas-server-core-tickets jars. I 
could not find a config that will help register a new RegistryCleaner.

Is this possible at all?

Thanks,

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/68d847b6-5f08-4104-87cc-52dca2eb6012%40apereo.org.


[cas-user] Performance Issue with ProxyGrantingTickets

2018-05-24 Thread 'Philipp Berger' via CAS Community
Hi all,

there is a massive performance issue with ProxyGrantingTickets with JPA 
TicketRegistry if there are a lot of ProxyGrantingTickets created for one 
TicketGrantingTicket.

https://github.com/apereo/cas/blob/86aec093d025bac0647f899c59d3fc9a938b4083/core/cas-server-core-tickets-api/src/main/java/org/apereo/cas/ticket/ServiceTicketImpl.java#L111

As *getTicketGrantingTicket().getProxyGrantingTickets()* loads all 
ProxyGrantingTickets 
from the Database this takes longer for each grant of a ProxyGrantingTicket.
For JPA (Database) TicketRegistry this can be fixed by simple omitting the 
line, as the relation is given by the Database. But I'm not sure how this 
can be fixed for "non-relational" TicketRegistries.

Do you think that it is possible to fix that for all TicketRegistries in 
general?

Best regards,
Philipp Berger

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/0693e216-d710-453a-b827-dd79bdf55e66%40apereo.org.


[cas-user] DefaultRegistryCleaner does not call rgistered custom LogoutHandler

2018-05-24 Thread Govind Lohiya
Hi,

I am using CAS 5.2.4. I have a custom logout handler registered and working 
properly. It logs the user out from our database. This works perfectly fine 
when I hit /logout endpoint.

But when the TGC expires the user logs out of the CAS but is still logged 
in to the database. I would expect DefaultRegistryCleaner will call the 
custom LogoutHandler as well.

How do I make DefaultRegistryCleaner to call Custom logout handler? Is 
there another way to do this?

Thanks,

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/a3e2ecc5-ebd5-4b2b-bb7c-9233e62cbd5c%40apereo.org.


[cas-user] Re: CAS5.3.x - Health & Version monitor Page

2018-05-24 Thread Jay
Attaching the version page.

On Thursday, May 24, 2018 at 3:14:05 AM UTC-5, Jay wrote:
>
> Hello everyone,
> In our old CAS3.x version, we had the health page and version monitor 
> page. 
>
> I am trying to figure if we have something similar in CAS5.3.x framework.
> Health Page and Version page looks something like this.
>
> 
>

 

>
> 
>  
> 
>
>
> Could someone help me here to understand that this could be achieved using 
> only CAS-Management-Overlay. If so is it possible that anyone with a link 
> can access the above two pages without login or authentication.
>
> Thanks in advance.
>
> Regards,
> Jay
>
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/3fa8b8d7-c1a1-4552-b360-58b849567404%40apereo.org.


[cas-user] CAS5.3.x - Health & Version monitor Page

2018-05-24 Thread Jay


Hello everyone,
In our old CAS3.x version, we had the health page and version monitor page. 

I am trying to figure if we have something similar in CAS5.3.x framework.
Health Page and Version page looks something like this.




Could someone help me here to understand that this could be achieved using 
only CAS-Management-Overlay. If so is it possible that anyone with a link 
can access the above two pages without login or authentication.

Thanks in advance.

Regards,
Jay

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/53fd2868-e2c1-43e0-a7f3-beb2105679c1%40apereo.org.


Re: [cas-user] Acceptable Usage Policy(AUP) in CAS5.2.x

2018-05-24 Thread Jay
We have enabled the User acceptance policy.

Whenever I use incognito window in Chrome and login it does not shows the 
User Policy page to accept. Only the first time I could see but closing and 
opening a new windows does not show the policy page.

Any help here is much appreciated.

Thanks,
Jay



On Tuesday, April 24, 2018 at 7:59:51 AM UTC-5, Manfredo Hopp wrote:
>
> Manually change login webflow xml. 
> You will have to address missing credentials issue.
>
> El martes, 24 de abril de 2018, Jay  > escribió:
>
>> Hello everyone,
>>
>> As part of the migration from CAS3.5 to CAS5.2.x, we have to implement 
>> the User Policy acceptance UI to allow the user to agree to the terms.
>>
>> In CAS3.5 we show the policy page even before the Login screen like shown 
>> below
>>
>>
>> 
>> Tried to have the same feature in CAS5.x and included the following 
>> properties.
>>
>>- Added the below in application.properties file:
>>
>> *cas.acceptableUsagePolicy.au 
>> pAttributeName=aupAccepted*
>>
>>
>>- Added the below dependency in pom.xml:
>>
>>  
>>   *  *
>> *org.apereo.cas*
>> *
>> cas-server-support-aup-webflow*
>> *${cas.version}*
>> **
>>
>> After adding the properties, User policy page is only shown after the 
>> user login with his/her credentials not before the login. Is this in built 
>> in CAS5 which cannot be changed or we can show the Policy page actually 
>> before a user logs in. If so can you please help me here on how to change 
>> it.
>>
>> Thanks & Regards,
>> Jay
>>
>> -- 
>> - Website: https://apereo.github.io/cas
>> - Gitter Chatroom: https://gitter.im/apereo/cas
>> - List Guidelines: https://goo.gl/1VRrw7
>> - Contributions: https://goo.gl/mh7qDG
>> --- 
>> You received this message because you are subscribed to the Google Groups 
>> "CAS Community" group.
>> To unsubscribe from this group and stop receiving emails from it, send an 
>> email to cas-user+u...@apereo.org .
>> To view this discussion on the web visit 
>> https://groups.google.com/a/apereo.org/d/msgid/cas-user/c9f9b1b8-142d-49f8-9510-33813a98913d%40apereo.org
>>  
>> 
>> .
>>
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/3914d42c-e3e4-4fa1-8e22-681b15d6c861%40apereo.org.


[cas-user] SLO and SSO using Mod_auth_cas

2018-05-24 Thread Ramakrishna G
Hello,

I am using Mod_auth_cas for reverse proxy to my cas server. How do I achive
slo and sso using mod_auth_cas? Also when I logout I am still able to
access my application without authentication. Is this the way mod_auth_cas
works?

Thanks
Ramakrishna G

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAGST5P_19UfBq%2BsefvrBRD9UBOJMQHQqJj%3DmJzvm3Op6JsSUAQ%40mail.gmail.com.