Hi,
Which version of the CAS server do you use? Do you have a cluster of CAS
servers?
Thanks.
Best regards,
Jérôme
Le jeu. 12 mars 2020 à 04:26, Jack a écrit :
> After the PAC4J authentication by provider, Service information is lost
> occasionally and user does not go back to service URL, rat
After the PAC4J authentication by provider, Service information is lost
occasionally and user does not go back to service URL, rather lands at
/login.
During the regular login process, service is always available as a URL
parameter.
In case of the PAC4J authentication flow, where authentication c
Adrian,
I have not used OIDC in cas so there may be some bits that I am unaware of.
I assume you have seen
https://apereo.github.io/cas/6.1.x/installation/Logout-Single-Signout.html#redirecting-logout-to-service
Is myapp.com different from mysite.com or is that a typo?
If I understand correctly
Matt,
You could be an ass and tell the user 'do not use safari'.
But my experience is that safari holds on to odd bits of session data. New
sessions are not fulfilled because old session data is being sent.
Have the user close safari (the application, not just the window), clear
cookies, cache
Hi everyone,
I'm wondering if anyone else has seen something like this:
(Environment: CAS 5.3.15.1, AD auth, Hazelcast ticket registry.)
I had a report of someone not being able to access a particular service
after successfully logging in to CAS (using Safari on iPad and iPhone). It
applicat
Hi Ray,
Sorry for not having replied earlie, I'm a bit ashamed :( (I was working on
other topics, but still my fault I was asking the question in the first place)
The use case for having this regex is that I'm using the same client for
multiple applications.
Hence:- I'm using the same clientId f
Hello, we have done this :
We have an independant rest api that manages the AUP
We have implemented a
custom AbstractPrincipalAttributeAcceptableUsagePolicyRepository
In the verify method we check if the AUP has been accepted, if not, we put
the AUP text in the flow scope, the text is retrieved
The best way to implement AUP flow customizations would be through a pluggable
Groovy script which CAS will use for 2 phases - verification and recording of
acceptance fact:
https://apereo.github.io/cas/6.1.x/webflow/Webflow-Customization-AUP.html#groovy
So you could do the additional work nee
Hi, Ray.
I understand why you referred theming per service. But what I really need
is an additional step in the login flow. Every service should be blocked by
this. This isn't an additional service, nor the text I want to display is
static.
I am loading the text and ids from a database and I need
Did you ever get this working? I can't seem to get CAS to recognize the
sms rest provider at all...(or Clickatell or Groovy)
On Thursday, January 23, 2020 at 12:28:37 AM UTC-8, Emilian Mitocariu wrote:
>
> Update: the service I'm using to send the Signal messages also accepts
> this kind of
Francisco,
I have not done anything like this, so this is a guess.
The login page has the ability to display per service customization,
https://apereo.github.io/cas/6.1.x/services/Service-Management.html (theme
control).
Perhaps the process there can be used in AUP.
Ray
On Wed, 2020-03-11 at 1
Thank you Dmitriy, I was able to get it working with your help.
On Wed, Mar 11, 2020 at 9:09 AM Dmitriy Kopylenko
wrote:
> Set this flag to true: *${configurationKey}.autoRedirect=true *where
> *configurationKey
> *is your pac4j client prefix path of interest.
>
>
> https://apereo.github.io/cas
Set this flag to true: ${configurationKey}.autoRedirect=true where
configurationKey is your pac4j client prefix path of interest.
https://apereo.github.io/cas/6.0.x/configuration/Configuration-Properties-Common.html#delegated-authentication-settings
Cheers,
D.
On March 11, 2020 at 03:57:17, Joh
Hi,
I'm currently implementing dynamic Acceptable Usage Policies (AUP). They
need to be loaded from some repository and need to be displayed on the
webpage.
The project already verifies if a given user has unnaccepted policies to
block him from proceeding with the login flow. But I also need to lo
Interesting; I haven't had any such issues with my global principal
attribute predicate script, but the delay times are similar. Also of note
is that the suspicious code you've isolated, like mine, has to do with
string processing (or so it seems at first blush).
Another testing route I took was r
We have also observed this slow down running cas 6.1.*. We have been
tracking our troubleshooting progress[1] but so far have not found anything
concrete. however my colleague has tracked down one pause to the following
part of sprin-webflow code
https://github.com/spring-projects/spring-webf
How do I set CAS to auto-redirect to a configured IDP when a user hits the
cas login page?
The documentation listed below states :
"CAS does allow options for auto-redirection of the authentication flow to
a provider, if only there is a single provider available and configured"
It's mentioned b
17 matches
Mail list logo