Re: [cas-user] CAS 7.0.3: missing LDAP principal attributes when using DUO MFA

Hi, We are using CAS in version 6.5 on production with protocols OAuth, SAML, OIDC. We use attributeRepository from LDAP because we need *memberOf *with recursive data. There are many memberOf so we need to filter it out. We use attributeReleasePolicy with RegisteredServiceMutantRegexAttributeFilt

Re: [cas-user] CAS 7.0.3: missing LDAP principal attributes when using DUO MFA

Mike, What logger did you enable to see this? Ray On Fri, 2024-04-12 at 11:36 -0700, Mike S wrote: Notice: This message was sent from outside the University of Victoria email system. Please be cautious with links and sensitive information. Thanks for your response Ray. I've been banging my hea

Re: [cas-user] cas7, how do I load thymeleaf files in Intellij?

Yan, The overlay project is a shell that makes deployment simple because it _does not_ include all of the files from cas. When you build the overlay, it pulls in the cas war file, replacing any files you may want to override with ones from your overlay src folder. If you want to make changes to

Re: [cas-user] CAS Client side (user) session timeout - regd

Amulya, Are you talking about logging out of an application or about cas? For an application, that would be in the application configuration. For cas, see https://apereo.github.io/cas/6.6.x/ticketing/Configuring-Ticket-Expiration-Policy.html Ray On Fri, 2024-04-12 at 04:00 -0700, Amulya Sri P

Re: [cas-user] CAS 7.0.3: missing LDAP principal attributes when using DUO MFA

Thanks for your response Ray. I've been banging my head against this for a while and I thought it was something I was missing. I've verified the conflict resolver option doesn't work. The log debug log output shows the LDAP and DUO attributes at one point are merged, but the result is discarde

[cas-user] cas7, how do I load thymeleaf files in Intellij?

Hello, I am new to Intellij, and is using CAS7 overlay project. I imported it into Intellij. I was unable to load classes and html files in cas-server-support-thymeleaf. See screen shot, in my project, thymeleaf is correctly listed on compileClassPath on the right, but not listed in External

Re: [cas-user] CAS 7.0.3: missing LDAP principal attributes when using DUO MFA

Mike, I can confirm this behaviour. DefaultPrincipalElectionStrategy was changed between 6.5 and 7.0. The change was in 5bcef20 about 5 months ago. The old behaviour was to select the first principle in a list; new behaviour defaults to last. Even setting this property, cas.person-directory.pr

[cas-user] CAS Client side (user) session timeout - regd

Hi all, I have a requirement like, whenever user (client) is inactive for more than 5min, the session of the user has to be closed! basically must be logged out. Can we do it using cas.properties? am using cas-6.6.5 Thanks in advance, Amulya -- - Website: https://apereo.github.io/cas - Gitter