Here is what I found, is this a bug in CAS source code?
Reading this code, I declared my bean to override
"jdbcPasswordChangeService", that did Not work.
class JdbcPasswordManagementConfiguration {
static class JdbcPasswordManagementServiceConfiguration {
I've setup CAS 7.04 and I am trying to login to cas-management.
After login (password is correctly resolved, user is resolved, service is
recognised) I am returning to the login screen.
The error is:
WARN
[org.apereo.cas.web.flow.resolver.impl.DefaultCasDelegatingWebflowEventResolver]
-
Marcin,
If you have multiple providers, cas can display a menu,
https://apereo.github.io/cas/7.0.x/mfa/Multifactor-Authentication-ProviderSelection.html
Are you making your own mobile authenticator app or do you want to use one not
in the list of supported MFA endpoints,
Łukasz,
Increase your logging level. Some of the output should list the attributes and
values for the user logging in; just to make sure those attributes are being
resolved.
Ray
On Tue, 2024-05-07 at 23:14 -0700, Łukasz Woźniak wrote:
Notice: This message was sent from outside the University
Tom,
Our setup is a bit different. We use this for services that require MFA
"multifactorPolicy":
{
"@class": "org.apereo.cas.services.DefaultRegisteredServiceMultifactorPolicy",
"multifactorAuthenticationProviders":
[
"java.util.HashSet",
[
"mfa-duo"
]
],
"failureMode": "CLOSED",
Is it possible to configure multiple instances of mfa-simple and let the
user choose one of them?
For example: mail, sms or notification sent by groovy script to mobile app?
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines:
Hello,
We actually migrating from CAS 6.5 to 7.0. We are integrated with Office365
but in version 7.0.3 is problem that We dont get family_name and given_name
attributes. Our configuration in scope we have set: "openid profile email"
Anyone have similar problem ?
Thanks,
Lukas
--
- Website:
Hi, thanks for the response!
Actually what seems to happen is that when */authorize* is called, the CAS
*OAuth20HandlerInterceptorAdapter.preHandle() *is invoked which in turn
invokes the pac4j *SecurityInterceptor*. Eventually the
*org.pac4j.core.engine.DefaultSecurityLogic
*gets called and