eleting the cache files created by mod_auth_cas
during login. Next time any request from the browser will be invalidated as
the cookie files are deleted and automatically redirected to the login page.
Thanks & Regards
Ramakrishna G
On Tue, Mar 24, 2020 at 3:51 PM 'Maksim Kopeyka' via ram
wrote
Thanks to everyone who responded to this thread.
Regards
-Ram
On Thu, Nov 21, 2019 at 7:30 AM Andy Ng wrote:
> Hi Ram,
>
> Although other already answer, still want to charm in with some of my
> opinion :)
>
> > Does CAS support both authentication as well as authorization?
> Yup, at least
Hi everyone,
A few questions for those of you who are using IAM plus SSO.
1. Does CAS support both authentication as well as authorization?
1. If Yes, Can you please elaborate with documentation.
2. If No, Any workaround can be done on CAS to support authorization?
2. Which
Write these 2 lines in cas.properties file
LogLevel debug
CASDebug On
On Thu, Mar 28, 2019 at 7:53 AM nam nguyễn wrote:
> How to debug cas 5.3 ?
>
> Everyone help me
>
>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines:
have not faced any problems. Thought will get suggestions from you all.
Thanks
Ramakrishna G
On Sat, Feb 23, 2019 at 10:52 AM Andy Ng wrote:
> Hi Dave,
>
> 1. Hazelcast
> 2-5. I consider them sensitive information, sorry Dave can't disclose them
> 6. You might need to the cap
can
handle & fine tune to get maximum out of these two servers?
Thanks
Ramakrishna G
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message bec
hanging to start the cas. Are you running
tomcat as root user? If yes then change user of you log folder to
root:tomcat and then check if tomcat is able to create log files.
Thanks
Ramakrishna G
On Thu, Jan 3, 2019 at 5:46 AM Ray Bon wrote:
> Emmanuel,
>
> The last log line is deploying
file.
Thanks
Ramakrishna G
On Wed, Jan 2, 2019 at 1:22 PM Emmanuel Chukwu
wrote:
> Happy New Year. Welcome to 2019 everyone. I am wishing all a happy and
> successful year ahead.
>
> Please I still need help with this issue.
>
> On Fri, Dec 28, 2018 at 8:25 PM Emmanu
Mac,
You really saved my!! Thanks you so much.
On Wed, Dec 12, 2018 at 6:38 PM Mac Reid wrote:
> Hi,
>
> Our repo is based on the overlay. You can find the version of spring boot
> here: https://github.com/apereo/cas-overlay-template/tree/5.3
>
> Another thing I noticed is the node option
Hi Mac,
I tried your solution but didn't work!!.
Do you any dependency added in your pom file apart from
"cas-server-support-redis-ticket-registry"? Also what is the version of
springboot used?
Thanks
Ramakrishna G
On Wed, Dec 12, 2018 at 1:23 AM Mac Reid wrote:
> Hi,
&
Sorry I exactly don't remember what all I tried to do it. I remember I
changed the login-webflow.xml
I compared both the login webflow and removed few transition in 5.3.X to
make it work I guess.
Thanks
Ramakrishna G
+91 8792114542
On Mon, Dec 10, 2018 at 1:11 AM Samuel Garçon
wrote:
>
Does Cas 5.3.0 version has redis sentinel support?
> On 04-Dec-2018, at 6:48 PM, Ramakrishna G wrote:
>
> Hello all,
>
> I am using redis to store ticket is CAS. But now I have a new requirement to
> implement HA Redis Ticket Registery with sentinel.
&
1) Do I have to configure CAS on a different port from Tomcat or they must use
the same port?
It can be on same port or different port. If you want to use 8443 then first
stop tomcat and then start CAS.
2) How do I configure a different port for CAS (if necessary)?
In cas.properties file you
It says “Address already in use”. Try different port or kill the process
running on port 8443.
Thanks
Ramakrishna G
+91 8792114542
From: Emmanuel Chukwu
Sent: Thursday, December 6, 2018 11:23 AM
To: cas-user@apereo.org
Subject: Re: [cas-user] Httpt 404 Error while trying to access CAS login
Hello all,
I am using redis to store ticket is CAS. But now I have a new requirement
to implement HA Redis Ticket Registery with sentinel.
cas.properties
cas.ticket.registry.redis.host=192.168.111.201
cas.ticket.registry.redis.port=6379
cas.ticket.registry.redis.sentinel.master=mymaster
r and expect the headers to
> show up?
>
> They will not show up.
>
> You will need add those headers to the attributes sent back in the
> validation response for them to be available as headers in you PHP
> script.
>
>> On 29 September 2018 at 09:04, Ramakrishna G
hing? Can
someone help me in getting all the headers.
Thanks
Ramakrishna G
+91 8792114542
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you
Thanks Misagh.
On Sat, Sep 29, 2018 at 2:46 AM Misagh Moayyed
wrote:
> This maybe:
> https://apereo.github.io/cas/5.3.x/installation/Configuration-Properties.html#unique-principal
> ?
>
> On Friday, August 10, 2018 at 11:01:38 AM UTC+4:30, Ramakrishna G wrote:
>>
>&
https://cas.domain.com:8443/cas/serviceValidate
Can you curl the above url and see what response you are getting?
Check if the above url is accessible first?
Along with apache logs can you also post cas server logs
Sent from my iPhone
> On 24-Sep-2018, at 6:41 PM, Fahmi L. Ramdhani
>
Thanks Ray for clarifying things.
Regards
Ramakrishna G
On Thu, Aug 16, 2018, 9:09 PM Ray Bon wrote:
> Ram,
>
> The back channel logout goes to the service, not the browser, so the
> service needs to end the user session. The user will only know the other
> tabs are logged o
e is no session. With front
> channel, you could get away with it protected but if the session ended just
> as the redirect happened then you get the log in page when trying to log
> out, that would be weird.
>
> Ray
>
> On Wed, 2018-08-15 at 23:26 +0530, Ramakrishna G wrote:
>
names:tc:SAML:2.0:protocol"
> ID="LR-3-yqsjo-tsMJUTvMmf-o4-D-EI" Version="2.0"
> IssueInstant="2018-08-15T09:31:59Z"> xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">@NOT_USED@
> ST-1-wtDww85p-eauhK1Obnv28JuCVrM-tomt
>
> just change t
curl -X POST https://domain/logout.html
>
> Ray
>
> On Mon, 2018-08-13 at 16:57 +0530, Ramakrishna G wrote:
>
> Ray,
>
> I tried even with domain name. No luck!!
>
>
>
>
>
>
> On Fri, Aug 10, 2018 at 10:58 PM, Ray Bon wrote:
>
> Try with the name inst
Ray,
I tried even with domain name. No luck!!
On Fri, Aug 10, 2018 at 10:58 PM, Ray Bon wrote:
> Try with the name instead of ip.
>
> Ray
>
> On Fri, 2018-08-10 at 22:18 +0530, Ramakrishna G wrote:
>
> I am using wild card certificate. Certificate is installed in
Fernondo,
Did you solve the issue? Can you share your code.
Thanks in advance
On Tuesday, June 26, 2018 at 8:45:05 PM UTC+5:30, Fernando Gómez wrote:
>
> Chia-Ying Yang Thanks for answering me. You're absolutely right, but
> specifically I need to be able to show a message when someone tries
:
> Ramakrishna,
>
> This looks like a problem with certificates or network. If the certificate
> for webserverip is self signed, you have to add it to java keystore for CAS
> servers (use keytool). I know less about network issues.
>
> Ray
>
> On Fri, 2018-08-10 at 12:12 +0530, Ram
Hello all,
I am using mod_auth_cas as cas client and ha cas servers. In service I have
defined
{
"@class" : "org.apereo.cas.services.RegexRegisteredService",
"serviceId" : "^(https)://.*",
"name" : "wildcard",
"id" : 1,
"logoutType" : "BACK_CHANNEL",
"logoutUrl" :
Ramakrishna G
+91 8729114542
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS
Comm
Thanks for the hint & instant responses Ray.
Regards
Ramakrishna G
+91 8792114542
On Sat, Aug 4, 2018 at 1:07 AM, Ray Bon wrote:
> Ramakrishna,
>
> This is what I set on my test machine:
>
> upstream casssl {
> server localhost:8491;
>
Do you mean to say ip-hash as load balancing mechnaism. I have tried that
as well. But No Luck
Thanks
Ramakrishna G
On Sat, Aug 4, 2018 at 12:37 AM, Ramakrishna G wrote:
> Ray,
>
> Can you please elaborate this "If you set nginx to be sticky, will
> validation succ
Ray,
Can you please elaborate this "If you set nginx to be sticky, will
validation succeed?" Any example for this.
Also in cas logs I could see ticket was not validated when I go through
NGINX
Thanks
Ramakrishna G
On Fri, Aug 3, 2018 at 11:02 PM, Ray Bon wrote:
>
Pointing to
one of the cas server - Works fine
CASDebug On
LogLevel debug
No error as well. I am not sure where I am going wrong.
Can anyone help please.
Thanks
Ramakrishna G
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https
ead/write NFS?
> If redis is shared among your servers, how long will it take?
>
> Ray
>
> On Fri, 2018-08-03 at 15:26 +0530, Ramakrishna G wrote:
>
> Hello Team,
>
> I have multiple CAS client (mod_auth_cas) connected to a load balancer. My
> problem is mod_auth_cas ask
and have a feeling it is not safe to
have this solution in production environment.
Can we have a redis mechanism to store the mod_auth_cas cookie information?
Do we already have it?
I feel this approach would be more faster as it is mem_cached(Redis) than
NFS.
Thanks
Ramakrishna G
+91 8792114542
CTOR OF INFORMATION SECURITY*
> INFORMATION TECHNOLOGY
>
> 71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
> <https://maps.google.com/?q=71+FIFTH+AVE.,+9TH+FL.,+NEW+YORK,+NY+10003=gmail=g>
> +1 212 229-5300 x4728 • david.cu...@newschool.edu
>
> [image: The New School]
>
&
Hello,
I am using Mod_auth_cas for reverse proxy to my cas server. How do I achive
slo and sso using mod_auth_cas? Also when I logout I am still able to
access my application without authentication. Is this the way mod_auth_cas
works?
Thanks
Ramakrishna G
--
- Website: https://apereo.github.io
Ok Ray. Thanks for your help!!
Anyone who has worked on Mod_auth_cas along with CAS server pls guide me.
My issue is MOD_AUTH_CAS_S cookie is not removed from browser after logout.
Thanks
Ramakrishna G
On Tue, May 22, 2018 at 9:53 PM, Ray Bon <r...@uvic.ca> wrote:
> Ramakrishna,
>
Ray,
I was able to solve the ssl issue using open_sll. Now I am using https at
both end with valid certificate.
But my original problem of cas not logging out still persist.
On Sat, May 19, 2018 at 4:51 PM, Ramakrishna G <r...@tts.in> wrote:
> Ray,
>
> I configured ssl as advise
ertName} -alias ${aliasName} -keystore
> $JAVA_HOME/jre/lib/security/cacerts
>
> https://apereo.github.io/cas/developer/Build-Process-5X.html#configure-ssl
>
> Ray
>
> On Fri, 2018-05-18 at 11:04 +0530, Ramakrishna G wrote:
>
> Ray,
>
> Let me explain you my architecture. I
t; $JAVA_HOME/jre/lib/security/cacerts
>
> https://apereo.github.io/cas/developer/Build-Process-5X.html#configure-ssl
>
> Ray
>
> On Fri, 2018-05-18 at 11:04 +0530, Ramakrishna G wrote:
>
> Ray,
>
> Let me explain you my architecture. I have a CAS client (mod_auth_cas)
If CAS and your client are on different
> machines, then the certificate will need to be added to both.
>
> Ray
>
> On Thu, 2018-05-17 at 12:01 +0530, Ramakrishna G wrote:
>
> Hi Ray,
>
> As said by you, I enabled logs and this is the output
>
>
>
> level="info">
>
> onMismatch="NEUTRAL" />
> onMismatch="DENY" />
>
>
>
>
>
>
>
&
, Ramakrishna G <r...@tts.in> wrote:
> Yes it is redirected to logout page, yet cookies is not removed. When I
> refresh it redirects to application with valid ticket instead of
> redirecting to login page.
>
>
> On Fri, May 11, 2018 at 8:39 PM, Ray Bon <r...@uvic.
to /cas/logout, the cookies will/should be
> removed.
>
> Ray
>
> On Fri, 2018-05-11 at 19:30 +0530, Ramakrishna G wrote:
>
> Hello Team,
>
> On logout CAS cookies are not removed from browser. I need to forcefully
> clear. What might be the reason?
>
> Thanks
&g
Hello Team,
On logout CAS cookies are not removed from browser. I need to forcefully
clear. What might be the reason?
Thanks
Ramakrishna G
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https
e either horizontally or vertically.
On Tue, May 8, 2018 at 12:02 PM, Ramakrishna G <r...@tts.in> wrote:
> I have a requirement where I hit a url say www.abc.com/123 which
> redirects to cas if not logged in, generates tickets and then redirects to
> specified url. User is unawar
using Mod_Auth_CAS
Can you pls elaborate mod_proxy_balancer and how will it help my
requirement to meet?
Thanks in Advance
Ramakrishna G
On Mon, May 7, 2018 at 8:29 PM, Richard Frovarp <richard.frov...@ndsu.edu>
wrote:
> A bit confused as to why you need the IdP (CAS Server) a
ess
utilized(node) approach.
Thanks
Ramakrishna G
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Gro
gt; Ray
>
> On Wed, 2018-02-14 at 21:51 -0800, Ramakrishna G wrote:
>
> I am using cas version 5.2.1 and mod_auth_cas 1.1. I have a logout url
> http://XX.XX.XX/cas/logout and also enabled CASSSOEnabled and when I
> click logout it says success but it is not logged out. When I hit my
logout. None of the cookies or session is destroyed.
1. How do I destroy per application session?
2. How do I destroy entire CAS application session?
Thanks
Ramakrishna G
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl
to
communicate in http.
Thanks
Ramakrishna G
On Thu, Feb 8, 2018 at 4:35 PM, Man H <info.ings...@gmail.com> wrote:
> You will have to install it in both but this is not a CA's issue you will
> find more information in stack overflow etc about SSL tomcat apache
> configuration.
>
>
?
In mod_auth_cas which certificates does this *CASCertificatePath* refer to?
How do I create self signed certificates for both CAS Server and CAS Client?
It would be helpful if someone clarify me on this.
On Tue, Feb 6, 2018 at 7:21 PM, Ramakrishna G <r...@tts.in> wrote:
> Yes. I am j
UTC+5:30, Jeffrey Ramsay wrote:
>
> :) Let us know how your custom authentication handler works out; I'm
> interesting in doing this the correct way, eventually.
>
> -Jeff
>
> On Wed, Feb 7, 2018 at 7:32 AM, Ramakrishna G <r...@tts.in >
> wrote:
>
>> Hey Jef
Yes. I am just using at my development server. When releasing to production
I'll get a valid SSL Certificate.
Thanks
Ramakrishna G
On Tue, Feb 6, 2018 at 6:36 PM, Man H <info.ings...@gmail.com> wrote:
> There is a potential security risk in doing this .
> CA's needs SSL in order
cookie code..
Thanks
Ramakrishna G
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS
Comm
your handler
>
>
>
> El lunes, 5 de febrero de 2018, Ramakrishna G <r...@tts.in> escribió:
>
>> Hi Man H,
>>
>> I am not able to see my logs in cas.log. I have a doubt whether it is
>> registered or not.
>>
>>
>> I can see com
s no error the stop message is a warning!
> Now try to debug your handler
>
>
>
> El lunes, 5 de febrero de 2018, Ramakrishna G <r...@tts.in> escribió:
>
>> Hi Man H,
>>
>> I am not able to see my logs in cas.log. I have a doubt whether i
Hi Mukunthini Jeyakumar,
To resolve this error you need have a valid SSL certificate signed by CA.
If you don't have you can just disable SSL in cas.properties file.
server.ssl.enabled= false
cas.serviceRegistry.initFromJson=true
cas.serviceRegistry.config.location: file:/etc/cas/services
in
Hi Community,
I am using cas-overlay-maven with version 5.2.1
I need to have 3 fields. Login, Pancard and then Password. I
copied login-webflow.xml inside src/main/resources and added the binding.
It does not
On Thu, Feb 1, 2018 at 1:28 AM, Ray Bon <r...@uvic.ca> wrote:
> Try these for web flow and configuration:
> includeLocation="true"/>
> includeLocation="true"/>
>
> You can also put logging into your file MyAuthenticationEventExecution
&
om
>
>
> El miércoles, 31 de enero de 2018, Ramakrishna G <ramakris...@teligenz.in>
> escribió:
>
>> I am using CAS Version 5.2.1
>>
>> I need to implement Custom Authenticaction Handler and I have used
>> https://apereo.github.io/cas/5.2.x/installation/C
/resources/META-INF (resources with an 's').
> You could also put some logging in your Configuration file to make sure it
> is being called and the properties are being set correctly.
>
> Ray
>
> On Wed, 2018-01-31 at 15:45 +0530, Ramakrishna G wrote:
>
> Hi Robert,
>
&g
I am using CAS Version 5.2.1
I need to implement Custom Authenticaction Handler and I have used
https://apereo.github.io/cas/5.2.x/installation/Configuring-Custom-Authentication.html
for
that.
As per the site I have registered in spring.factories.
But nothing seems to work. How do I check
My cas-overlay version is 5.2.1
On Wed, Jan 31, 2018 at 3:45 PM, Ramakrishna G <r...@tts.in> wrote:
> Hi Robert,
>
> I am using cas-overlay. I have the below 2 files under src/main/resource
> folder and package name com.example.cas
>
> I have also spring.factories file
t; See https://apereo.github.io/cas/5.1.x/installation/Configuring-Custom-
> Authentication.html
> orhttps://apereo.github.io/cas/5.2.x/installation/Configuring-Custom-
> Authentication.html
>
> depending on your CAS Server version.
>
>
>
>
>
> Am 31.01.2018 um 10:10 schrieb Ramak
I tried following this
https://apereo.github.io/2017/02/02/cas51-authn-handlers/ for Custom
Authentication Handler but MyAuthenticationHandler is never called or
registered.
On Wed, Jan 31, 2018 at 11:16 AM, Ramakrishna G <r...@tts.in> wrote:
> Ignore previous mail.
>
>
?
Thanks
Ramakrishna G
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS
Community&q
Hi Team,
I need to write a for CAS which takes userId, password and pancard number.
All 3 parameters will be sent to custom server(My other server, Not in CAS)
and validated and response is returned back.
How can I achieve this is CAS overlay?
Thanks
Ramakrishna G
--
- Website: https
amakrishna
On Thu, Jan 25, 2018 at 10:45 PM, David Hawes <dha...@vt.edu> wrote:
> On 23 January 2018 at 08:52, Ramakrishna G <ramakris...@teligenz.in>
> wrote:
> > Unauthorized
> >
> > This server could not verify that you are authorized to access the
> docu
Jan 25, 2018 at 11:04 PM, Ramakrishna G <r...@tts.in> wrote:
> Hi David,
>
> As suggested I enabled Debug Mode. Error what I got to..
>
>
> [Thu Jan 25 17:53:01.512443 2018] [ssl:info] [pid 28180] SSL Library
> Error: error:1407609C:SSL routines:SSL23_GET_CLIENT_HELLO:http re
Hello all,,
I am using mod_auth_cas. While i hit cas url I give ip and cas
automatically change it to host name. Can anyone suggest how to stop this?
Eg: my url: https://192.168.111.XX => It redirets to my cas url as
Application Not Authorized to Use CAS The application you attempted to
authenticate to is not authorized to use CAS.
I keep getting this error. CAS-MANAGEMENT i am not able to run. Have any
other solution to get rid of this error.
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom:
72 matches
Mail list logo