Re: [cas-user] pb openid hazelcast exception

oups... My openid configuration : cas.authn.oidc.issuer=https://mydomain.fr/cas/oidc # Skew ID tokens in minutes # cas.authn.oidc.skew=5  cas.authn.oidc.jwksFile=file:/etc/cas/oidc.jwks cas.authn.oidc.dynamicClientRegistrationMode=PROTECTED cas.authn.oidc.subjectTypes=public # Supported

Re: [cas-user] Before I complete a deployment, can I get a sanity check of my architecture plan?

Joe, The key is small steps. Make a change and test. And of course, once it is working as expected, commit to your git repo. For some aspects of Cas, you can create dummy services [in the service registry]. Cas will do its part for authentication and redirect, which will result in a 404. With

[cas-user] OpenId CAS 6.4 Unable to locate authentication profile

Greetings, I try to set up openid Connect on CAS overlay 6.4.2, in order to allow authentification to an app requiring uid, surname and lastname, and mail. I thought I could obtain result using standard scopes opendid + profile + email I'm following docmentation samples and guidelines, to

Re: [cas-user] Before I complete a deployment, can I get a sanity check of my architecture plan?

Is my understanding correct that the management server overlay goes on the "config server" host, or does it go on each of the "cas-overlay" front ends? My thought was that it was the hub component of a hub-and-spoke system, but I didn't see that explicitly laid out, or part of a best

[cas-user] Custom WebFlow example

Hi, Can someone show me some custom WebFlow source code ? I don't really know where to start. What I am trying to achieve : mixed mode SPNEGO works fine, but I had some complaints because of the popup appearing with some browsers when CAS is accessed from the outside world. It's fine

Re: [cas-user] Custom WebFlow example

See https://fawnoos.com/tags/?t=Spring+Webflow and https://apereo.github.io/cas/6.5.x/webflow/Webflow-Customization-Extensions.html Ray On Wed, 2022-06-01 at 22:23 +0200, spfma.t...@e.mail.fr wrote: Notice: This message was sent from outside the University of Victoria email system. Please be

Re: [cas-user] Before I complete a deployment, can I get a sanity check of my architecture plan?

Let me clarify. That should read managing cas service registry. It does not manage cas nor any application. Ray On Wed, 2022-06-01 at 19:38 +, Ray Bon wrote: Notice: This message was sent from outside the University of Victoria email system but is claiming to be from UVic. Please be

Re: [cas-user] Before I complete a deployment, can I get a sanity check of my architecture plan?

Cas-management can be placed where you like. It is a [n optional] web application for managing cas services. It is fine on the config server; may make lock down config for these two applications a bit simpler. Ray On Wed, 2022-06-01 at 12:02 -0700, Joe Gullo wrote: Notice: This message was