Re: [cas-user] Deployment Question from the Excellent Docs at: 'dacurry-tns.github.io'

[Andy Ng]

Hi Jann,

Pretty sure by default, configuration path is not relative, instead is 
absolute path. 

So "'/opt/tomcat/webapps/etc/cas/config" is not right, instead is 
"/etc/cas/config".

But either way, you can try both on your own, and see which one is correct.

Cheers!
- Andy



On Saturday, 12 May 2018 03:09:43 UTC+8, Jann Malenkoff wrote:
>
> Thanks Andy!
>
> It took me some time to wrap my head around this - your post sparked the 
> direction --- I think I userstand now :)
>
> ./build.sh package --- generates the war (configuration is picked up from 
> '/etc/cas/config' --- relative to the cas-overlay)
>
> When cas.war is expanded in tomcat: '/opt/tomcat/webapps/cas' -- the 
> configuration files are in '/opt/tomcat/webapps/cas/etc/config'.
>
> Did I understand above correctly?
>
>
> On Friday, May 11, 2018 at 6:31:54 AM UTC-7, Andy Ng wrote:
>>
>> Hi Jann,
>>
>> build.sh is what you are looking for, as documented in the overlay github 
>> https://github.com/apereo/cas-overlay-template (which I think is where 
>> you get the command from anyway).
>>
>> I am also deploying using WAR in Tomcat for my setup. And based on my 
>> experience, WAR to Tomcat using build.sh would work without any additional 
>> configuration.
>>
>> Of course just like what David said, "./mvnw clean package" is going to 
>> be fine most likely. However, the build.sh will do a little bit more things 
>> other than just mvnw clean package, as seen here "
>> https://github.com/apereo/cas-overlay-template/blob/5.1/build.sh;.
>>
>> So... just see which one is working and use that one.
>>
>> Cheers!
>> - Andy
>>
>> On Thursday, 10 May 2018 10:01:02 UTC+8, David Curry wrote:
>>>
>>> You can probably use build.sh; I don't use it myself, so I'm not sure of 
>>> its usage or what else it does for you (I believe it copies the config 
>>> files into place, etc.). Personally I just use "./mvnw clean package" and 
>>> then my own scripts, since I'm using the external Tomcat and deploying on 
>>> multiple servers.
>>>
>>> The WAR will not have the config files from cas-overlay-template/etc/cas 
>>> in it; the default setup from GitHub, even with embedded Tomcat, expects 
>>> them to be outside the WAR in /etc/cas. I suppose you could set things up 
>>> to put them in the WAR, but you'd need to shuffle some things around in the 
>>> overlay (move etc/cas into src/main/) and maybe make some 
>>> changes to the build instructions in pom.xml. I've never done this myself, 
>>> but maybe someone else on the list has.
>>>
>>>
>>> David A. Curry,  CISSP
>>> Director of Information Security
>>> The New School - Information Technology
>>> 71 Fifth Ave., 9th Fl. ~ New York, NY 10003
>>> +1 212 229-5300 x4728 ~ david...@newschool.edu
>>> Sent from my phone; please excuse typos and inane auto-corrections.
>>> 
>>>
>>>
>>> On Wed, May 9, 2018, 21:24 Jann Malenkoff  wrote:
>>>
 Thanks David --- for all your work on the documentation and reply below 
 -- very much appreciated.

 For historical reasons, we plan to go with a WAR and place it in 
 /opt/tomcat/webapps

 Our sys admin prefers an Apache HTTPD front-end and standalone tomcat 
 as is (this is the only part we are diverting from your docs).

 To build a WAR.do we run './build.sh package' at 
 '/opt/workspace/cas-overlay-template'?

 I don't see the WAR having the configurations we added in 
 '/opt/workspace/cas-overlay-template/etc'

 Spending many hours in fron of the computer --- my apologies if I am 
 less than coherent.


 On Wednesday, May 9, 2018 at 5:59:59 PM UTC-7, David Curry wrote:
>
> In my configuration (which is essentially what this guide is 
> describing), I use an external Tomcat, not the embedded one. So, my setup 
> follows the Tomcat hardening guidelines, which recommend deploying 
> exploded 
> directories rather than WAR files. See the section on installing Tomcat 
> (under Setting up the environment) for more info on this.
>
> The "tar" command bundles up the contents of the "target/cas" 
> directory, which is what would end up in the WAR file anyway, and also 
> your 
> "etc/cas/config" files.The other options just set things up so when the 
> files are extracted they're owned by the right user and group and have 
> the 
> right permissions.
>
> Read ahead to the next section on the page (the installation shell 
> script) and you'll see where the script extracts the application into 
> "/var/lib/tomcat" ("/opt/tomcat/latest/webapps") and your config files 
> into 
> "/etc/cas/config".
>
> So there's no WAR file to deploy, because it's not needed in the 
> external Tomcat setup. If you really want one Maven builds it and leaves 
> it 
> in the "target" directory, but it's still going to expect the config 
> files 
> to be in "/etc/cas/config", not inside the WAR 

Re: [cas-user] Deployment Question from the Excellent Docs at: 'dacurry-tns.github.io'

[Ray Bon]

Jann,

Are you running on Windows?
On a unix like system, /etc is in the root of the file system, not relative to 
tomcat.
The build script attempts to copy some files to this folder. It is not writable 
by a 'normal' user. You can create the folder (sudo mkdir -p /etc/cas/config) 
and change its ownership (sudo chown userrunningbuild:userrunningbuild 
/etc/cas/config) or you can change the config location (how has slipped my mind 
at the moment). The second option may involve changing build.sh to copy to the 
new location.

Ray

On Fri, 2018-05-11 at 12:09 -0700, Jann Malenkoff wrote:
Thanks Andy!

It took me some time to wrap my head around this - your post sparked the 
direction --- I think I userstand now :)

./build.sh package --- generates the war (configuration is picked up from 
'/etc/cas/config' --- relative to the cas-overlay)

When cas.war is expanded in tomcat: '/opt/tomcat/webapps/cas' -- the 
configuration files are in '/opt/tomcat/webapps/cas/etc/config'.

Did I understand above correctly?


On Friday, May 11, 2018 at 6:31:54 AM UTC-7, Andy Ng wrote:
Hi Jann,

build.sh is what you are looking for, as documented in the overlay github 
https://github.com/apereo/cas-overlay-template (which I think is where you get 
the command from anyway).

I am also deploying using WAR in Tomcat for my setup. And based on my 
experience, WAR to Tomcat using build.sh would work without any additional 
configuration.

Of course just like what David said, "./mvnw clean package" is going to be fine 
most likely. However, the build.sh will do a little bit more things other than 
just mvnw clean package, as seen here 
"https://github.com/apereo/cas-overlay-template/blob/5.1/build.sh;.

So... just see which one is working and use that one.

Cheers!
- Andy

On Thursday, 10 May 2018 10:01:02 UTC+8, David Curry wrote:
You can probably use build.sh; I don't use it myself, so I'm not sure of its 
usage or what else it does for you (I believe it copies the config files into 
place, etc.). Personally I just use "./mvnw clean package" and then my own 
scripts, since I'm using the external Tomcat and deploying on multiple servers.

The WAR will not have the config files from cas-overlay-template/etc/cas in it; 
the default setup from GitHub, even with embedded Tomcat, expects them to be 
outside the WAR in /etc/cas. I suppose you could set things up to put them in 
the WAR, but you'd need to shuffle some things around in the overlay (move 
etc/cas into src/main/) and maybe make some changes to the build 
instructions in pom.xml. I've never done this myself, but maybe someone else on 
the list has.


David A. Curry,  CISSP
Director of Information Security
The New School - Information Technology
71 Fifth Ave., 9th Fl. ~ New York, NY 10003
+1 212 229-5300 x4728 ~ david...@newschool.edu
Sent from my phone; please excuse typos and inane auto-corrections.



On Wed, May 9, 2018, 21:24 Jann Malenkoff  wrote:
Thanks David --- for all your work on the documentation and reply below -- very 
much appreciated.

For historical reasons, we plan to go with a WAR and place it in 
/opt/tomcat/webapps

Our sys admin prefers an Apache HTTPD front-end and standalone tomcat as is 
(this is the only part we are diverting from your docs).

To build a WAR.do we run './build.sh package' at 
'/opt/workspace/cas-overlay-template'?

I don't see the WAR having the configurations we added in 
'/opt/workspace/cas-overlay-template/etc'

Spending many hours in fron of the computer --- my apologies if I am less than 
coherent.


On Wednesday, May 9, 2018 at 5:59:59 PM UTC-7, David Curry wrote:
In my configuration (which is essentially what this guide is describing), I use 
an external Tomcat, not the embedded one. So, my setup follows the Tomcat 
hardening guidelines, which recommend deploying exploded directories rather 
than WAR files. See the section on installing Tomcat (under Setting up the 
environment) for more info on this.

The "tar" command bundles up the contents of the "target/cas" directory, which 
is what would end up in the WAR file anyway, and also your "etc/cas/config" 
files.The other options just set things up so when the files are extracted 
they're owned by the right user and group and have the right permissions.

Read ahead to the next section on the page (the installation shell script) and 
you'll see where the script extracts the application into "/var/lib/tomcat" 
("/opt/tomcat/latest/webapps") and your config files into "/etc/cas/config".

So there's no WAR file to deploy, because it's not needed in the external 
Tomcat setup. If you really want one Maven builds it and leaves it in the 
"target" directory, but it's still going to expect the config files to be in 
"/etc/cas/config", not inside the WAR file.

--Dave


David A. Curry,  CISSP
Director of Information Security
The New School - Information Technology
71 Fifth Ave., 9th Fl. ~ New York, NY 10003
+1 212 229-5300 x4728 ~ david...@newschool.edu
Sent 

Re: [cas-user] Page 'http://localhost:8080/cas/login' does not load up

[Man H]

 Explore cas.dar web-inf

El viernes, 11 de mayo de 2018, Man H  escribió:

> Look into localhost.log
>
> El viernes, 11 de mayo de 2018, Y Levine  escribió:
>
>> Thank you for your reply Manfredo.
>>
>> The following is obtained in the 'cataline.out' when started --- nothing
>> further when page is accessed.
>>
>> Kinda stumped -- I'm probably missing something obvious -- without logs
>> to guide not 100% sure.
>>
>> My other guess is that the 'cas.properties' is in
>> '/opt/tomcat/webapps/cas/WEB-INF/classes/etc/cas/config' -- perhaps this
>> is not the correct location?
>>
>> 11-May-2018 13:54:14.579 INFO [main] org.apache.coyote.AbstractProtocol.init
>> Initializing ProtocolHandler ["http-nio-8080"]
>> 11-May-2018 13:54:14.588 INFO [main] 
>> org.apache.tomcat.util.net.NioSelectorPool.getSharedSelector
>> Using a shared selector for servlet write/read
>> 11-May-2018 13:54:14.616 INFO [main] org.apache.coyote.AbstractProtocol.init
>> Initializing ProtocolHandler ["ajp-nio-8009"]
>> 11-May-2018 13:54:14.617 INFO [main] 
>> org.apache.tomcat.util.net.NioSelectorPool.getSharedSelector
>> Using a shared selector for servlet write/read
>> 11-May-2018 13:54:14.630 INFO [main] 
>> org.apache.catalina.startup.Catalina.load
>> Initialization processed in 1049 ms
>> 11-May-2018 13:54:14.653 INFO [main] 
>> org.apache.catalina.core.StandardService.startInternal
>> Starting service [Catalina]
>> 11-May-2018 13:54:14.653 INFO [main] 
>> org.apache.catalina.core.StandardEngine.startInternal
>> Starting Servlet Engine: Apache Tomcat/8.5.31
>> 11-May-2018 13:54:14.720 INFO [localhost-startStop-1]
>> org.apache.catalina.startup.HostConfig.deployWAR Deploying web
>> application archive [/opt/apache-tomcat-8.5.31/webapps/cas.war]
>> 11-May-2018 13:54:17.117 INFO [localhost-startStop-1]
>> org.apache.catalina.startup.HostConfig.deployWAR Deployment of web
>> application archive [/opt/apache-tomcat-8.5.31/webapps/cas.war] has
>> finished in [2,386] ms
>> 11-May-2018 13:54:17.120 INFO [main] org.apache.coyote.AbstractProtocol.start
>> Starting ProtocolHandler ["http-nio-8080"]
>> 11-May-2018 13:54:17.233 INFO [main] org.apache.coyote.AbstractProtocol.start
>> Starting ProtocolHandler ["ajp-nio-8009"]
>> 11-May-2018 13:54:17.236 INFO [main] 
>> org.apache.catalina.startup.Catalina.start
>> Server startup in 2605 ms
>>
>> On Friday, May 11, 2018 at 1:52:51 PM UTC-7, Manfredo Hopp wrote:
>>>
>>> If that is tour message cas isnt deployed. See tomcat log for errors
>>>
>>> El viernes, 11 de mayo de 2018, Y Levine  escribió:
>>>
 We got lots further --- thank you to the replies.

 The cas.war is now in Tomcat --- however the page '
 http://localhost:8080/cas/login' does not load up -- is there a
 configuration we have to do to enable it? Message received below.


 HTTP Status 404 – Not Found
 --

 *Type* Status Report
 *Message* /cas/login

 *Description* The origin server did not find a current representation
 for the target resource or is not willing to disclose that one exists.

 --
 - Website: https://apereo.github.io/cas
 - Gitter Chatroom: https://gitter.im/apereo/cas
 - List Guidelines: https://goo.gl/1VRrw7
 - Contributions: https://goo.gl/mh7qDG
 ---
 You received this message because you are subscribed to the Google
 Groups "CAS Community" group.
 To unsubscribe from this group and stop receiving emails from it, send
 an email to cas-user+u...@apereo.org.
 To view this discussion on the web visit https://groups.google.com/a/ap
 ereo.org/d/msgid/cas-user/d1f42af3-0351-42da-8978-318c70191d
 1b%40apereo.org
 
 .

>>> --
>> - Website: https://apereo.github.io/cas
>> - Gitter Chatroom: https://gitter.im/apereo/cas
>> - List Guidelines: https://goo.gl/1VRrw7
>> - Contributions: https://goo.gl/mh7qDG
>> ---
>> You received this message because you are subscribed to the Google Groups
>> "CAS Community" group.
>> To unsubscribe from this group and stop receiving emails from it, send an
>> email to cas-user+unsubscr...@apereo.org.
>> To view this discussion on the web visit https://groups.google.com/a/ap
>> ereo.org/d/msgid/cas-user/d63675de-79c3-468a-ac80-3ca57ab2c1
>> cf%40apereo.org
>> 
>> .
>>
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send 

Re: [cas-user] Page 'http://localhost:8080/cas/login' does not load up

[Man H]

Look into localhost.log

El viernes, 11 de mayo de 2018, Y Levine  escribió:

> Thank you for your reply Manfredo.
>
> The following is obtained in the 'cataline.out' when started --- nothing
> further when page is accessed.
>
> Kinda stumped -- I'm probably missing something obvious -- without logs to
> guide not 100% sure.
>
> My other guess is that the 'cas.properties' is in
> '/opt/tomcat/webapps/cas/WEB-INF/classes/etc/cas/config' -- perhaps this
> is not the correct location?
>
> 11-May-2018 13:54:14.579 INFO [main] org.apache.coyote.AbstractProtocol.init
> Initializing ProtocolHandler ["http-nio-8080"]
> 11-May-2018 13:54:14.588 INFO [main] org.apache.tomcat.util.net.
> NioSelectorPool.getSharedSelector Using a shared selector for servlet
> write/read
> 11-May-2018 13:54:14.616 INFO [main] org.apache.coyote.AbstractProtocol.init
> Initializing ProtocolHandler ["ajp-nio-8009"]
> 11-May-2018 13:54:14.617 INFO [main] org.apache.tomcat.util.net.
> NioSelectorPool.getSharedSelector Using a shared selector for servlet
> write/read
> 11-May-2018 13:54:14.630 INFO [main] org.apache.catalina.startup.Catalina.load
> Initialization processed in 1049 ms
> 11-May-2018 13:54:14.653 INFO [main] 
> org.apache.catalina.core.StandardService.startInternal
> Starting service [Catalina]
> 11-May-2018 13:54:14.653 INFO [main] 
> org.apache.catalina.core.StandardEngine.startInternal
> Starting Servlet Engine: Apache Tomcat/8.5.31
> 11-May-2018 13:54:14.720 INFO [localhost-startStop-1]
> org.apache.catalina.startup.HostConfig.deployWAR Deploying web
> application archive [/opt/apache-tomcat-8.5.31/webapps/cas.war]
> 11-May-2018 13:54:17.117 INFO [localhost-startStop-1]
> org.apache.catalina.startup.HostConfig.deployWAR Deployment of web
> application archive [/opt/apache-tomcat-8.5.31/webapps/cas.war] has
> finished in [2,386] ms
> 11-May-2018 13:54:17.120 INFO [main] org.apache.coyote.AbstractProtocol.start
> Starting ProtocolHandler ["http-nio-8080"]
> 11-May-2018 13:54:17.233 INFO [main] org.apache.coyote.AbstractProtocol.start
> Starting ProtocolHandler ["ajp-nio-8009"]
> 11-May-2018 13:54:17.236 INFO [main] 
> org.apache.catalina.startup.Catalina.start
> Server startup in 2605 ms
>
> On Friday, May 11, 2018 at 1:52:51 PM UTC-7, Manfredo Hopp wrote:
>>
>> If that is tour message cas isnt deployed. See tomcat log for errors
>>
>> El viernes, 11 de mayo de 2018, Y Levine  escribió:
>>
>>> We got lots further --- thank you to the replies.
>>>
>>> The cas.war is now in Tomcat --- however the page '
>>> http://localhost:8080/cas/login' does not load up -- is there a
>>> configuration we have to do to enable it? Message received below.
>>>
>>>
>>> HTTP Status 404 – Not Found
>>> --
>>>
>>> *Type* Status Report
>>> *Message* /cas/login
>>>
>>> *Description* The origin server did not find a current representation
>>> for the target resource or is not willing to disclose that one exists.
>>>
>>> --
>>> - Website: https://apereo.github.io/cas
>>> - Gitter Chatroom: https://gitter.im/apereo/cas
>>> - List Guidelines: https://goo.gl/1VRrw7
>>> - Contributions: https://goo.gl/mh7qDG
>>> ---
>>> You received this message because you are subscribed to the Google
>>> Groups "CAS Community" group.
>>> To unsubscribe from this group and stop receiving emails from it, send
>>> an email to cas-user+u...@apereo.org.
>>> To view this discussion on the web visit https://groups.google.com/a/ap
>>> ereo.org/d/msgid/cas-user/d1f42af3-0351-42da-8978-318c70191d
>>> 1b%40apereo.org
>>> 
>>> .
>>>
>> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit https://groups.google.com/a/
> apereo.org/d/msgid/cas-user/d63675de-79c3-468a-ac80-
> 3ca57ab2c1cf%40apereo.org
> 
> .
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 

Re: [cas-user] Page 'http://localhost:8080/cas/login' does not load up

[Man H]

Copy cas.properties to /etc/cas/config

El viernes, 11 de mayo de 2018, Y Levine  escribió:

> Thank you for your reply Manfredo.
>
> The following is obtained in the 'cataline.out' when started --- nothing
> further when page is accessed.
>
> Kinda stumped -- I'm probably missing something obvious -- without logs to
> guide not 100% sure.
>
> My other guess is that the 'cas.properties' is in
> '/opt/tomcat/webapps/cas/WEB-INF/classes/etc/cas/config' -- perhaps this
> is not the correct location?
>
> 11-May-2018 13:54:14.579 INFO [main] org.apache.coyote.AbstractProtocol.init
> Initializing ProtocolHandler ["http-nio-8080"]
> 11-May-2018 13:54:14.588 INFO [main] org.apache.tomcat.util.net.
> NioSelectorPool.getSharedSelector Using a shared selector for servlet
> write/read
> 11-May-2018 13:54:14.616 INFO [main] org.apache.coyote.AbstractProtocol.init
> Initializing ProtocolHandler ["ajp-nio-8009"]
> 11-May-2018 13:54:14.617 INFO [main] org.apache.tomcat.util.net.
> NioSelectorPool.getSharedSelector Using a shared selector for servlet
> write/read
> 11-May-2018 13:54:14.630 INFO [main] org.apache.catalina.startup.Catalina.load
> Initialization processed in 1049 ms
> 11-May-2018 13:54:14.653 INFO [main] 
> org.apache.catalina.core.StandardService.startInternal
> Starting service [Catalina]
> 11-May-2018 13:54:14.653 INFO [main] 
> org.apache.catalina.core.StandardEngine.startInternal
> Starting Servlet Engine: Apache Tomcat/8.5.31
> 11-May-2018 13:54:14.720 INFO [localhost-startStop-1]
> org.apache.catalina.startup.HostConfig.deployWAR Deploying web
> application archive [/opt/apache-tomcat-8.5.31/webapps/cas.war]
> 11-May-2018 13:54:17.117 INFO [localhost-startStop-1]
> org.apache.catalina.startup.HostConfig.deployWAR Deployment of web
> application archive [/opt/apache-tomcat-8.5.31/webapps/cas.war] has
> finished in [2,386] ms
> 11-May-2018 13:54:17.120 INFO [main] org.apache.coyote.AbstractProtocol.start
> Starting ProtocolHandler ["http-nio-8080"]
> 11-May-2018 13:54:17.233 INFO [main] org.apache.coyote.AbstractProtocol.start
> Starting ProtocolHandler ["ajp-nio-8009"]
> 11-May-2018 13:54:17.236 INFO [main] 
> org.apache.catalina.startup.Catalina.start
> Server startup in 2605 ms
>
> On Friday, May 11, 2018 at 1:52:51 PM UTC-7, Manfredo Hopp wrote:
>>
>> If that is tour message cas isnt deployed. See tomcat log for errors
>>
>> El viernes, 11 de mayo de 2018, Y Levine  escribió:
>>
>>> We got lots further --- thank you to the replies.
>>>
>>> The cas.war is now in Tomcat --- however the page '
>>> http://localhost:8080/cas/login' does not load up -- is there a
>>> configuration we have to do to enable it? Message received below.
>>>
>>>
>>> HTTP Status 404 – Not Found
>>> --
>>>
>>> *Type* Status Report
>>> *Message* /cas/login
>>>
>>> *Description* The origin server did not find a current representation
>>> for the target resource or is not willing to disclose that one exists.
>>>
>>> --
>>> - Website: https://apereo.github.io/cas
>>> - Gitter Chatroom: https://gitter.im/apereo/cas
>>> - List Guidelines: https://goo.gl/1VRrw7
>>> - Contributions: https://goo.gl/mh7qDG
>>> ---
>>> You received this message because you are subscribed to the Google
>>> Groups "CAS Community" group.
>>> To unsubscribe from this group and stop receiving emails from it, send
>>> an email to cas-user+u...@apereo.org.
>>> To view this discussion on the web visit https://groups.google.com/a/ap
>>> ereo.org/d/msgid/cas-user/d1f42af3-0351-42da-8978-318c70191d
>>> 1b%40apereo.org
>>> 
>>> .
>>>
>> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit https://groups.google.com/a/
> apereo.org/d/msgid/cas-user/d63675de-79c3-468a-ac80-
> 3ca57ab2c1cf%40apereo.org
> 
> .
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 

[cas-user] .net CAS client

[Stephen Meier]

Good afternoon,

We are working with a vendor (PortalGuard) that implemented the CAS 3 protocol 
for their IDP product.  Their logs are showing that our .net application is 
sending the ticket with extra white space at the end.

Has anyone else run into this issue?

Thanks!

Stephen

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/MWHPR0401MB35946C15F66FE2C66A8862E4A09F0%40MWHPR0401MB3594.namprd04.prod.outlook.com.

Re: [cas-user] Page 'http://localhost:8080/cas/login' does not load up

[Y Levine]

Thank you for your reply Manfredo.

The following is obtained in the 'cataline.out' when started --- nothing 
further when page is accessed.

Kinda stumped -- I'm probably missing something obvious -- without logs to 
guide not 100% sure.

My other guess is that the 'cas.properties' is in 
'/opt/tomcat/webapps/cas/WEB-INF/classes/etc/cas/config' -- perhaps this is 
not the correct location?

11-May-2018 13:54:14.579 INFO [main] 
org.apache.coyote.AbstractProtocol.init Initializing ProtocolHandler 
["http-nio-8080"]
11-May-2018 13:54:14.588 INFO [main] 
org.apache.tomcat.util.net.NioSelectorPool.getSharedSelector Using a shared 
selector for servlet write/read
11-May-2018 13:54:14.616 INFO [main] 
org.apache.coyote.AbstractProtocol.init Initializing ProtocolHandler 
["ajp-nio-8009"]
11-May-2018 13:54:14.617 INFO [main] 
org.apache.tomcat.util.net.NioSelectorPool.getSharedSelector Using a shared 
selector for servlet write/read
11-May-2018 13:54:14.630 INFO [main] 
org.apache.catalina.startup.Catalina.load Initialization processed in 1049 
ms
11-May-2018 13:54:14.653 INFO [main] 
org.apache.catalina.core.StandardService.startInternal Starting service 
[Catalina]
11-May-2018 13:54:14.653 INFO [main] 
org.apache.catalina.core.StandardEngine.startInternal Starting Servlet 
Engine: Apache Tomcat/8.5.31
11-May-2018 13:54:14.720 INFO [localhost-startStop-1] 
org.apache.catalina.startup.HostConfig.deployWAR Deploying web application 
archive [/opt/apache-tomcat-8.5.31/webapps/cas.war]
11-May-2018 13:54:17.117 INFO [localhost-startStop-1] 
org.apache.catalina.startup.HostConfig.deployWAR Deployment of web 
application archive [/opt/apache-tomcat-8.5.31/webapps/cas.war] has 
finished in [2,386] ms
11-May-2018 13:54:17.120 INFO [main] 
org.apache.coyote.AbstractProtocol.start Starting ProtocolHandler 
["http-nio-8080"]
11-May-2018 13:54:17.233 INFO [main] 
org.apache.coyote.AbstractProtocol.start Starting ProtocolHandler 
["ajp-nio-8009"]
11-May-2018 13:54:17.236 INFO [main] 
org.apache.catalina.startup.Catalina.start Server startup in 2605 ms

On Friday, May 11, 2018 at 1:52:51 PM UTC-7, Manfredo Hopp wrote:
>
> If that is tour message cas isnt deployed. See tomcat log for errors
>
> El viernes, 11 de mayo de 2018, Y Levine  
> escribió:
>
>> We got lots further --- thank you to the replies.
>>
>> The cas.war is now in Tomcat --- however the page '
>> http://localhost:8080/cas/login' does not load up -- is there a 
>> configuration we have to do to enable it? Message received below.
>>
>>
>> HTTP Status 404 – Not Found
>> --
>>
>> *Type* Status Report
>> *Message* /cas/login
>>
>> *Description* The origin server did not find a current representation 
>> for the target resource or is not willing to disclose that one exists.
>>
>> -- 
>> - Website: https://apereo.github.io/cas
>> - Gitter Chatroom: https://gitter.im/apereo/cas
>> - List Guidelines: https://goo.gl/1VRrw7
>> - Contributions: https://goo.gl/mh7qDG
>> --- 
>> You received this message because you are subscribed to the Google Groups 
>> "CAS Community" group.
>> To unsubscribe from this group and stop receiving emails from it, send an 
>> email to cas-user+u...@apereo.org .
>> To view this discussion on the web visit 
>> https://groups.google.com/a/apereo.org/d/msgid/cas-user/d1f42af3-0351-42da-8978-318c70191d1b%40apereo.org
>>  
>> 
>> .
>>
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/d63675de-79c3-468a-ac80-3ca57ab2c1cf%40apereo.org.

Re: [cas-user] Page 'http://localhost:8080/cas/login' does not load up

[Man H]

If that is tour message cas isnt deployed. See tomcat log for errors

El viernes, 11 de mayo de 2018, Y Levine  escribió:

> We got lots further --- thank you to the replies.
>
> The cas.war is now in Tomcat --- however the page '
> http://localhost:8080/cas/login' does not load up -- is there a
> configuration we have to do to enable it? Message received below.
>
>
> HTTP Status 404 – Not Found
> --
>
> *Type* Status Report
> *Message* /cas/login
>
> *Description* The origin server did not find a current representation for
> the target resource or is not willing to disclose that one exists.
>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit https://groups.google.com/a/
> apereo.org/d/msgid/cas-user/d1f42af3-0351-42da-8978-
> 318c70191d1b%40apereo.org
> 
> .
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAMY5miczeN9z1xgERd6aGYjm2gAaFU%3DS8rZt7DoaywFFKOZ9oQ%40mail.gmail.com.

Re: [cas-user] Page 'http://localhost:8080/cas/login' does not load up

[Man H]

logs/catalina.out or logs/localhost.log

El viernes, 11 de mayo de 2018, Y Levine  escribió:

> There is nothing in the Tomcat logs to go by (the cas.log did not
> appear).perplexed at this stage.
>
> On Friday, May 11, 2018 at 12:23:47 PM UTC-7, Y Levine wrote:
>>
>> We got lots further --- thank you to the replies.
>>
>> The cas.war is now in Tomcat --- however the page '
>> http://localhost:8080/cas/login' does not load up -- is there a
>> configuration we have to do to enable it? Message received below.
>>
>>
>> HTTP Status 404 – Not Found
>> --
>>
>> *Type* Status Report
>> *Message* /cas/login
>>
>> *Description* The origin server did not find a current representation
>> for the target resource or is not willing to disclose that one exists.
>>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit https://groups.google.com/a/
> apereo.org/d/msgid/cas-user/3ebcaacb-4ad8-4fbc-9fea-
> 6806c0861c48%40apereo.org
> 
> .
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAMY5mic%3Dmz2LDSVZ%2BNTgREVixMzH81SS6CZt-SKfEniCJDTB%3Dw%40mail.gmail.com.

[cas-user] Re: Page 'http://localhost:8080/cas/login' does not load up

[Y Levine]

There is nothing in the Tomcat logs to go by (the cas.log did not 
appear).perplexed at this stage.

On Friday, May 11, 2018 at 12:23:47 PM UTC-7, Y Levine wrote:
>
> We got lots further --- thank you to the replies.
>
> The cas.war is now in Tomcat --- however the page '
> http://localhost:8080/cas/login' does not load up -- is there a 
> configuration we have to do to enable it? Message received below.
>
>
> HTTP Status 404 – Not Found
> --
>
> *Type* Status Report
> *Message* /cas/login
>
> *Description* The origin server did not find a current representation for 
> the target resource or is not willing to disclose that one exists.
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/3ebcaacb-4ad8-4fbc-9fea-6806c0861c48%40apereo.org.

[cas-user] Page 'http://localhost:8080/cas/login' does not load up

[Y Levine]

We got lots further --- thank you to the replies.

The cas.war is now in Tomcat --- however the page 
'http://localhost:8080/cas/login' does not load up -- is there a 
configuration we have to do to enable it? Message received below.


HTTP Status 404 – Not Found
--

*Type* Status Report
*Message* /cas/login

*Description* The origin server did not find a current representation for 
the target resource or is not willing to disclose that one exists.

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/d1f42af3-0351-42da-8978-318c70191d1b%40apereo.org.

Re: [cas-user] Deployment Question from the Excellent Docs at: 'dacurry-tns.github.io'

[Jann Malenkoff]

Thanks Andy!

It took me some time to wrap my head around this - your post sparked the 
direction --- I think I userstand now :)

./build.sh package --- generates the war (configuration is picked up from 
'/etc/cas/config' --- relative to the cas-overlay)

When cas.war is expanded in tomcat: '/opt/tomcat/webapps/cas' -- the 
configuration files are in '/opt/tomcat/webapps/cas/etc/config'.

Did I understand above correctly?


On Friday, May 11, 2018 at 6:31:54 AM UTC-7, Andy Ng wrote:
>
> Hi Jann,
>
> build.sh is what you are looking for, as documented in the overlay github 
> https://github.com/apereo/cas-overlay-template (which I think is where 
> you get the command from anyway).
>
> I am also deploying using WAR in Tomcat for my setup. And based on my 
> experience, WAR to Tomcat using build.sh would work without any additional 
> configuration.
>
> Of course just like what David said, "./mvnw clean package" is going to 
> be fine most likely. However, the build.sh will do a little bit more things 
> other than just mvnw clean package, as seen here "
> https://github.com/apereo/cas-overlay-template/blob/5.1/build.sh;.
>
> So... just see which one is working and use that one.
>
> Cheers!
> - Andy
>
> On Thursday, 10 May 2018 10:01:02 UTC+8, David Curry wrote:
>>
>> You can probably use build.sh; I don't use it myself, so I'm not sure of 
>> its usage or what else it does for you (I believe it copies the config 
>> files into place, etc.). Personally I just use "./mvnw clean package" and 
>> then my own scripts, since I'm using the external Tomcat and deploying on 
>> multiple servers.
>>
>> The WAR will not have the config files from cas-overlay-template/etc/cas 
>> in it; the default setup from GitHub, even with embedded Tomcat, expects 
>> them to be outside the WAR in /etc/cas. I suppose you could set things up 
>> to put them in the WAR, but you'd need to shuffle some things around in the 
>> overlay (move etc/cas into src/main/) and maybe make some 
>> changes to the build instructions in pom.xml. I've never done this myself, 
>> but maybe someone else on the list has.
>>
>>
>> David A. Curry,  CISSP
>> Director of Information Security
>> The New School - Information Technology
>> 71 Fifth Ave., 9th Fl. ~ New York, NY 10003
>> +1 212 229-5300 x4728 ~ david...@newschool.edu
>> Sent from my phone; please excuse typos and inane auto-corrections.
>> 
>>
>>
>> On Wed, May 9, 2018, 21:24 Jann Malenkoff  wrote:
>>
>>> Thanks David --- for all your work on the documentation and reply below 
>>> -- very much appreciated.
>>>
>>> For historical reasons, we plan to go with a WAR and place it in 
>>> /opt/tomcat/webapps
>>>
>>> Our sys admin prefers an Apache HTTPD front-end and standalone tomcat as 
>>> is (this is the only part we are diverting from your docs).
>>>
>>> To build a WAR.do we run './build.sh package' at 
>>> '/opt/workspace/cas-overlay-template'?
>>>
>>> I don't see the WAR having the configurations we added in 
>>> '/opt/workspace/cas-overlay-template/etc'
>>>
>>> Spending many hours in fron of the computer --- my apologies if I am 
>>> less than coherent.
>>>
>>>
>>> On Wednesday, May 9, 2018 at 5:59:59 PM UTC-7, David Curry wrote:

 In my configuration (which is essentially what this guide is 
 describing), I use an external Tomcat, not the embedded one. So, my setup 
 follows the Tomcat hardening guidelines, which recommend deploying 
 exploded 
 directories rather than WAR files. See the section on installing Tomcat 
 (under Setting up the environment) for more info on this.

 The "tar" command bundles up the contents of the "target/cas" 
 directory, which is what would end up in the WAR file anyway, and also 
 your 
 "etc/cas/config" files.The other options just set things up so when the 
 files are extracted they're owned by the right user and group and have the 
 right permissions.

 Read ahead to the next section on the page (the installation shell 
 script) and you'll see where the script extracts the application into 
 "/var/lib/tomcat" ("/opt/tomcat/latest/webapps") and your config files 
 into 
 "/etc/cas/config".

 So there's no WAR file to deploy, because it's not needed in the 
 external Tomcat setup. If you really want one Maven builds it and leaves 
 it 
 in the "target" directory, but it's still going to expect the config files 
 to be in "/etc/cas/config", not inside the WAR file. 

 --Dave


 David A. Curry,  CISSP
 Director of Information Security
 The New School - Information Technology
 71 Fifth Ave., 9th Fl. ~ New York, NY 10003
 +1 212 229-5300 x4728 ~ david...@newschool.edu
 Sent from my phone; please excuse typos and inane auto-corrections.
 


 On Wed, May 9, 2018, 20:29 Jann Malenkoff  wrote:

> I've been following the excellent CAS installation 

[cas-user] Re: [WS Federation] Claims encoded in the SAML Assertion, unrecognized

[Alin Tomoiaga]

Hi Dimitri, were you able to get past the reflection STS error you reported 
in https://groups.google.com/a/apereo.org/forum/#!topic/cas-user/MrgpGK-kxjM? 
I am debugging the same code you were talking about and hitting the same 
error... Thank you.

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/45a4d64a-c267-49b6-81a0-a651ce5bbb86%40apereo.org.

Re: [cas-user] Extending Ldap Authentication with new properties

[Man H]

see
https://apereo.github.io/cas/5.2.x/installation/Configuration-Management-Extensions.html


2018-05-10 14:55 GMT-03:00 Christian Poirier :

> Hi
>
> I am developing a new way to let our developer team authenticate with our
> production usernames but with a generic password in a development
> environment. This authentication handler will check if the IP address
> corresponds to those allowed from a property value and the service
> definition will authorize the use of this authentication handler.
>
> @Configuration("ldapAuthenticationConfiguration")
> @EnableConfigurationProperties(CasConfigurationProperties.class)
> @Slf4j
> public class LdapdevAuthenticationConfiguration extends
> LdapAuthenticationConfiguration {
>
> // Added properties
> }
>
>
>
> As I am a newbie on Java development with Spring, if I extends the
> LdapAuthenticationHandler to LdapdevAuthenticationHandler and use new
> properties implemented by extending also LdapAuthenticationConfiguration
> to LdapdevAuthenticationConfiguration. With the previous code what I have
> to do?
>
>- Change the
>@Configuration("ldapAuthenticationConfiguration")
>
>by
>@Configuration("ldapdevAuthenticationConfiguration")
>
>- Add the ldapdev section in the configuration model or use the
>current ldap section?
>
> Thanks in advance
>
>
> Christian Poirier
>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit https://groups.google.com/a/
> apereo.org/d/msgid/cas-user/4357f1d8-56b1-40ad-b4f4-
> f0a5bac38eb1%40apereo.org
> 
> .
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAMY5mif5Vk1tnnU6x8i_FMye4v-0ek8bwfb30jhVpFr14z-1HA%40mail.gmail.com.

Re: [cas-user] does CAS 5.2.0 SAML Logout support propagation of logout requests to other session participants?

[Man H]

cas.slo.disabled=false


see
https://apereo.github.io/cas/5.2.x/installation/Logout-Single-Signout.html

2018-05-11 1:53 GMT-03:00 Elena :

> Hello,
>
> I read your SAML Docs and found link https://kantarainitiative.github.io/
> SAMLprofiles/fedinterop.html#_single_logout_2.
>
> It define SAML Single Logout like this.
>
> 4.3. Single Logout
> [IIP-IDP17]
>
> Identity Providers MUST It is OPTIONAL to support propagation of
> logout requests to other session participants.
>
> I wonder that CAS provide OPTIONAL function (highlighted red color) of
> SAML Single logout.
>
> Thanks.
>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit https://groups.google.com/a/
> apereo.org/d/msgid/cas-user/650fbf2f-3b98-4dd0-b439-
> 92237f74e0e0%40apereo.org
> 
> .
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAMY5micdND85FQTQA37b-pkecaKpVoQh-bpLmwwgANZcv1TguQ%40mail.gmail.com.

[cas-user] Re: [WS Federation] Source/StaxSource error on Security Token Service Provider

[Alin Tomoiaga]

Brought up cas under debug mode:

- the error happens in 
org.apache.cxf.ws.security.trust.AbstractSTSClient.issue() at this line:
Object[] obj = this.client.invoke(boi, new Object[]{new 
DOMSource(writer.getDocument().getDocumentElement())});

The error is:
org.apache.cxf.binding.soap.SoapFault: object is not an instance of 
declaring class while invoking public javax.xml.transform.Source 
org.apache.cxf.ws.security.sts.provider.SecurityTokenServiceProvider.invoke(javax.xml.transform.Source)
 
with params [org.apache.cxf.staxutils.StaxSource@601c0935].

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/28b76bca-17c6-4128-906b-00d29e002d4a%40apereo.org.

[cas-user] Re: Problem integrating CAS 5.2.2 with WS Federation Identity Provider

[Alin Tomoiaga]

Brought up cas under debug mode:

- the error happens in 
org.apache.cxf.ws.security.trust.AbstractSTSClient.issue() at this line:
Object[] obj = this.client.invoke(boi, new Object[]{new 
DOMSource(writer.getDocument().getDocumentElement())});

The error is:
org.apache.cxf.binding.soap.SoapFault: object is not an instance of 
declaring class while invoking public javax.xml.transform.Source 
org.apache.cxf.ws.security.sts.provider.SecurityTokenServiceProvider.invoke(javax.xml.transform.Source)
 
with params [org.apache.cxf.staxutils.StaxSource@601c0935].


-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/871c86cd-6058-4276-8342-c05cdeb9551f%40apereo.org.

Re: [cas-user] CAS Logout Issue

[Ray Bon]

Ramakrishna,

If the browser is redirected to /cas/logout, the cookies will/should be removed.

Ray

On Fri, 2018-05-11 at 19:30 +0530, Ramakrishna G wrote:
Hello Team,

On logout CAS cookies are not removed from browser. I need to forcefully clear. 
What might be the reason?

Thanks
Ramakrishna G

--
Ray Bon
Programmer analyst
Development Services, University Systems
2507218831 | CLE 019 | r...@uvic.ca

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/1526051367.1797.41.camel%40uvic.ca.

[cas-user] CAS Logout Issue

[Ramakrishna G]

Hello Team,

On logout CAS cookies are not removed from browser. I need to forcefully
clear. What might be the reason?

Thanks
Ramakrishna G

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAGST5P94MFGTpaGLW7n26Hd40WNNcLSjXSG6UwfWXtob-kG9WQ%40mail.gmail.com.

Re: [cas-user] Deployment Question from the Excellent Docs at: 'dacurry-tns.github.io'

[Andy Ng]

Hi Jann,

build.sh is what you are looking for, as documented in the overlay 
github https://github.com/apereo/cas-overlay-template (which I think is 
where you get the command from anyway).

I am also deploying using WAR in Tomcat for my setup. And based on my 
experience, WAR to Tomcat using build.sh would work without any additional 
configuration.

Of course just like what David said, "./mvnw clean package" is going to be 
fine most likely. However, the build.sh will do a little bit more things 
other than just mvnw clean package, as seen here "
https://github.com/apereo/cas-overlay-template/blob/5.1/build.sh;.

So... just see which one is working and use that one.

Cheers!
- Andy

On Thursday, 10 May 2018 10:01:02 UTC+8, David Curry wrote:
>
> You can probably use build.sh; I don't use it myself, so I'm not sure of 
> its usage or what else it does for you (I believe it copies the config 
> files into place, etc.). Personally I just use "./mvnw clean package" and 
> then my own scripts, since I'm using the external Tomcat and deploying on 
> multiple servers.
>
> The WAR will not have the config files from cas-overlay-template/etc/cas 
> in it; the default setup from GitHub, even with embedded Tomcat, expects 
> them to be outside the WAR in /etc/cas. I suppose you could set things up 
> to put them in the WAR, but you'd need to shuffle some things around in the 
> overlay (move etc/cas into src/main/) and maybe make some 
> changes to the build instructions in pom.xml. I've never done this myself, 
> but maybe someone else on the list has.
>
>
> David A. Curry,  CISSP
> Director of Information Security
> The New School - Information Technology
> 71 Fifth Ave., 9th Fl. ~ New York, NY 10003
> +1 212 229-5300 x4728 ~ david...@newschool.edu 
> Sent from my phone; please excuse typos and inane auto-corrections.
> 
>
>
> On Wed, May 9, 2018, 21:24 Jann Malenkoff  > wrote:
>
>> Thanks David --- for all your work on the documentation and reply below 
>> -- very much appreciated.
>>
>> For historical reasons, we plan to go with a WAR and place it in 
>> /opt/tomcat/webapps
>>
>> Our sys admin prefers an Apache HTTPD front-end and standalone tomcat as 
>> is (this is the only part we are diverting from your docs).
>>
>> To build a WAR.do we run './build.sh package' at 
>> '/opt/workspace/cas-overlay-template'?
>>
>> I don't see the WAR having the configurations we added in 
>> '/opt/workspace/cas-overlay-template/etc'
>>
>> Spending many hours in fron of the computer --- my apologies if I am less 
>> than coherent.
>>
>>
>> On Wednesday, May 9, 2018 at 5:59:59 PM UTC-7, David Curry wrote:
>>>
>>> In my configuration (which is essentially what this guide is 
>>> describing), I use an external Tomcat, not the embedded one. So, my setup 
>>> follows the Tomcat hardening guidelines, which recommend deploying exploded 
>>> directories rather than WAR files. See the section on installing Tomcat 
>>> (under Setting up the environment) for more info on this.
>>>
>>> The "tar" command bundles up the contents of the "target/cas" directory, 
>>> which is what would end up in the WAR file anyway, and also your 
>>> "etc/cas/config" files.The other options just set things up so when the 
>>> files are extracted they're owned by the right user and group and have the 
>>> right permissions.
>>>
>>> Read ahead to the next section on the page (the installation shell 
>>> script) and you'll see where the script extracts the application into 
>>> "/var/lib/tomcat" ("/opt/tomcat/latest/webapps") and your config files into 
>>> "/etc/cas/config".
>>>
>>> So there's no WAR file to deploy, because it's not needed in the 
>>> external Tomcat setup. If you really want one Maven builds it and leaves it 
>>> in the "target" directory, but it's still going to expect the config files 
>>> to be in "/etc/cas/config", not inside the WAR file. 
>>>
>>> --Dave
>>>
>>>
>>> David A. Curry,  CISSP
>>> Director of Information Security
>>> The New School - Information Technology
>>> 71 Fifth Ave., 9th Fl. ~ New York, NY 10003
>>> +1 212 229-5300 x4728 ~ david...@newschool.edu
>>> Sent from my phone; please excuse typos and inane auto-corrections.
>>> 
>>>
>>>
>>> On Wed, May 9, 2018, 20:29 Jann Malenkoff  wrote:
>>>
 I've been following the excellent CAS installation examples at 
 https://dacurry-tns.github.io/deploying-apereo-cas/building_server_install-and-test-the-cas-application.html

 I have added our local setting for 'cas.properties' & 'log4j2.xml' in 
 '/opt/workspace/cas-overlay-template/etc/cas/config'

 However I didn't quite understand the following:

 casdev-master# cd /opt/workspace/cas-overlay-templatecasdev-master# tar 
 czf /tmp/cassrv-files.tgz --owner=root --group=tomcat --mode=g-w,o-rwx  
 etc/cas -C target cas --exclude cas/META-INF




 Via above there is no build of the CAS war -- how will it pick up our 

[cas-user] Surrogate module execution problem: @Autowired Set<Class>

[Christian Poirier]

Hi

Look at the error I receive when I start CAS after I add the Surrogate 
module:


2018-05-10 14:58:34,029 ERROR [org.springframework.boot.SpringApplication] 
- 
org.springframework.beans.factory.UnsatisfiedDependencyException: Error 
creating bean with name 'surrogateAuthenticationWebflowConfiguration': 
Unsatisfied dependency expressed through field 
'handledAuthenticationExceptions'; nested exception is 
org.springframework.beans.factory.NoSuchBeanDefinitionException: No 
qualifying bean of type 'java.util.Set' available: expected at least 1 bean which qualifies as autowire 
candidate. Dependency annotations: 
{@org.springframework.beans.factory.annotation.Autowired(required=true), 
@org.sp
ringframework.beans.factory.annotation.Qualifier(value=handledAuthenticationExceptions)}
at 
org.springframework.beans.factory.annotation.AutowiredAnnotationBeanPostProcessor$AutowiredFieldElement.inject(AutowiredAnnotationBeanPostProcessor.java:588)
 
~[spring-beans-4.3.14
.RELEASE.jar:4.3.14.RELEASE]

The code causing the problem is the following lines and it is in then 
SurrogateAuthenticationWebFlowConfiguration.java:
@Autowired
@Qualifier("handledAuthenticationExceptions")
private Set handledAuthenticationExceptions;




As I am a newbie in Java and Spring, what to do to correct this?


Thanks in advance

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/197e80cf-1e7e-4a04-86a3-9b893c7ddfd8%40apereo.org.