Re: [cas-user] Service Registry -- Getting the 1st Application Entered

2018-05-14 Thread Lionel Samuel 
s disallowed. Using default theme [cas-theme-default]>
>>>>>>
>>>>>>
>>>>>> On Monday, May 14, 2018 at 3:37:31 PM UTC-7, Jann Malenkoff wrote:
>>>>>>>
>>>>>>> Hi Richard:
>>>>>>>
>>>>>>> I have the following in 'cas.properties':
>>>>>>>
>>>>>>> cas.serviceRegistry.initFromJson=true
>>>>>>>
>>>>>>> Is that correct to enable the first read from JSON? I have been 
>>>>>>> staring at the screen for so long and begining to doubt myself w.r.t 
>>>>>>> true/false flags.
>>>>>>>
>>>>>>> On Monday, May 14, 2018 at 3:30:38 PM UTC-7, richard.frovarp wrote:
>>>>>>>>
>>>>>>>> Do you have initialization on from JSON? Not sure if it will use 
>>>>>>>> your file or just the defaults. Either way, it should get you into the 
>>>>>>>> manager. Then you configure the manager service, and turn that 
>>>>>>>> property off.
>>>>>>>>
>>>>>>>> # Auto-initialize the registry from default JSON service definitions
>>>>>>>> # cas.serviceRegistry.initFromJson=false
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> On 05/14/2018 05:13 PM, Jann Malenkoff wrote:
>>>>>>>>
>>>>>>>> Hi All:
>>>>>>>>
>>>>>>>> I'm trying to get the '
>>>>>>>> http://localhost:8080/cas-management/manage.html' loaded up --- 
>>>>>>>> but hitting the error message: 
>>>>>>>> ' 
>>>>>>>> Application Not Authorized to Use CAS 
>>>>>>>>
>>>>>>>> The services registry of CAS is empty and has no service 
>>>>>>>> definitions. Applications that wish to authenticate with CAS must 
>>>>>>>> explicitly be defined in the services registry.'
>>>>>>>>
>>>>>>>>
>>>>>>>> I am hoping to have a JPA service registry --- and have configured 
>>>>>>>> the dependencies below in the 'cas-overlay-template' pom.xml.
>>>>>>>>
>>>>>>>>
>>>>>>>> To enable the access to '
>>>>>>>> http://localhost:8080/cas-management/manage.html, I have added  
>>>>>>>> the JASON entry as below --- but do not see it in the database table 
>>>>>>>> REGEXREGISTEREDSERVICE (I have cas.serviceRegistry.config.location:
>>>>>>>> file:/etc/cas/services in 'cas.properties).
>>>>>>>>
>>>>>>>>
>>>>>>>> What could I have missed (or more likely misunderstood)?
>>>>>>>>
>>>>>>>>
>>>>>>>> *JSON File in /etc/cas/services (copied -- slightly adjusted -- 
>>>>>>>> from an earlier post):*
>>>>>>>>
>>>>>>>> {
>>>>>>>>   /*
>>>>>>>>* Wildcard service definition that applies to any https or imaps 
>>>>>>>> url.
>>>>>>>>* Do not use this definition in a production environment.
>>>>>>>>*/
>>>>>>>>   "@class" :
>>>>>>>> "org.apereo.cas.services.RegexRegisteredService",
>>>>>>>>   "serviceId" : "^(http)://.*",
>>>>>>>>   "name" :  "HTTP wildcard",
>>>>>>>>   "id" :20180514,
>>>>>>>>   "evaluationOrder" :   9
>>>>>>>> }
>>>>>>>>
>>>>>>>>
>>>>>>>> *pom.xml -- for cas-overlay-template*
>>>>>>>>
>>>>>>>> 
>>>>>>>> 
>>>>>>>> org.apereo.cas
>>>>>>>> 
>>>>>>>> cas-server-webapp${app.server}
>>>>>>>> ${cas.version}
>>>>>>>> war
>>>&

Re: [cas-user] Service Registry -- Getting the 1st Application Entered

2018-05-14 Thread Lionel Samuel 
gt;>>>> Do you have initialization on from JSON? Not sure if it will use 
>>>>>>> your file or just the defaults. Either way, it should get you into the 
>>>>>>> manager. Then you configure the manager service, and turn that property 
>>>>>>> off.
>>>>>>>
>>>>>>> # Auto-initialize the registry from default JSON service definitions
>>>>>>> # cas.serviceRegistry.initFromJson=false
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> On 05/14/2018 05:13 PM, Jann Malenkoff wrote:
>>>>>>>
>>>>>>> Hi All:
>>>>>>>
>>>>>>> I'm trying to get the '
>>>>>>> http://localhost:8080/cas-management/manage.html' loaded up --- but 
>>>>>>> hitting the error message: 
>>>>>>> ' 
>>>>>>> Application Not Authorized to Use CAS 
>>>>>>>
>>>>>>> The services registry of CAS is empty and has no service 
>>>>>>> definitions. Applications that wish to authenticate with CAS must 
>>>>>>> explicitly be defined in the services registry.'
>>>>>>>
>>>>>>>
>>>>>>> I am hoping to have a JPA service registry --- and have configured 
>>>>>>> the dependencies below in the 'cas-overlay-template' pom.xml.
>>>>>>>
>>>>>>>
>>>>>>> To enable the access to '
>>>>>>> http://localhost:8080/cas-management/manage.html, I have added  the 
>>>>>>> JASON entry as below --- but do not see it in the database table 
>>>>>>> REGEXREGISTEREDSERVICE (I have cas.serviceRegistry.config.location:
>>>>>>> file:/etc/cas/services in 'cas.properties).
>>>>>>>
>>>>>>>
>>>>>>> What could I have missed (or more likely misunderstood)?
>>>>>>>
>>>>>>>
>>>>>>> *JSON File in /etc/cas/services (copied -- slightly adjusted -- from 
>>>>>>> an earlier post):*
>>>>>>>
>>>>>>> {
>>>>>>>   /*
>>>>>>>* Wildcard service definition that applies to any https or imaps 
>>>>>>> url.
>>>>>>>* Do not use this definition in a production environment.
>>>>>>>*/
>>>>>>>   "@class" :
>>>>>>> "org.apereo.cas.services.RegexRegisteredService",
>>>>>>>   "serviceId" : "^(http)://.*",
>>>>>>>   "name" :  "HTTP wildcard",
>>>>>>>   "id" :20180514,
>>>>>>>   "evaluationOrder" :   9
>>>>>>> }
>>>>>>>
>>>>>>>
>>>>>>> *pom.xml -- for cas-overlay-template*
>>>>>>>
>>>>>>> 
>>>>>>> 
>>>>>>> org.apereo.cas
>>>>>>> 
>>>>>>> cas-server-webapp${app.server}
>>>>>>> ${cas.version}
>>>>>>> war
>>>>>>> runtime
>>>>>>> 
>>>>>>> 
>>>>>>> org.apereo.cas
>>>>>>> 
>>>>>>> cas-server-support-json-service-registry
>>>>>>> ${cas.version}
>>>>>>> 
>>>>>>> 
>>>>>>> org.apereo.cas
>>>>>>> cas-server-support-ldap
>>>>>>> ${cas.version}
>>>>>>> 
>>>>>>> 
>>>>>>> org.apereo.cas
>>>>>>> 
>>>>>>> cas-server-support-jpa-service-registry
>>>>>>> ${cas.version}
>>>>>>> 
>>>>>>> 
>>>>>>>

Re: [cas-user] Service Registry -- Getting the 1st Application Entered

2018-05-14 Thread Jann Malenkoff 
 to Use CAS 
>>>>>>
>>>>>> The services registry of CAS is empty and has no service definitions. 
>>>>>> Applications that wish to authenticate with CAS must explicitly be 
>>>>>> defined 
>>>>>> in the services registry.'
>>>>>>
>>>>>>
>>>>>> I am hoping to have a JPA service registry --- and have configured 
>>>>>> the dependencies below in the 'cas-overlay-template' pom.xml.
>>>>>>
>>>>>>
>>>>>> To enable the access to '
>>>>>> http://localhost:8080/cas-management/manage.html, I have added  the 
>>>>>> JASON entry as below --- but do not see it in the database table 
>>>>>> REGEXREGISTEREDSERVICE (I have cas.serviceRegistry.config.location:
>>>>>> file:/etc/cas/services in 'cas.properties).
>>>>>>
>>>>>>
>>>>>> What could I have missed (or more likely misunderstood)?
>>>>>>
>>>>>>
>>>>>> *JSON File in /etc/cas/services (copied -- slightly adjusted -- from 
>>>>>> an earlier post):*
>>>>>>
>>>>>> {
>>>>>>   /*
>>>>>>* Wildcard service definition that applies to any https or imaps 
>>>>>> url.
>>>>>>* Do not use this definition in a production environment.
>>>>>>*/
>>>>>>   "@class" :
>>>>>> "org.apereo.cas.services.RegexRegisteredService",
>>>>>>   "serviceId" : "^(http)://.*",
>>>>>>   "name" :  "HTTP wildcard",
>>>>>>   "id" :20180514,
>>>>>>   "evaluationOrder" :   9
>>>>>> }
>>>>>>
>>>>>>
>>>>>> *pom.xml -- for cas-overlay-template*
>>>>>>
>>>>>> 
>>>>>> 
>>>>>> org.apereo.cas
>>>>>> 
>>>>>> cas-server-webapp${app.server}
>>>>>> ${cas.version}
>>>>>> war
>>>>>> runtime
>>>>>> 
>>>>>> 
>>>>>> org.apereo.cas
>>>>>> 
>>>>>> cas-server-support-json-service-registry
>>>>>> ${cas.version}
>>>>>> 
>>>>>> 
>>>>>> org.apereo.cas
>>>>>> cas-server-support-ldap
>>>>>> ${cas.version}
>>>>>> 
>>>>>> 
>>>>>> org.apereo.cas
>>>>>> 
>>>>>> cas-server-support-jpa-service-registry
>>>>>> ${cas.version}
>>>>>> 
>>>>>> 
>>>>>> org.apereo.cas
>>>>>> 
>>>>>> cas-server-support-jpa-ticket-registry
>>>>>> ${cas.version}
>>>>>> 
>>>>>> 
>>>>>> org.apereo.cas
>>>>>> 
>>>>>> cas-server-support-jdbc-drivers
>>>>>> ${cas.version}
>>>>>> 
>>>>>> 
>>>>>> com.oracle
>>>>>> ojdbc7.jar
>>>>>> 12.1.0.1
>>>>>> 
>>>>>> 
>>>>>> org.apereo.cas
>>>>>> cas-server-support-saml
>>>>>> ${cas.version}
>>>>>> 
>>>>>> 
>>>>>> org.apereo.cas
>>>>>> cas-server-support-duo
>>>>>> ${cas.version}
>>>>>> 
>>>>>> 
>>>>>> org.apereo.cas
>>>>>> 
>>>>>> cas-server-support-events-jpa
>>>>>> ${cas.version}
>>>>>> 
>>>>>> 
>>>>>> -- 
>>>>>> - Website: https://apereo.github.io/cas
>>>>>> - Gitter Chatroom: https://gitter.im/apereo/cas
>>>>>> - List Guidelines: https://goo.gl/1VRrw7
>>>>>> - Contributions: https://goo.gl/mh7qDG
>>>>>> --- 
>>>>>> You received this message because you are subscribed to the Google 
>>>>>> Groups "CAS Community" group.
>>>>>> To unsubscribe from this group and stop receiving emails from it, 
>>>>>> send an email to cas-user+u...@apereo.org.
>>>>>> To view this discussion on the web visit 
>>>>>> https://groups.google.com/a/apereo.org/d/msgid/cas-user/daad2fc6-3a69-4404-9a91-379cfd3ee24e%40apereo.org
>>>>>>  
>>>>>> <https://groups.google.com/a/apereo.org/d/msgid/cas-user/daad2fc6-3a69-4404-9a91-379cfd3ee24e%40apereo.org?utm_medium=email_source=footer>
>>>>>> .
>>>>>>
>>>>>>
>>>>>> -- 
>>>> - Website: https://apereo.github.io/cas
>>>> - Gitter Chatroom: https://gitter.im/apereo/cas
>>>> - List Guidelines: https://goo.gl/1VRrw7
>>>> - Contributions: https://goo.gl/mh7qDG
>>>> --- 
>>>> You received this message because you are subscribed to the Google 
>>>> Groups "CAS Community" group.
>>>> To unsubscribe from this group and stop receiving emails from it, send 
>>>> an email to cas-user+u...@apereo.org.
>>>> To view this discussion on the web visit 
>>>> https://groups.google.com/a/apereo.org/d/msgid/cas-user/f1dfe783-d3b4-413d-ac25-0b7e7a722247%40apereo.org
>>>>  
>>>> <https://groups.google.com/a/apereo.org/d/msgid/cas-user/f1dfe783-d3b4-413d-ac25-0b7e7a722247%40apereo.org?utm_medium=email_source=footer>
>>>> .
>>>>
>>>
>>>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/c0481bd9-7b26-4e06-877d-3ab97952730b%40apereo.org.


cas.properties
Description: Binary data

Re: [cas-user] Service Registry -- Getting the 1st Application Entered

2018-05-14 Thread Jann Malenkoff 
I had a minor Eureka moment --- but it came to fraught (partially).

I has a typo in the 'cas.properties' file: 
cas.serviceRegistry.json.location:file:/etc/cas/service

i,e, 'service' instead of 'services' --- corrected now (validated that the 
json files are in '/etc/cas/services').

But still no-go...any ideas will be matched by the maximum Karma I can 
provide.

On Monday, May 14, 2018 at 4:16:39 PM UTC-7, Jann Malenkoff wrote:
>
> I'm on 5.2.4 --- I had earlier the 5.1 (i.e. 
> cas.serviceRegistry.config.location) 
> in 'cas.properties'--- now, updated to below (the 5.2.x version)
>
> cas.serviceRegistry.json.location:file:/etc/cas/service
> cas.serviceRegistry.initFromJson=true
>
> Still getting error below:
>
> 2018-05-14 16:11:41,016 WARN 
> [org.apereo.cas.services.web.ServiceThemeResolver] -  is found to match 
> [org.apereo.cas.authentication.principal.SimpleWebApplicationServiceImpl@3f670479[id=
> http://localhost:8080/cas-management/manage.html,originalUrl=http://locahost:8080/cas-management/manage.html,artifactId=,principal=,loggedOutAlready=false,format=XML]]
>  
> or service access is disallowed. Using default theme [cas-theme-default]>
>
> Json file:
>
> {
>   "@class" :"org.apereo.cas.services.RegexRegisteredService",
>   "serviceId" : "^(http)://.*",
>   "name" :  "HTTP wildcard",
>   "id" :20170905111650,
>   "evaluationOrder" :   9
> }
>
> Have I missed anything else? Could there be something else in the logs 
> that can give a clue (I have been hunting but may be missing it)?
>
> On Monday, May 14, 2018 at 3:47:36 PM UTC-7, Manfredo Hopp wrote:
>>
>>
>> where are these pointing to:
>>
>> cas.serviceRegistry.json.location for 5.2.x 
>> or 
>> cas.serviceRegistry.config.location for 5.1.x
>>
>> 2018-05-14 19:41 GMT-03:00 Jann Malenkoff <jannma...@gmail.com>:
>>
>>> FYI --- the following appears in 'catalina.out' when attempting to 
>>> access 'http://localhost:8080/cas-management/manage.html,'.
>>>
>>> 2018-05-14 15:39:09,152 WARN 
>>> [org.apereo.cas.services.web.ServiceThemeResolver] - >> is found to match 
>>> [org.apereo.cas.authentication.principal.SimpleWebApplicationServiceImpl@13eed7a6[id=
>>> http://localhost:8080/cas-management/manage.html,originalUrl=http://localhost:8080/cas-management/manage.html,artifactId=,principal=,loggedOutAlready=false,format=XML]]
>>>  
>>> or service access is disallowed. Using default theme [cas-theme-default]>
>>>
>>>
>>> On Monday, May 14, 2018 at 3:37:31 PM UTC-7, Jann Malenkoff wrote:
>>>>
>>>> Hi Richard:
>>>>
>>>> I have the following in 'cas.properties':
>>>>
>>>> cas.serviceRegistry.initFromJson=true
>>>>
>>>> Is that correct to enable the first read from JSON? I have been staring 
>>>> at the screen for so long and begining to doubt myself w.r.t true/false 
>>>> flags.
>>>>
>>>> On Monday, May 14, 2018 at 3:30:38 PM UTC-7, richard.frovarp wrote:
>>>>>
>>>>> Do you have initialization on from JSON? Not sure if it will use your 
>>>>> file or just the defaults. Either way, it should get you into the 
>>>>> manager. 
>>>>> Then you configure the manager service, and turn that property off.
>>>>>
>>>>> # Auto-initialize the registry from default JSON service definitions
>>>>> # cas.serviceRegistry.initFromJson=false
>>>>>
>>>>>
>>>>>
>>>>> On 05/14/2018 05:13 PM, Jann Malenkoff wrote:
>>>>>
>>>>> Hi All:
>>>>>
>>>>> I'm trying to get the '
>>>>> http://localhost:8080/cas-management/manage.html' loaded up --- but 
>>>>> hitting the error message: 
>>>>> ' 
>>>>> Application Not Authorized to Use CAS 
>>>>>
>>>>> The services registry of CAS is empty and has no service definitions. 
>>>>> Applications that wish to authenticate with CAS must explicitly be 
>>>>> defined 
>>>>> in the services registry.'
>>>>>
>>>>>
>>>>> I am hoping to have a JPA service registry --- and have configured the 
>>>>> dependencies below in the 'cas-overlay-template' pom.xml.
>>>>>
>>>>>
>>>>> To enable the

Re: [cas-user] Service Registry -- Getting the 1st Application Entered

2018-05-14 Thread Jann Malenkoff 
I'm on 5.2.4 --- I had earlier the 5.1 (i.e. 
cas.serviceRegistry.config.location) 
in 'cas.properties'--- now, updated to below (the 5.2.x version)

cas.serviceRegistry.json.location:file:/etc/cas/service
cas.serviceRegistry.initFromJson=true

Still getting error below:

2018-05-14 16:11:41,016 WARN 
[org.apereo.cas.services.web.ServiceThemeResolver] - http://localhost:8080/cas-management/manage.html,originalUrl=http://locahost:8080/cas-management/manage.html,artifactId=,principal=,loggedOutAlready=false,format=XML]]
 
or service access is disallowed. Using default theme [cas-theme-default]>

Json file:

{
  "@class" :"org.apereo.cas.services.RegexRegisteredService",
  "serviceId" : "^(http)://.*",
  "name" :  "HTTP wildcard",
  "id" :20170905111650,
  "evaluationOrder" :   9
}

Have I missed anything else? Could there be something else in the logs that 
can give a clue (I have been hunting but may be missing it)?

On Monday, May 14, 2018 at 3:47:36 PM UTC-7, Manfredo Hopp wrote:
>
>
> where are these pointing to:
>
> cas.serviceRegistry.json.location for 5.2.x 
> or 
> cas.serviceRegistry.config.location for 5.1.x
>
> 2018-05-14 19:41 GMT-03:00 Jann Malenkoff <jannma...@gmail.com 
> >:
>
>> FYI --- the following appears in 'catalina.out' when attempting to access 
>> 'http://localhost:8080/cas-management/manage.html,'.
>>
>> 2018-05-14 15:39:09,152 WARN 
>> [org.apereo.cas.services.web.ServiceThemeResolver] - > is found to match 
>> [org.apereo.cas.authentication.principal.SimpleWebApplicationServiceImpl@13eed7a6[id=
>> http://localhost:8080/cas-management/manage.html,originalUrl=http://localhost:8080/cas-management/manage.html,artifactId=,principal=,loggedOutAlready=false,format=XML]]
>>  
>> or service access is disallowed. Using default theme [cas-theme-default]>
>>
>>
>> On Monday, May 14, 2018 at 3:37:31 PM UTC-7, Jann Malenkoff wrote:
>>>
>>> Hi Richard:
>>>
>>> I have the following in 'cas.properties':
>>>
>>> cas.serviceRegistry.initFromJson=true
>>>
>>> Is that correct to enable the first read from JSON? I have been staring 
>>> at the screen for so long and begining to doubt myself w.r.t true/false 
>>> flags.
>>>
>>> On Monday, May 14, 2018 at 3:30:38 PM UTC-7, richard.frovarp wrote:
>>>>
>>>> Do you have initialization on from JSON? Not sure if it will use your 
>>>> file or just the defaults. Either way, it should get you into the manager. 
>>>> Then you configure the manager service, and turn that property off.
>>>>
>>>> # Auto-initialize the registry from default JSON service definitions
>>>> # cas.serviceRegistry.initFromJson=false
>>>>
>>>>
>>>>
>>>> On 05/14/2018 05:13 PM, Jann Malenkoff wrote:
>>>>
>>>> Hi All:
>>>>
>>>> I'm trying to get the 'http://localhost:8080/cas-management/manage.html' 
>>>> loaded up --- but hitting the error message: 
>>>> ' 
>>>> Application Not Authorized to Use CAS 
>>>>
>>>> The services registry of CAS is empty and has no service definitions. 
>>>> Applications that wish to authenticate with CAS must explicitly be defined 
>>>> in the services registry.'
>>>>
>>>>
>>>> I am hoping to have a JPA service registry --- and have configured the 
>>>> dependencies below in the 'cas-overlay-template' pom.xml.
>>>>
>>>>
>>>> To enable the access to '
>>>> http://localhost:8080/cas-management/manage.html, I have added  the 
>>>> JASON entry as below --- but do not see it in the database table 
>>>> REGEXREGISTEREDSERVICE (I have cas.serviceRegistry.config.location:
>>>> file:/etc/cas/services in 'cas.properties).
>>>>
>>>>
>>>> What could I have missed (or more likely misunderstood)?
>>>>
>>>>
>>>> *JSON File in /etc/cas/services (copied -- slightly adjusted -- from an 
>>>> earlier post):*
>>>>
>>>> {
>>>>   /*
>>>>* Wildcard service definition that applies to any https or imaps url.
>>>>* Do not use this definition in a production environment.
>>>>*/
>>>>   "@class" :
>>>> "org.apereo.cas.services.RegexRegisteredService",
>>>>   "serviceId" : "^(http)://.*",

Re: [cas-user] Service Registry -- Getting the 1st Application Entered

2018-05-14 Thread Man H 
where are these pointing to:

cas.serviceRegistry.json.location for 5.2.x
or
cas.serviceRegistry.config.location for 5.1.x

2018-05-14 19:41 GMT-03:00 Jann Malenkoff <jannmalenk...@gmail.com>:

> FYI --- the following appears in 'catalina.out' when attempting to access '
> http://localhost:8080/cas-management/manage.html,'.
>
> 2018-05-14 15:39:09,152 WARN 
> [org.apereo.cas.services.web.ServiceThemeResolver]
> -  authentication.principal.SimpleWebApplicationServiceImpl@13eed7a6[id=
> http://localhost:8080/cas-management/manage.html,originalUrl=http:/
> /localhost:8080/cas-management/manage.html,artifactId=,principal=<
> null>,loggedOutAlready=false,format=XML]] or service access is
> disallowed. Using default theme [cas-theme-default]>
>
>
> On Monday, May 14, 2018 at 3:37:31 PM UTC-7, Jann Malenkoff wrote:
>>
>> Hi Richard:
>>
>> I have the following in 'cas.properties':
>>
>> cas.serviceRegistry.initFromJson=true
>>
>> Is that correct to enable the first read from JSON? I have been staring
>> at the screen for so long and begining to doubt myself w.r.t true/false
>> flags.
>>
>> On Monday, May 14, 2018 at 3:30:38 PM UTC-7, richard.frovarp wrote:
>>>
>>> Do you have initialization on from JSON? Not sure if it will use your
>>> file or just the defaults. Either way, it should get you into the manager.
>>> Then you configure the manager service, and turn that property off.
>>>
>>> # Auto-initialize the registry from default JSON service definitions
>>> # cas.serviceRegistry.initFromJson=false
>>>
>>>
>>>
>>> On 05/14/2018 05:13 PM, Jann Malenkoff wrote:
>>>
>>> Hi All:
>>>
>>> I'm trying to get the 'http://localhost:8080/cas-management/manage.html'
>>> loaded up --- but hitting the error message:
>>> '
>>> Application Not Authorized to Use CAS
>>>
>>> The services registry of CAS is empty and has no service definitions.
>>> Applications that wish to authenticate with CAS must explicitly be defined
>>> in the services registry.'
>>>
>>>
>>> I am hoping to have a JPA service registry --- and have configured the
>>> dependencies below in the 'cas-overlay-template' pom.xml.
>>>
>>>
>>> To enable the access to 'http://localhost:8080/cas-man
>>> agement/manage.html, I have added  the JASON entry as below --- but do
>>> not see it in the database table REGEXREGISTEREDSERVICE (I have
>>> cas.serviceRegistry.config.location:file:/etc/cas/services in
>>> 'cas.properties).
>>>
>>>
>>> What could I have missed (or more likely misunderstood)?
>>>
>>>
>>> *JSON File in /etc/cas/services (copied -- slightly adjusted -- from an
>>> earlier post):*
>>>
>>> {
>>>   /*
>>>* Wildcard service definition that applies to any https or imaps url.
>>>* Do not use this definition in a production environment.
>>>*/
>>>   "@class" :"org.apereo.cas.services.Regex
>>> RegisteredService",
>>>   "serviceId" : "^(http)://.*",
>>>   "name" :  "HTTP wildcard",
>>>   "id" :20180514,
>>>   "evaluationOrder" :   9
>>> }
>>>
>>>
>>> *pom.xml -- for cas-overlay-template*
>>>
>>> 
>>> 
>>> org.apereo.cas
>>> cas-server-webapp$
>>> {app.server}
>>> ${cas.version}
>>> war
>>> runtime
>>> 
>>> 
>>> org.apereo.cas
>>> cas-server-support
>>> -json-service-registry
>>> ${cas.version}
>>> 
>>> 
>>> org.apereo.cas
>>> cas-server-support-ldap
>>> ${cas.version}
>>> 
>>> 
>>> org.apereo.cas
>>> cas-server-support
>>> -jpa-service-registry
>>> ${cas.version}
>>> 
>>> 
>>> org.apereo.cas
>>> cas-server-support
>>> -jpa-ticket-registry
>>>

Re: [cas-user] Service Registry -- Getting the 1st Application Entered

2018-05-14 Thread Richard Frovarp 
Yes, you would want to flip that to true. There should be something in 
the logs. I don't remember which component actually does the work to do 
the initial import, if it is the server or the manager. I do seem to 
recall one of them logging something about importing it.


On 05/14/2018 05:41 PM, Jann Malenkoff wrote:
FYI --- the following appears in 'catalina.out' when attempting to 
access 'http://localhost:8080/cas-management/manage.html,'.


2018-05-14 15:39:09,152 WARN 
[org.apereo.cas.services.web.ServiceThemeResolver] - service is found to match 
[org.apereo.cas.authentication.principal.SimpleWebApplicationServiceImpl@13eed7a6[id=http://localhost:8080/cas-management/manage.html,originalUrl=http://localhost:8080/cas-management/manage.html,artifactId=,principal=,loggedOutAlready=false,format=XML]] 
or service access is disallowed. Using default theme [cas-theme-default]>


On Monday, May 14, 2018 at 3:37:31 PM UTC-7, Jann Malenkoff wrote:

Hi Richard:

I have the following in 'cas.properties':

cas.serviceRegistry.initFromJson=true

Is that correct to enable the first read from JSON? I have been
staring at the screen for so long and begining to doubt myself
w.r.t true/false flags.

On Monday, May 14, 2018 at 3:30:38 PM UTC-7, richard.frovarp wrote:

Do you have initialization on from JSON? Not sure if it will
use your file or just the defaults. Either way, it should get
you into the manager. Then you configure the manager service,
and turn that property off.

# Auto-initialize the registry from default JSON service
definitions # cas.serviceRegistry.initFromJson=false



On 05/14/2018 05:13 PM, Jann Malenkoff wrote:

Hi All:

I'm trying to get the
'http://localhost:8080/cas-management/manage.html
<http://localhost:8080/cas-management/manage.html>' loaded up
--- but hitting the error message:
'
Application Not Authorized to Use CAS

The services registry of CAS is empty and has no service
definitions. Applications that wish to authenticate with CAS
must explicitly be defined in the services registry.'


I am hoping to have a JPA service registry --- and have
configured the dependencies below in the
'cas-overlay-template' pom.xml.


To enable the access to
'http://localhost:8080/cas-management/manage.html
<http://localhost:8080/cas-management/manage.html>, I have
added  the JASON entry as below --- but do not see it in the
database table REGEXREGISTEREDSERVICE (I have
cas.serviceRegistry.config.location: file:/etc/cas/services
in 'cas.properties).


What could I have missed (or more likely misunderstood)?


*JSON File in /etc/cas/services (copied -- slightly adjusted
-- from an earlier post):*

{
  /*
   * Wildcard service definition that applies to any https or
imaps url.
   * Do not use this definition in a production environment.
   */
  "@class" : "org.apereo.cas.services.RegexRegisteredService",
  "serviceId" : "^(http)://.*",
  "name" :      "HTTP wildcard",
  "id" :    20180514,
  "evaluationOrder" :   9
}



*pom.xml -- for cas-overlay-template*


    
org.apereo.cas
cas-server-webapp${app.server}
${cas.version}
    war
runtime
    
    
org.apereo.cas
cas-server-support-json-service-registry
${cas.version}
    
    
org.apereo.cas
   
cas-server-support-ldap
${cas.version}
    
    
org.apereo.cas
cas-server-support-jpa-service-registry
${cas.version}
    
    
org.apereo.cas
cas-server-support-jpa-ticket-registry
${cas.version}
    
    
org.apereo.cas
   
cas-server-support-jdbc-drivers
${cas.version}
    
    
com.oracle
ojdbc7.jar
12.1.0.1
    
    
org.apereo.cas
   
cas-server-support-saml
${cas.version}
    
    
org.apereo.cas
   
cas-server-support-duo
${cas.version}
    
    
org.apereo.cas
   
cas-server-support-events-jp

Re: [cas-user] Service Registry -- Getting the 1st Application Entered

2018-05-14 Thread Jann Malenkoff 
FYI --- the following appears in 'catalina.out' when attempting to access 
'http://localhost:8080/cas-management/manage.html,'.

2018-05-14 15:39:09,152 WARN 
[org.apereo.cas.services.web.ServiceThemeResolver] - http://localhost:8080/cas-management/manage.html,originalUrl=http://localhost:8080/cas-management/manage.html,artifactId=,principal=,loggedOutAlready=false,format=XML]]
 
or service access is disallowed. Using default theme [cas-theme-default]>

On Monday, May 14, 2018 at 3:37:31 PM UTC-7, Jann Malenkoff wrote:
>
> Hi Richard:
>
> I have the following in 'cas.properties':
>
> cas.serviceRegistry.initFromJson=true
>
> Is that correct to enable the first read from JSON? I have been staring at 
> the screen for so long and begining to doubt myself w.r.t true/false flags.
>
> On Monday, May 14, 2018 at 3:30:38 PM UTC-7, richard.frovarp wrote:
>>
>> Do you have initialization on from JSON? Not sure if it will use your 
>> file or just the defaults. Either way, it should get you into the manager. 
>> Then you configure the manager service, and turn that property off.
>>
>> # Auto-initialize the registry from default JSON service definitions
>> # cas.serviceRegistry.initFromJson=false
>>
>>
>>
>> On 05/14/2018 05:13 PM, Jann Malenkoff wrote:
>>
>> Hi All:
>>
>> I'm trying to get the 'http://localhost:8080/cas-management/manage.html' 
>> loaded up --- but hitting the error message: 
>> ' 
>> Application Not Authorized to Use CAS 
>>
>> The services registry of CAS is empty and has no service definitions. 
>> Applications that wish to authenticate with CAS must explicitly be defined 
>> in the services registry.'
>>
>>
>> I am hoping to have a JPA service registry --- and have configured the 
>> dependencies below in the 'cas-overlay-template' pom.xml.
>>
>>
>> To enable the access to 'http://localhost:8080/cas-management/manage.html, 
>> I have added  the JASON entry as below --- but do not see it in the 
>> database table REGEXREGISTEREDSERVICE (I have 
>> cas.serviceRegistry.config.location:file:/etc/cas/services in 
>> 'cas.properties).
>>
>>
>> What could I have missed (or more likely misunderstood)?
>>
>>
>> *JSON File in /etc/cas/services (copied -- slightly adjusted -- from an 
>> earlier post):*
>>
>> {
>>   /*
>>* Wildcard service definition that applies to any https or imaps url.
>>* Do not use this definition in a production environment.
>>*/
>>   "@class" :"org.apereo.cas.services.RegexRegisteredService",
>>   "serviceId" : "^(http)://.*",
>>   "name" :  "HTTP wildcard",
>>   "id" :20180514,
>>   "evaluationOrder" :   9
>> }
>>
>>
>> *pom.xml -- for cas-overlay-template*
>>
>> 
>> 
>> org.apereo.cas
>> 
>> cas-server-webapp${app.server}
>> ${cas.version}
>> war
>> runtime
>> 
>> 
>> org.apereo.cas
>> 
>> cas-server-support-json-service-registry
>> ${cas.version}
>> 
>> 
>> org.apereo.cas
>> cas-server-support-ldap
>> ${cas.version}
>> 
>> 
>> org.apereo.cas
>> 
>> cas-server-support-jpa-service-registry
>> ${cas.version}
>> 
>> 
>> org.apereo.cas
>> 
>> cas-server-support-jpa-ticket-registry
>> ${cas.version}
>> 
>> 
>> org.apereo.cas
>> 
>> cas-server-support-jdbc-drivers
>> ${cas.version}
>> 
>> 
>> com.oracle
>> ojdbc7.jar
>> 12.1.0.1
>> 
>> 
>> org.apereo.cas
>> cas-server-support-saml
>> ${cas.version}
>> 
>> 
>> org.apereo.cas
>> cas-server-support-duo

Re: [cas-user] Service Registry -- Getting the 1st Application Entered

2018-05-14 Thread Jann Malenkoff 
Hi Richard:

I have the following in 'cas.properties':

cas.serviceRegistry.initFromJson=true

Is that correct to enable the first read from JSON? I have been staring at 
the screen for so long and begining to doubt myself w.r.t true/false flags.

On Monday, May 14, 2018 at 3:30:38 PM UTC-7, richard.frovarp wrote:
>
> Do you have initialization on from JSON? Not sure if it will use your file 
> or just the defaults. Either way, it should get you into the manager. Then 
> you configure the manager service, and turn that property off.
>
> # Auto-initialize the registry from default JSON service definitions
> # cas.serviceRegistry.initFromJson=false
>
>
>
> On 05/14/2018 05:13 PM, Jann Malenkoff wrote:
>
> Hi All:
>
> I'm trying to get the 'http://localhost:8080/cas-management/manage.html' 
> loaded up --- but hitting the error message: 
> ' 
> Application Not Authorized to Use CAS 
>
> The services registry of CAS is empty and has no service definitions. 
> Applications that wish to authenticate with CAS must explicitly be defined 
> in the services registry.'
>
>
> I am hoping to have a JPA service registry --- and have configured the 
> dependencies below in the 'cas-overlay-template' pom.xml.
>
>
> To enable the access to 'http://localhost:8080/cas-management/manage.html, 
> I have added  the JASON entry as below --- but do not see it in the 
> database table REGEXREGISTEREDSERVICE (I have 
> cas.serviceRegistry.config.location:file:/etc/cas/services in 
> 'cas.properties).
>
>
> What could I have missed (or more likely misunderstood)?
>
>
> *JSON File in /etc/cas/services (copied -- slightly adjusted -- from an 
> earlier post):*
>
> {
>   /*
>* Wildcard service definition that applies to any https or imaps url.
>* Do not use this definition in a production environment.
>*/
>   "@class" :"org.apereo.cas.services.RegexRegisteredService",
>   "serviceId" : "^(http)://.*",
>   "name" :  "HTTP wildcard",
>   "id" :20180514,
>   "evaluationOrder" :   9
> }
>
>
> *pom.xml -- for cas-overlay-template*
>
> 
> 
> org.apereo.cas
> cas-server-webapp${app.server}
> ${cas.version}
> war
> runtime
> 
> 
> org.apereo.cas
> 
> cas-server-support-json-service-registry
> ${cas.version}
> 
> 
> org.apereo.cas
> cas-server-support-ldap
> ${cas.version}
> 
> 
> org.apereo.cas
> 
> cas-server-support-jpa-service-registry
> ${cas.version}
> 
> 
> org.apereo.cas
> 
> cas-server-support-jpa-ticket-registry
> ${cas.version}
> 
> 
> org.apereo.cas
> 
> cas-server-support-jdbc-drivers
> ${cas.version}
> 
> 
> com.oracle
> ojdbc7.jar
> 12.1.0.1
> 
> 
> org.apereo.cas
> cas-server-support-saml
> ${cas.version}
> 
> 
> org.apereo.cas
> cas-server-support-duo
> ${cas.version}
> 
> 
> org.apereo.cas
> cas-server-support-events-jpa
> ${cas.version}
> 
> 
> -- 
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> --- 
> You received this message because you are subscribed to the Google Groups 
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an 
> email to cas-user+u...@apereo.org .
> To view this discussion on the web visit 
> https://groups.google.com/a/apereo.org/d/msgid/cas-user/daad2fc6-3a69-4404-9a91-379cfd3ee24e%40apereo.org
>  
> <https://groups.google.com/a/apereo.org/d/msgid/cas-user/daad2fc6-3a69-4404-9a91-379cfd3ee24e%40apereo.org?utm_medium=email_source=footer>
>

Re: [cas-user] Service Registry -- Getting the 1st Application Entered

2018-05-14 Thread Richard Frovarp 
Do you have initialization on from JSON? Not sure if it will use your 
file or just the defaults. Either way, it should get you into the 
manager. Then you configure the manager service, and turn that property off.


# Auto-initialize the registry from default JSON service definitions # 
cas.serviceRegistry.initFromJson=false




On 05/14/2018 05:13 PM, Jann Malenkoff wrote:

Hi All:

I'm trying to get the 
'http://localhost:8080/cas-management/manage.html' loaded up --- but 
hitting the error message:

'
Application Not Authorized to Use CAS

The services registry of CAS is empty and has no service definitions. 
Applications that wish to authenticate with CAS must explicitly be 
defined in the services registry.'



I am hoping to have a JPA service registry --- and have configured the 
dependencies below in the 'cas-overlay-template' pom.xml.



To enable the access to 
'http://localhost:8080/cas-management/manage.html, I have added  the 
JASON entry as below --- but do not see it in the database table 
REGEXREGISTEREDSERVICE (I have cas.serviceRegistry.config.location: 
file:/etc/cas/services in 'cas.properties).



What could I have missed (or more likely misunderstood)?


*JSON File in /etc/cas/services (copied -- slightly adjusted -- from 
an earlier post):*


{
  /*
   * Wildcard service definition that applies to any https or imaps url.
   * Do not use this definition in a production environment.
   */
  "@class" : "org.apereo.cas.services.RegexRegisteredService",
  "serviceId" : "^(http)://.*",
  "name" :  "HTTP wildcard",
  "id" :    20180514,
  "evaluationOrder" :   9
}



*pom.xml -- for cas-overlay-template*


    
org.apereo.cas
cas-server-webapp${app.server}
${cas.version}
    war
    runtime
    
    
org.apereo.cas
cas-server-support-json-service-registry
${cas.version}
    
    
org.apereo.cas
cas-server-support-ldap
${cas.version}
    
    
org.apereo.cas
cas-server-support-jpa-service-registry
${cas.version}
    
    
org.apereo.cas
cas-server-support-jpa-ticket-registry
${cas.version}
    
    
org.apereo.cas
cas-server-support-jdbc-drivers
${cas.version}
    
    
    com.oracle
ojdbc7.jar
    12.1.0.1
    
    
org.apereo.cas
cas-server-support-saml
${cas.version}
    
    
org.apereo.cas
cas-server-support-duo
${cas.version}
    
    
org.apereo.cas
cas-server-support-events-jpa
${cas.version}
    

--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google 
Groups "CAS Community" group.
To unsubscribe from this group and stop receiving emails from it, send 
an email to cas-user+unsubscr...@apereo.org 
<mailto:cas-user+unsubscr...@apereo.org>.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/daad2fc6-3a69-4404-9a91-379cfd3ee24e%40apereo.org 
<https://groups.google.com/a/apereo.org/d/msgid/cas-user/daad2fc6-3a69-4404-9a91-379cfd3ee24e%40apereo.org?utm_medium=email_source=footer>.



--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS Community" group.

To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/a400af15-af98-97b5-5020-f12b16dd905d%40ndsu.edu.

[cas-user] Service Registry -- Getting the 1st Application Entered

2018-05-14 Thread Jann Malenkoff 
Hi All:

I'm trying to get the 'http://localhost:8080/cas-management/manage.html' 
loaded up --- but hitting the error message: 
'
Application Not Authorized to Use CAS 

The services registry of CAS is empty and has no service definitions. 
Applications that wish to authenticate with CAS must explicitly be defined 
in the services registry.'


I am hoping to have a JPA service registry --- and have configured the 
dependencies below in the 'cas-overlay-template' pom.xml.


To enable the access to 'http://localhost:8080/cas-management/manage.html, 
I have added  the JASON entry as below --- but do not see it in the 
database table REGEXREGISTEREDSERVICE (I have 
cas.serviceRegistry.config.location:file:/etc/cas/services in 
'cas.properties).


What could I have missed (or more likely misunderstood)?


*JSON File in /etc/cas/services (copied -- slightly adjusted -- from an 
earlier post):*

{
  /*
   * Wildcard service definition that applies to any https or imaps url.
   * Do not use this definition in a production environment.
   */
  "@class" :"org.apereo.cas.services.RegexRegisteredService",
  "serviceId" : "^(http)://.*",
  "name" :  "HTTP wildcard",
  "id" :20180514,
  "evaluationOrder" :   9
}


*pom.xml -- for cas-overlay-template*



org.apereo.cas
cas-server-webapp${app.server}
${cas.version}
war
runtime


org.apereo.cas

cas-server-support-json-service-registry
${cas.version}


org.apereo.cas
cas-server-support-ldap
${cas.version}


org.apereo.cas

cas-server-support-jpa-service-registry
${cas.version}


org.apereo.cas

cas-server-support-jpa-ticket-registry
${cas.version}


org.apereo.cas
cas-server-support-jdbc-drivers
${cas.version}


com.oracle
ojdbc7.jar
12.1.0.1


org.apereo.cas
cas-server-support-saml
${cas.version}


org.apereo.cas
cas-server-support-duo
${cas.version}


org.apereo.cas
cas-server-support-events-jpa
${cas.version}



-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/daad2fc6-3a69-4404-9a91-379cfd3ee24e%40apereo.org.

[cas-user] Using Spring Boot Devtools

2018-05-14 Thread Riley Wills 
Has anyone had success with using Spring Boot Devtools with CAS 5.2.4? 
Adding this dependency to the cas-overlay-template pom.xml results in a 
stacktrace error caused by "Caused by: java.lang.ClassNotFoundException: 
org.apache.logging.log4j.core.pattern.ThrowablePatternConverter." I did 
find that Spring Boot 1.5.12.RELEASE supports up to log4j 2.7. I tried 
downgrading log4j but it produced more errors than progress.

I am looking for a faster way to do theming so I figured using Spring Boot 
Devtools would be useful with its live reload feature.

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/8de8f0dd-431e-432f-8d7b-03fa6952e6d4%40apereo.org.

[cas-user] Application Not Authorized to Use CAS

2018-05-14 Thread Jann Malenkoff 
Apologies if this is a double post -- my earlier one may not have gone 
through.

I have been battling via the JASON service registry over the weekend -- 
raising the white flag and planning the JPA route.

Attempting to access: 
http%3A%2F%2Flocalhost%3A8080%2Fcas-management%2Fmanage.html

"The services registry of CAS is empty and has no service definitions. 
Applications that wish to authenticate with CAS must explicitly be defined 
in the services registry."

Google is failing me today (or I am failing Google) -- is there info and 
what can be populated into the DB tables to allow above service to 
authenticate? I havent set up for attributes yet -- so these won't be 
needed for now.

The DB tables whivh have appered:

REGEXREGISTEREDSERVICE
/
REGEXREGISTEREDSERVICEPROPERTY
/
REGISTEREDSERVICE_CONTACTS
/
REGISTEREDSERVICEIMPL_PROPS

Thanks.

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/aa8e706a-64d8-48e7-9e13-781bd682c789%40apereo.org.

Re: [cas-user] Re: Single Logout SAML 2.0 not working : CAS is unable to process this request: "500:Internal Server Error"

2018-05-14 Thread R4NT45 crew 
any advice? im stuck with this issue.

thanks

On Sat, May 12, 2018 at 9:47 PM, asep-002  wrote:

>
> forgot my attachment log.
>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit https://groups.google.com/a/
> apereo.org/d/msgid/cas-user/30bd5f95-ed59-4d75-af71-
> fbcdc2a16467%40apereo.org
> 
> .
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAOTF3O1v53xtO9107HWkT1Mjm_X_Moea4HxMoR%3Da7ir%2BxCf1oQ%40mail.gmail.com.

Re: [cas-user] cas.properties file

2018-05-14 Thread David Curry 
Either one; they are interchangeable. Personally I like colons better, but
I'm pretty sure I'm in the minority on that.

The official spec is documented in the java.util.Properties documentation
, but
I find this description

to
be a lot more readable.

--Dave

--

DAVID A. CURRY, CISSP
*DIRECTOR OF INFORMATION SECURITY*
INFORMATION TECHNOLOGY

71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
+1 212 229-5300 x4728 • david.cu...@newschool.edu

[image: The New School]

On Mon, May 14, 2018 at 10:28 AM, Jennifer LaVoie 
wrote:

> When I configure my LDAP (AD) info, should the entries look like this
> cas.authn.ldap[0].name: Active Directory
> or this
> cas.authn.ldap[0].name= Active Directory
>
> Is it colon or equal sign?
>
> thanks
> Jen
>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit https://groups.google.com/a/
> apereo.org/d/msgid/cas-user/cbac456d-ba66-4f4f-910b-
> c31c94b57796%40apereo.org
> 
> .
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CA%2Bd9XAMKzukJrmgLQSrRm%3DHzZ3Wjj%2BjL6cyQKAK8Y5tBUfAzRA%40mail.gmail.com.

[cas-user] Re: cas.properties file

2018-05-14 Thread Matthew Uribe 
In my experience, both work the same.

On Monday, May 14, 2018 at 8:28:35 AM UTC-6, Jennifer LaVoie wrote:
>
> When I configure my LDAP (AD) info, should the entries look like this
> cas.authn.ldap[0].name: Active Directory
> or this
> cas.authn.ldap[0].name= Active Directory
>
> Is it colon or equal sign?
>
> thanks
> Jen
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/61157554-e367-4935-8f33-c18dd1963444%40apereo.org.

[cas-user] cas.properties file

2018-05-14 Thread Jennifer LaVoie 
When I configure my LDAP (AD) info, should the entries look like this
cas.authn.ldap[0].name: Active Directory
or this
cas.authn.ldap[0].name= Active Directory

Is it colon or equal sign?

thanks
Jen

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/cbac456d-ba66-4f4f-910b-c31c94b57796%40apereo.org.

Re: [cas-user] does CAS 5.2.0 SAML Logout support propagation of logout requests to other session participants?

2018-05-14 Thread Man H 
If you want slo for all services

cas.slo.disabled=true



2018-05-14 5:19 GMT-03:00 Elena Hong :

> Thanks to reply.
>
> I try do it.
> But It only sends logout message last service.
>
> Add config
>
> cas.slo.disabled=false
>
> cas.slo.asynchronous=false
>
>
>
> My Test Case.
> - I have 3 Service Provider, A, B, C.
> - I login A, B, C in order with SAML protocol.
> I expect to result.
> - when I logout at A then B and C receive logout message From CAS.
> But actual result.
> - when I logout at A, receive logout message only C (logged in last), B
> didn't.
>
> So I debugged CAS 5.2.0, Service Ticket has info only last logged in
> service.
>
> Is it bug or doesn't provide slo at SAML?
>
> Thanks.
>
> 2018년 5월 12일 (토) 오전 2:59, Man H 님이 작성:
>
>> cas.slo.disabled=false
>>
>>
>> see https://apereo.github.io/cas/5.2.x/installation/Logout-
>> Single-Signout.html
>>
>> 2018-05-11 1:53 GMT-03:00 Elena :
>>
>>> Hello,
>>>
>>> I read your SAML Docs and found link https://
>>> kantarainitiative.github.io/SAMLprofiles/fedinterop.html#_
>>> single_logout_2.
>>>
>>> It define SAML Single Logout like this.
>>>
>>> 4.3. Single Logout
>>> [IIP-IDP17]
>>>
>>> Identity Providers MUST It is OPTIONAL to support propagation of
>>> logout requests to other session participants.
>>>
>>> I wonder that CAS provide OPTIONAL function (highlighted red color) of
>>> SAML Single logout.
>>>
>>> Thanks.
>>>
>>> --
>>> - Website: https://apereo.github.io/cas
>>> - Gitter Chatroom: https://gitter.im/apereo/cas
>>> - List Guidelines: https://goo.gl/1VRrw7
>>> - Contributions: https://goo.gl/mh7qDG
>>> ---
>>> You received this message because you are subscribed to the Google
>>> Groups "CAS Community" group.
>>> To unsubscribe from this group and stop receiving emails from it, send
>>> an email to cas-user+unsubscr...@apereo.org.
>>> To view this discussion on the web visit https://groups.google.com/a/
>>> apereo.org/d/msgid/cas-user/650fbf2f-3b98-4dd0-b439-
>>> 92237f74e0e0%40apereo.org
>>> 
>>> .
>>>
>>
>> --
>> - Website: https://apereo.github.io/cas
>> - Gitter Chatroom: https://gitter.im/apereo/cas
>> - List Guidelines: https://goo.gl/1VRrw7
>> - Contributions: https://goo.gl/mh7qDG
>> ---
>> You received this message because you are subscribed to a topic in the
>> Google Groups "CAS Community" group.
>> To unsubscribe from this topic, visit https://groups.google.com/a/
>> apereo.org/d/topic/cas-user/olu1-70c53U/unsubscribe.
>> To unsubscribe from this group and all its topics, send an email to
>> cas-user+unsubscr...@apereo.org.
>> To view this discussion on the web visit https://groups.google.com/a/
>> apereo.org/d/msgid/cas-user/CAMY5micdND85FQTQA37b-
>> pkecaKpVoQh-bpLmwwgANZcv1TguQ%40mail.gmail.com
>> 
>> .
>>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit https://groups.google.com/a/
> apereo.org/d/msgid/cas-user/CAFPc70%3DnhBrrn7%2Baepxt7S4w4HX7gcQzrOVDShk--
> 4KgoCrYUw%40mail.gmail.com
> 
> .
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAMY5micub4eVVArF93Bwn2T2bhe_1kO-QhTyFZU7prEPtpY%3DqQ%40mail.gmail.com.

Re: [cas-user] Re: CAS not redirecting to service after successful authentication.

2018-05-14 Thread Neha Gupta 
Hello Ray,

Request you to please help me out with this.
Please let me know in case you need any other information.


Regards
Neha Gupta

On Wednesday, May 9, 2018 at 10:25:46 AM UTC+2, Neha Gupta wrote:
>
> Hello Ray,
>
> Yes that what is clear from the traces that service ticket are getting 
> generated but not validated. I have done all the configuration required in 
> ASP.NET application.
> Infact i just included the "DotNetCasClient" package and everything was 
> done automatically. I just changed the values of some attributes like 
> casServerLoginUrl, casServerUrlPrefix etc.
>
> Below is the link which i followed for doing the changes in ASP.NET 
> application: -
> https://github.com/apereo/dotnet-cas-client#integration-instructions
>
> I don't have any idea as what can be done to solve this problem and i 
> would greatly appreciate if your community can help me out to solve the 
> issue.
>
> I am attaching web.config file for reference here.
>
> PS: - I don't have any intention of using any particular ticket validator. 
> Initially i tried with Cas20 but as it was not working so i switched to 
> Saml11 which though working but not redirecting to the ASP.NET 
> application.
>
>
> Regards
> Neha Gupta
>
>
> On Tuesday, May 8, 2018 at 6:39:44 PM UTC+2, rbon wrote:
>>
>> Neha,
>>
>> There may be other settings that need to be modified when switching from 
>> SAML11 to CAS20. ST are being created but not validated. Your ASP.NET 
>> client is not configured correctly.
>>
>> Ray
>>
>> On Tue, 2018-05-08 at 03:56 -0700, Neha Gupta wrote:
>>
>> Hello Andy, 
>>
>> Thanks for reply.
>> I was also wondering about the TARGET in the URL and i think its because 
>> of the *ticketValidatorName="Saml11"* mentioned in the web.config file 
>> of ASP.NET application and when i change the value of 
>> "ticketValidatorName" to Cas10 or Cas20 then it does not work at all.Also 
>> please find attached traces of the same.
>>
>> Hope this will help.
>>
>>
>> Regards
>> Neha Gupta
>>
>>
>>
>>
>> On Tuesday, May 8, 2018 at 3:40:21 AM UTC+2, Andy Ng wrote: 
>>
>> Hi Neha, 
>>
>> Would like to know in which documentation do you know about the parameter 
>> TARGET in "https://idiv-dev1:8443/cas/login?TARGET=
>> *http%3a%2f%2flocalhost%3a60397%2f*", I didn't see this parameter in the 
>> official documentation. 
>> Maybe it is something related to ASP.NET?
>>
>> Anyway, the usual parameter for defining service in CAS is "service", 
>> that means your url should be "https://idiv-dev1:8443/cas/login?*service*
>> =http%3a%2f%2flocalhost%3a60397%2f"
>>
>> It is nice that you attached the debug log:
>> - I can see that the service is register successfully based on "> registered service [^(https|imaps|http)://.*]>", so your service 
>> registration is correct.
>>
>> Regarding the part related to ASP.NET, I have no idea so I would not 
>> comment on that. But i think since you can login success, the ASP.NET 
>> part should be fine as is.
>>
>> Cheers!
>> - Andy
>>
>>
>> On Monday, 7 May 2018 22:12:34 UTC+8, Neha Gupta wrote: 
>>
>> Dear All, 
>>
>> I am trying to integrate CAS with ASP.NET application.
>> Everything is working fine but CAS is not able to redirect to the 
>> destination service and showing its own logged in page.
>>
>> Final URL is: - https://idiv-dev1:8443/cas/login?TARGET=
>> *http%3a%2f%2flocalhost%3a60397%2f*
>>
>> where in TARGET my service URL is defined where i want CAS to redirect .
>>
>> Following configuration i have done in "*web.config*" file: -
>>
>> *> casServerLoginUrl="https://idiv-dev1:8443/cas/login; 
>> casServerUrlPrefix="https://idiv-dev1:8443/cas/; 
>> serverName="http://localhost:60397/; 
>> notAuthorizedUrl="~/NotAuthorized.aspx" 
>> redirectAfterValidation="true"
>>  renew="false" 
>> singleSignOut="true" 
>> ticketValidatorName="Saml11" 
>> serviceTicketManager="CacheServiceTicketManager"
>> * />*
>>
>> * *
>>   https://idiv-dev1:8443/cas/login; cookieless="UseCookies" />
>> **
>>
>> Along with this configuration i have also mentioned in "*FilterConfig.cs*" 
>> below two lines: - 
>>
>> filters.Add(new System.Web.Mvc.AuthorizeAttribute());
>> filters.Add(new RequireHttpsAttribute());
>>
>>
>> Please let me know where is the problem as i have no clue.
>>
>> PS: - I have registered the service with CAS and also below service is 
>> present which authorizes all services to pass through CAS: -
>> {
>>   "@class" : "org.apereo.cas.services.RegexRegisteredService",
>>   "serviceId" : "*^(https|imaps|http)://.**",
>>   "name" : "Apereo",
>>   "theme" : "apereo",
>>   "id" : 1002,
>>   "description" : "Apereo foundation sample service",
>>   "evaluationOrder" : 1
>>"accessStrategy" : {
>> "@class" : 
>> "org.apereo.cas.services.DefaultRegisteredServiceAccessStrategy",
>> "enabled" : true,
>> "ssoEnabled" : true
>>   }
>> }
>>
>>
>>
>>
>> Regards
>> Neha Gupta
>>
>>
>> -- 
>> Ray Bon
>> Programmer analyst
>> Development Services, University Systems
>> 2507218831 | CLE 019 |

Re: [cas-user] does CAS 5.2.0 SAML Logout support propagation of logout requests to other session participants?

2018-05-14 Thread Elena Hong 
Thanks to reply.

I try do it.
But It only sends logout message last service.

Add config

cas.slo.disabled=false

cas.slo.asynchronous=false



My Test Case.
- I have 3 Service Provider, A, B, C.
- I login A, B, C in order with SAML protocol.
I expect to result.
- when I logout at A then B and C receive logout message From CAS.
But actual result.
- when I logout at A, receive logout message only C (logged in last), B
didn't.

So I debugged CAS 5.2.0, Service Ticket has info only last logged in
service.

Is it bug or doesn't provide slo at SAML?

Thanks.

2018년 5월 12일 (토) 오전 2:59, Man H 님이 작성:

> cas.slo.disabled=false
>
>
> see
> https://apereo.github.io/cas/5.2.x/installation/Logout-Single-Signout.html
>
> 2018-05-11 1:53 GMT-03:00 Elena :
>
>> Hello,
>>
>> I read your SAML Docs and found link
>> https://kantarainitiative.github.io/SAMLprofiles/fedinterop.html#_single_logout_2
>> .
>>
>> It define SAML Single Logout like this.
>>
>> 4.3. Single Logout
>> [IIP-IDP17]
>>
>> Identity Providers MUST It is OPTIONAL to support propagation of
>> logout requests to other session participants.
>>
>> I wonder that CAS provide OPTIONAL function (highlighted red color) of
>> SAML Single logout.
>>
>> Thanks.
>>
>> --
>> - Website: https://apereo.github.io/cas
>> - Gitter Chatroom: https://gitter.im/apereo/cas
>> - List Guidelines: https://goo.gl/1VRrw7
>> - Contributions: https://goo.gl/mh7qDG
>> ---
>> You received this message because you are subscribed to the Google Groups
>> "CAS Community" group.
>> To unsubscribe from this group and stop receiving emails from it, send an
>> email to cas-user+unsubscr...@apereo.org.
>> To view this discussion on the web visit
>> https://groups.google.com/a/apereo.org/d/msgid/cas-user/650fbf2f-3b98-4dd0-b439-92237f74e0e0%40apereo.org
>> 
>> .
>>
>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to a topic in the
> Google Groups "CAS Community" group.
> To unsubscribe from this topic, visit
> https://groups.google.com/a/apereo.org/d/topic/cas-user/olu1-70c53U/unsubscribe
> .
> To unsubscribe from this group and all its topics, send an email to
> cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit
> https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAMY5micdND85FQTQA37b-pkecaKpVoQh-bpLmwwgANZcv1TguQ%40mail.gmail.com
> 
> .
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAFPc70%3DnhBrrn7%2Baepxt7S4w4HX7gcQzrOVDShk--4KgoCrYUw%40mail.gmail.com.