Re: [cas-user] Throttling not blocking [CAS 6.0.0]

2019-04-05 Thread Baso Dupond
Ray, Scenario I have done : 1/ After serveral attempts with a wrong password, I obtain the page "Too many attempts " 2/ Then I open a new window https://x/cas/login (I am NOT blocked) and make another attemps with a wrong password. 3/ Once again after several attemps I obtain the page

Re: [cas-user] Re: Unsuccessful in configuring CAS 5.1.3 as a OAuth server ("/callbackAuthorize" redirects to "/" instead of client app)

2019-04-05 Thread Ray Bon
Anuja, What you are seeing are duplicate log entries (time stamps match). Check 'additivity' in log4j2.xml to make sure only one message is logged. Ray On Fri, 2019-04-05 at 13:41 -0700, Anuja Paradkar wrote: Log file shows it creates and validates same ticket twice, no doubt during second

[cas-user] Re: Unsuccessful in configuring CAS 5.1.3 as a OAuth server ("/callbackAuthorize" redirects to "/" instead of client app)

2019-04-05 Thread Anuja Paradkar
Log file shows it creates and validates same ticket twice, no doubt during second validation it wont find entry for that service. Funny thing it does not throw exception but just uses default redirect path which is "/" in CAS source code. [[32m2019-04-02 19:58:09,776 INFO

[cas-user] Re: CAS Authentication Exception

2019-04-05 Thread Andrey Seledkov
Ray, you was right I forgot about dependecy compile "org.apereo.cas:cas-server-support-jdbc:${project.'cas.version'}" Thanks a lot! пятница, 5 апреля 2019 г., 13:56:55 UTC+3 пользователь Andrey Seledkov написал: > > Hello team. > > I setup cas overlay template , version 6.0.3 > > I am

Re: [cas-user] Re: CAS Authentication Exception

2019-04-05 Thread Ray Bon
Andrey, It looks like your jdbc handler is not recognized. I have this in my log (5.2.7): DEBUG [aper.cas.auth.RegisteredServiceAuthenticationHandlerResolver] - Check your config file location and where CAS thinks it should be. Ray On Fri, 2019-04-05 at 11:30 -0700, Andrey Seledkov wrote:

Re: [cas-user] Throttling not blocking [CAS 6.0.0]

2019-04-05 Thread Ray Bon
Baso, AUTHENTICATION_EVENT_TRIGGERED happens any time cas/login is accessed. What happens when you try to log in? Ray On Fri, 2019-04-05 at 09:42 -0700, Baso Dupond wrote: Hi, I have implemented CAS 6.0.0 with succes so far. I have difficulties with 'Throttling Authentication Attempts' After

[cas-user] Re: CAS Authentication Exception

2019-04-05 Thread Andrey Seledkov
As i see issue here not with sql query , it is didnt get to sql , becasue failed before it I thinf issue here 21:22:12.966 [https-jsse-nio-8443-exec-7] DEBUG org.apereo.cas.authentication.PolicyBasedAuthenticationManager - Authentication credentials provided for this transaction are

[cas-user] Re: CAS 5.1.9 Mongodb ticket cleanup

2019-04-05 Thread Juan Quintanilla
Never mind I found that in CAS 5.3 you have the cleanup process working with mongodb. Thanks! ___ Juan Quintanilla Enterprise Systems Group 305-348-6573 jquin...@fiu.edu From: cas-user@apereo.org on behalf of Juan

[cas-user] Throttling not blocking [CAS 6.0.0]

2019-04-05 Thread Baso Dupond
Hi, I have implemented CAS 6.0.0 with succes so far. I have difficulties with 'Throttling Authentication Attempts' After doing connexion attempts with a wrong password, I am happy to see the page "Too many attempts " However I am NOT blocked. I can immediatly perform a succesfull

[cas-user] How to use REST Attribute Release Policy (Return Restful)?

2019-04-05 Thread Fahmi L. Ramdhani
Hello, How to use REST Attribute Release Policy? REST Endpoint filled with? I tried to do something stupid, I route (on my website) to give a JSON 200 response with a response: *https://try.example.com/json-output* respon { "@class" : "org.apereo.cas.services.RegexRegisteredService",

Re: [cas-user] CAS Authentication Exception

2019-04-05 Thread Ray Bon
Andrey, You have showSql=true, check the sql statement to be sure it is correct, and run it against your database to be sure it returns the data that you want. The stack trace is part of DEBUG output. Ray On Fri, 2019-04-05 at 03:56 -0700, Andrey Seledkov wrote: Hello team. I setup cas

[cas-user] Re: CAS Management - Collection of Attributes in Attribute Release Policy

2019-04-05 Thread Fahmi L. Ramdhani
I hope CAS Management can take attributes based on existing attributes (*attribute key*). Thank David! Pada Jumat, 05 April 2019 15.01.42 UTC+7, Fahmi L. Ramdhani menulis: > > Hello, > > How to configure the attribute list in the Attribute Release Policy > (Return Allowed) in CAS Management?

Re: [cas-user] CAS Management - Collection of Attributes in Attribute Release Policy

2019-04-05 Thread David Curry
I'm afraid I don't know the answer to that one. --Dave -- DAVID A. CURRY, CISSP *DIRECTOR OF INFORMATION SECURITY* THE NEW SCHOOL • INFORMATION TECHNOLOGY 71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003 +1 212 229-5300 x4728 • david.cu...@newschool.edu On Fri, Apr 5, 2019 at 9:23 AM Fahmi L.

Re: [cas-user] CAS Management - Collection of Attributes in Attribute Release Policy

2019-04-05 Thread Fahmi L. Ramdhani
Can the configuration be dynamic? The example in the settings has several attributes (Multi Row attribute resolution), I hope CAS Management can take attributes based on existing attributes (attribute key). Can it be like that? Thank you David Sent from my iPhone > On 5 Apr 2019, at 18.45,

Re: [cas-user] CAS 5.1.9 Mongodb ticket cleanup

2019-04-05 Thread David Curry
When we were using mongodb as our ticket repository (CAS 5.2.x), we just took the default ticket registry cleaner that came out of the box, and it worked pretty well. However, mongodb itself as a ticket registry gave us some problems under heavier load (like when a few thousand students were all

Re: [cas-user] CAS Management - Collection of Attributes in Attribute Release Policy

2019-04-05 Thread David Curry
For CAS 5.2.x, you configure the "stub" attribute repository with all the attribute names you want the management app to be able to work with (add these to the management.properties file, not cas.properties): cas.authn.attributeRepository.stub.attributes.UDC_IDENTIFIER: UDC_IDENTIFIER

[cas-user] CAS Authentication Exception

2019-04-05 Thread Andrey Seledkov
Hello team. I setup cas overlay template , version 6.0.3 I am trying to authenticate user , but got next stack trace , please assist My application.properties cas.authn.accept.users= cas.authn.accept.name= cas.jdbc.showSql=true cas.authn.jdbc.query[0].sql=SELECT password FROM users WHERE

[cas-user] CAS Management - Collection of Attributes in Attribute Release Policy

2019-04-05 Thread Fahmi L. Ramdhani
Hello, How to configure the attribute list in the Attribute Release Policy (Return Allowed) in CAS Management? There only displays *uid, eppn *and *givenName*. While the attributes available in the database are *uid, email, username, nip, phone *and others. I want to display the array list