Hello,
We're new to "modern" CAS (moving from 3.x to 5.x), and have run into an
issue. We configured an attribute release filter to return mail & uid:
"attributeReleasePolicy" : {
"@class" : "org.apereo.cas.services.ReturnAllowedAttributeReleasePolicy",
"allowedAttributes" : [
Zoran,
Can you clarify what it is that you are trying to accomplish with your test?
You can hit cas/logout, this will invalidate the TGT. You can let the CAS
session expire (set your timeouts to a few minutes - I think 2 is the minimum).
Then visit an application that requires login.
If you
We started with JPA ticket registry back in the 3.x days. Ran into the same
issue.
We moved to ehcache then to hazelcast.
We do about 300k (with Duo) logins per day. I would never recommend JPA
because of this exact issue.
-Bryan
University of Utah
On Fri, Oct 5, 2018 at 5:50 PM Trevor Fong
Mr. Bond,
I have not configured cas for triggering multi-factor based off a singular
attribute. I have for a multi-valued memberOf attribute, It should be
basically the same.
Here is my config for looking at the memberOf attributes:
# Activate MFA globally based on principal attributes
Thanks a lot Tim.
We came across this in our load test and we were missing indexes for
foreign keys in ticketregistryticket and serviceticket table. Adding this
has solved issue in load test but we are seeing same in production and
deadlocks with indexes on.
We have cleaner running on one of
HI all,
I'm attempting to configure CAS so that the MFA provider is determined via
an ldap attribute. I have the following config
```
server.ssl.keyStore=file:/etc/cas/thekeystore
cas.server.name=https://idp.wikimedia.org:8443
cas.server.prefix=https://idp.wikimedia.org:8443/cas
Thanks for the response Ray.
No, I've tried to use the ST again. So it should be used only once as you
say. So how can you test the whole flow when
Ticket Registry is setup? I can't find any useful informations on that ?
On Wednesday, August 14, 2019 at 6:24:00 PM UTC+2, rbon wrote:
>
> Zoran,
Zoran,
Is failed validation on the first use of the ST?
ST can be used only once. As such, they are not stored very long.
Ray
On Wed, 2019-08-14 at 07:52 -0700, ZP wrote:
Hello,
To test the whole flow I am using CAS WAR Overlay and CASified Spring Boot
application.
After a successful login,