[cas-user] Return uid in attribute list?

Hello, We're new to "modern" CAS (moving from 3.x to 5.x), and have run into an issue. We configured an attribute release filter to return mail & uid: "attributeReleasePolicy" : { "@class" : "org.apereo.cas.services.ReturnAllowedAttributeReleasePolicy", "allowedAttributes" : [

Re: [cas-user] How to test Redis Ticket Registry?

Zoran, Can you clarify what it is that you are trying to accomplish with your test? You can hit cas/logout, this will invalidate the TGT. You can let the CAS session expire (set your timeouts to a few minutes - I think 2 is the minimum). Then visit an application that requires login. If you

Re: [cas-user] Deadlocks and Uncommited Transaction

We started with JPA ticket registry back in the 3.x days. Ran into the same issue. We moved to ehcache then to hazelcast. We do about 300k (with Duo) logins per day. I would never recommend JPA because of this exact issue. -Bryan University of Utah On Fri, Oct 5, 2018 at 5:50 PM Trevor Fong

Re: [cas-user] Re: Problem with Global Principal Attribute

Mr. Bond, I have not configured cas for triggering multi-factor based off a singular attribute. I have for a multi-valued memberOf attribute, It should be basically the same. Here is my config for looking at the memberOf attributes: # Activate MFA globally based on principal attributes

[cas-user] Re: Deadlocks and Uncommited Transaction

Thanks a lot Tim. We came across this in our load test and we were missing indexes for foreign keys in ticketregistryticket and serviceticket table. Adding this has solved issue in load test but we are seeing same in production and deadlocks with indexes on. We have cleaner running on one of

[cas-user] Problem with Global Principal Attribute

HI all, I'm attempting to configure CAS so that the MFA provider is determined via an ldap attribute. I have the following config ``` server.ssl.keyStore=file:/etc/cas/thekeystore cas.server.name=https://idp.wikimedia.org:8443 cas.server.prefix=https://idp.wikimedia.org:8443/cas

Re: [cas-user] How to test Redis Ticket Registry?

Thanks for the response Ray. No, I've tried to use the ST again. So it should be used only once as you say. So how can you test the whole flow when Ticket Registry is setup? I can't find any useful informations on that ? On Wednesday, August 14, 2019 at 6:24:00 PM UTC+2, rbon wrote: > > Zoran,

Re: [cas-user] How to test Redis Ticket Registry?

Zoran, Is failed validation on the first use of the ST? ST can be used only once. As such, they are not stored very long. Ray On Wed, 2019-08-14 at 07:52 -0700, ZP wrote: Hello, To test the whole flow I am using CAS WAR Overlay and CASified Spring Boot application. After a successful login,