Re: [cas-user] [OAuth2] Generate new refresh token when using a previous refresh-token

Sounds great, good for you. And yes, I'd certainly agree. A never-expiring RT or any token/ticket for that matter is generally a very bad idea. --Misagh > From: "Anders Olsen" <anders.ol...@dof.dk> > To: "CAS Community" <cas-user@apereo.org> >

Re: [cas-user] [CAS-5.1.0][SAML SP Initiated] Login Issue

https://apereo.github.io/cas/5.2.x/installation/Troubleshooting-Guide.html#deployment-problem-x-configuration-issue-can-you-help --Misagh > From: "Soumya Tripathy" <soumya2...@gmail.com> > To: "CAS Community" <cas-user@apereo.org> > Sent: Thursday, Fe

Re: [cas-user] Multiple Duo Instances

, bypass will kick in and if not, CAS should be able to trigger MFA. There is also the built-in ability to check with Duo directly to see if the user has in fact registered for MFA/Duo and does have an account. --Misagh > From: "Man H" <info.ings...@gmail.com> > To: cas-

[cas-user] CAS 5.3 RC2 Release Announcement

CAS 5.3.0 RC2 is released: https://github.com/apereo/cas/releases/tag/v5.3.0-RC2 --Misagh -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message

Re: [cas-user] CAS 5.2.x SAML IdP Issues

Do you have other JSON service definitions in the registry? Anything with a lower evaluation order or a more relaxed regex pattern? --Misagh > From: "vnick" <nick.e.couch...@gmail.com> > To: "CAS Community" <cas-user@apereo.org> > Sent: Thursday, Febr

Re: [cas-user] Stumped on attribute release in CAS 5.1

applications. The first two steps can be combined unless you have good reason not to. --Misagh > From: "Toby Archer" <sandsl...@gmail.com> > To: "CAS Community" <cas-user@apereo.org> > Sent: Friday, February 23, 2018 1:36:32 PM > Subject: [cas-user] Stumped o

Re: [cas-user] CAS 5.2 -- Custom Authenticator and UserDetailsService

See: https://apereo.github.io/cas/5.2.x/installation/Configuration-Management-Extensions.html https://apereo.github.io/2017/02/21/cas-autocfg-strategy/ https://apereo.github.io/2016/06/26/survey-results/ And refer to Spring Boot docs. --Misagh > From: "Michael MacEachran&qu

Re: [SOLVED] Re: [cas-user] CAS 5.2.x SAML IdP Issues

Nice. If and when you get to it, turn it into once of these: https://apereo.github.io/cas/development/integration/Configuring-SAML-SP-Integrations.html --Misagh > From: "vnick" <nick.e.couch...@gmail.com> > To: "CAS Community" <cas-user@apereo.org> >

Re: [SOLVED] Re: [cas-user] CAS 5.2.x SAML IdP Issues

Cool. Who exactly is the SP in this scenario? --Misagh > From: "vnick" <nick.e.couch...@gmail.com> > To: "CAS Community" <cas-user@apereo.org> > Cc: "Misagh Moayyed" <mmoay...@unicon.net> > Sent: Thursday, February 15, 2018 10:48

Re: [cas-user] Re: Problem integrating CAS 5.2.2 with WS Federation Identity Provider

Do you see the same problem with 5.2.3-SNAPSHOT? --Misagh > From: "Seb" <sre...@cdg33.fr> > To: "CAS Community" <cas-user@apereo.org> > Sent: Wednesday, February 21, 2018 1:53:20 PM > Subject: [cas-user] Re: Problem integrating CAS 5.2.2 with WS Fede

[cas-user] CAS 5.3.0-RC1 release annoucement

CAS 5.3.0-RC1 is released: https://github.com/apereo/cas/releases/tag/v5.3.0-RC1 --Misagh -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message

[cas-user] CAS 5.2.1 release annoucement

CAS 5.2.1 is released: https://github.com/apereo/cas/releases/tag/v5.2.1 (This is just the announcement; the release was done last week) --Misagh -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7

[cas-user] CAS 5.1.7 Release Announcement

CAS 5.1.7 is released: https://github.com/apereo/cas/releases/tag/v5.1.7 --Misagh -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because

Re: [cas-user] CAS 5.3.2 - Delegate auth to SAML2 IdP issue - No client found for name: SAML2Client

cas.authn.pac4j.saml[0].clientName =SAML2Client --Misagh > From: "Nebil Mabrouk" > To: "CAS Community" > Sent: Wednesday, August 1, 2018 1:15:18 PM > Subject: [cas-user] CAS 5.3.2 - Delegate auth to SAML2 IdP issue - No client > found for name: SAML2Client

Re: [cas-user] security questions read but not managed?

Your best bet is to simply add the missing pieces where they belong. Items get completed based on availability, time, funding, interest, money and use case. If you find something missing, ideally you would do the work to build it in. Or start from zero. --Misagh - Original Message

Re: [cas-user] security questions read but not managed?

That is true. --Misagh - Original Message - > From: "Trenton D. Adams" > To: "CAS Community" > Sent: Thursday, August 9, 2018 1:17:04 PM > Subject: [cas-user] security questions read but not managed? > Hi Guys, > > I'm a bit confused a

[cas-user] CAS 5.3.0 RC3 Release Announcement

CAS 5.3.0 RC3 is now released: https://github.com/apereo/cas/releases/tag/v5.3.0-RC3 --Misagh -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received

Re: [cas-user] CAS 4.1.9 overlay consumes SAML 2.0 and 1.x assertions

only SAML2 and only specific variants of are supported there. Skip backporting. It's only going to make you age faster...and not like Clooney. --Misagh > From: "Yan Zhou" <yanand...@gmail.com> > To: "CAS Community" <cas-user@apereo.org> > Sent: Thursd

[cas-user] CAS 5.2.4 Release Announcement

CAS 5.2.4 is released: https://github.com/apereo/cas/releases/tag/v5.2.4 --Misagh -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because

Re: [cas-user] Customizing messages

Take a look here: https://apereo.github.io/cas/5.2.x/installation/User-Interface-Customization-Localization.html custom_messages.properties should do the job, IIRC. --Misagh > From: "Teddy Brown" <te...@teddybrown.ca> > To: "CAS Community" <cas-user@

Re: [cas-user] Sending pricipal and principal attributes

ead.> --Misagh > From: "yashwanth chowdary" <ryashwanthkumarchowd...@gmail.com> > To: "CAS Community" <cas-user@apereo.org> > Sent: Tuesday, April 17, 2018 5:11:50 AM > Subject: [cas-user] Sending pricipal and principal attributes > Hi Team, > CasVers

Re: [cas-user] Re: CAS 5.3 build erro

Your issue is: No cached version of com.google.code.findbugs:annotations:2.0.0 available for offline mode. And yet you're using the --offline flag. Remove the flag and try again. --Misagh > From: "JF Poulin" > To: "CAS Community" > Sent: Thursday, September

Re: [cas-user] Implementing a GRPC interface for CAS

You are more than welcome to contribute. Turn it into a CAS module and shoot a pull request. Some additional rants on the matter: https://apereo.github.io/2017/09/10/stop-writing-code/ --Misagh > From: "Jac Fitzgerald" > To: "CAS Community" > Sent: Thursday,

[cas-user] Re: Error SAML 2.0 + Access Strategy

I can't recall specifically, but I do know this has been fixed in later versions of 5.3.x. On Tuesday, October 30, 2018 at 7:48:43 PM UTC+3:30, Alexi Pascual wrote: > > hi, > > We have a SAML 2.0 integration with Coursera and it works well. However, > when I add an access rule, the following

[cas-user] Re: Problem with SAML2 delegated administration

If you mean the SP metadata, can you not modify that manually with the right URLs to match your proxy? On Wednesday, October 31, 2018 at 12:09:52 PM UTC+3:30, Fabio Martelli wrote: > > Dear All, I have to ask for your help in order to achieve a specific > requirement. > > I have *2 **CAS 5.2

Re: [cas-user] embedded tomcat request params

Bad curl command. Try: curl -k https://localhost:8443/cas/p3/serviceValidate?service=abc'&'ticket=123 Note the single-quotes around &. --Misagh > From: "Bergner, Arnold" > To: cas-user@apereo.org > Sent: Wednesday, November 7, 2018 4:19:14 AM > Subject: [cas

[cas-user] CAS 5.3.x/5.2.x Release Announcements

CAS 5.3.4 is released: https://github.com/apereo/cas/releases/tag/v5.3.4 CAS 5.2.8 is released: https://github.com/apereo/cas/releases/tag/v5.2.8 --Misagh -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7

[cas-user] Re: Indexed Salesforce Properties

No this isn't supported; You will need to manually add the integrations to your service registry or submit a pull request to take care of the indexed settings. On Thursday, September 6, 2018 at 9:03:24 PM UTC+4:30, Siddharth Bhattacharjee wrote: > > Hello, > > I am trying to setup CAS as the

[cas-user] Re: How do I enable encryption of attributes

Not a rookie question at all. I don't think encrypted attributes are supported, individually or not. You will likely need to put together code that does that for you using OpenSAML and related CAS components. On Friday, August 24, 2018 at 10:22:28 PM UTC+4:30, Ash wrote: > > hi, > > Rookie

[cas-user] Re: authentication interrupt + delegated authentication = bug

This is fixed in the most recent 5.3.4-SNAPSHOT. On Tuesday, July 17, 2018 at 8:06:14 PM UTC+4:30, Chia-Ying Yang wrote: > > I found that authentication interrupt (interrupt notifications) does not > work with delegated authentication. Preliminary debugging suggests the > interrupt flow is

[cas-user] Re: One Active Session

This maybe: https://apereo.github.io/cas/5.3.x/installation/Configuration-Properties.html#unique-principal ? On Friday, August 10, 2018 at 11:01:38 AM UTC+4:30, Ramakrishna G wrote: > > Hello All, > > I want to disable multiple session login with same user id from different > browser or

[cas-user] Re: SAML2 SLO SP initiated

Your analysis is correct. I believe more recent versions of 6 handle this scenario. On Thursday, September 13, 2018 at 12:41:08 PM UTC+4:30, Fabio Martelli wrote: > > Il 12/09/2018 17:20, Fabio Martelli ha scritto: > > Hi All, I have some trouble with SAML2 SLO. > > It seems that my IdP CAS

[cas-user] Re: A rumor about CAS loosing ADFS integration

The CAS integration with ADFS is fine. Though "Perfectly" is perhaps too strong a word :) But seriously, there is no basis to the rumor AFAIK. You're probably thinking of the Azure MFA SDK, whose integration is one that was removed from CAS about 8-9 months ago. On Friday, September 7, 2018 at

[cas-user] CAS 5.3.7 Release Announcement

CAS 5.3.7 is released: https://github.com/apereo/cas/releases/tag/v5.3.7 --Misagh -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because

[cas-user] Re: JWTs and Microservice

It shouldn't have to be registered, and no it's not considered "correct practice" to share in most cases. On Thursday, November 29, 2018 at 2:26:10 AM UTC-7, Giuseppe Infurna wrote: > > Hi, > I have a web application connected with Cas 5.3.5 and it works. > After logging into Cas, I return to

[cas-user] CAS 5.3.6 Release Annoucement

CAS 5.3.6 has been released: https://github.com/apereo/cas/releases/tag/v5.3.6 --Misagh -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message

[cas-user] CAS 5.2.9 Release Annoucement

CAS 5.2.9 has been released: https://github.com/apereo/cas/releases/tag/v5.2.9 --Misagh -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message

[cas-user] CAS 6 RC2: Release Announcement

CAS 6 RC2 is released: https://github.com/apereo/cas/releases/tag/v6.0.0-RC2 --Misagh -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message

[cas-user] Re: CAS 5.3.9 and Azure OIDC Delegation - ClassCastException in pac4j

You may want to try your luck with the next SNAPSHOT, 5.3.10-SNAPSHOT, and sidestep dependency changes. On Thursday, March 28, 2019 at 1:31:38 PM UTC-7, Paul Bransford wrote: > > Thank you, this does the trick! > > There's some other concern around how to appropriately accomplish this in > my

[cas-user] Re: CAS 5.3.x CAS Services Management and attribute uir like urn:oid:...

You may want to try the next SNAPSHOT, 5.3.10-SNAPSHOT. On Friday, March 22, 2019 at 1:06:22 PM UTC-7, Christian Poirier wrote: > > Hi everybody > > I have an error using CAS Services Management 5.3.x when I try to save a > SAML2 service containing > > "attributeFriendlyNames": { >

[cas-user] Re: New install of Cas 6.1.0, json service not working

Is your client application sending a SAML1 authentication request to CAS? On Friday, March 29, 2019 at 3:05:23 PM UTC-7, Pablo Vidaurri wrote: > > Btw, i do see the service being loaded every minute in the log: registered service [.*]> > -- - Website: https://apereo.github.io/cas - Gitter

[cas-user] Re: broken repository

The jasig repository was retired about 2-3 months ago; (almost) everything you'd need is already in maven central, bintray or various other public repos. On Wednesday, March 20, 2019 at 5:54:50 AM UTC-7, Fernando Gómez wrote: > > Hello the Jasig developer repository is broken recently, you

[cas-user] CAS 5.3.9 Release Annoucement

CAS 5.3.9 is released: https://github.com/apereo/cas/releases/tag/v5.3.9 --Misagh -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because

[cas-user] Re: Custom encoder with cas 5.3

This might be of service to you: https://apereo.github.io/2017/02/22/cas51-dbauthn-tutorial/#password-encoding On Thursday, February 21, 2019 at 8:10:37 PM UTC-7, Ngô Hữu Tiến wrote: > > How to custom encoderpassword with cas 5.3 ? > hepl me > -- - Website: https://apereo.github.io/cas -

Re: [cas-user] Re: How to register a service in CAS while using SAM2.0 protocol

Just to clarify: service identifiers can be a regex. On Friday, February 22, 2019 at 5:07:16 AM UTC-7, Matthew Uribe wrote: > > I don't think you can use regex in the service id for SAML services. You > have to specify the service name exactly. > > On Fri, Feb 22, 2019, 2:31 AM Pameliya

[cas-user] Re: CAS-5.3.8 displays cas login page before rediecting to openid provider login screen

The redirect is handled by a Javascript snippet: you can remove other elements on the screen to "blank" things out, or move the redirect call into something more immediate; maybe a meta-refresh tag. On Thursday, February 21, 2019 at 2:10:24 AM UTC-7, john wrote: > > Hi , I upgraded Cas from

[cas-user] Re: CAS 5.3 OAuth2 NullPointerException

This seems like a side-effect of this pull request: https://github.com/apereo/cas/pull/3782 This should be fixed in 5.3.9-SNAPSHOT, if you want to switch and try again. On Friday, February 22, 2019 at 11:36:13 AM UTC-7, Rodrigo Siqueira wrote: > > Hi all, > > I'm having a small trouble with

[cas-user] Re: Shibboleth IDP, CAS, Shibcas and authnContext

shib-cas-authn3 3.2.3 does not support handling authn context classes received from CAS. Switch to a more recent version such as a 3.2.4.beta4 please. The readme also provides an example of how one can map MFA on CAS to the REFEDS profile, which might serve as inspiration for you. On Friday,

[cas-user] CAS 6.0.2 Release Annoucement

CAS 6.0.2 is released: https://github.com/apereo/cas/releases/tag/v6.0.2 --Misagh -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because

[cas-user] CAS 6.1.0-RC2 Release Annoucement

release becomes available, please speak up. --Misagh -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Goo

[cas-user] Re: Configure single datasource

The only way I know how, besides writing code, is if you setup a data source via JNDI and then set the name of that data source in CAS settings for authentications and audits. https://apereo.github.io/cas/6.0.x/configuration/Configuration-Properties-Common.html#container-based-jdbc-connections

[cas-user] CAS 5.3.8 Release Annoucement

CAS 5.3.8 is released: https://github.com/apereo/cas/releases/tag/v5.3.8 --Misagh -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because

[cas-user] CAS 6.0.3 Release Annoucement

CAS 6.0.3 is released: https://github.com/apereo/cas/releases/tag/v6.0.3 --Misagh -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because

Re: [cas-user] Excluding system generated attributes in SAML response

https://apereo.github.io/cas/5.3.x/installation/Configuration-Properties.html#protocol-attributes cas.authn.releaseProtocolAttributes=false cas.authn.authenticationAttributeRelease.neverRelease=A,B,C,D --Misagh > From: "Dustin Luck" > To: "CAS Community" >

[cas-user] Re: CAS 6.1.0 - questions about java version and EOL

In the maintenance policy page ( > https://apereo.github.io/cas/developer/Maintenance-Policy.html), it is > writtent that the EOL for CAS Server 6.1.0 is the June 1st, 2020. > It is the last version though, > It's not the last version. It's the last version for which there is an EOL. As

[cas-user] CAS 6.1.0-RC4 Release Annoucement

CAS 6.1.0-RC4 is released: https://github.com/apereo/cas/releases/tag/v6.1.0-RC4 --Misagh -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message

Re: [cas-user] CAS 6.x - Bypass Approval Prompt

Hi Christian, Can you indicate the exact version number (RC) and the commit id that you're using in 6.1? --Misagh > From: "Christian Schmidt" > To: "CAS Community" > Sent: Wednesday, May 22, 2019 8:11:55 AM > Subject: [cas-user] CAS 6.x - Bypass Approva

[cas-user] Re: Ranking Providers for step-up authentication

This might get you started in the right direction: https://apereo.github.io/2019/05/13/cas61x-mfa-selection-strategies/ On Monday, May 20, 2019 at 4:09:19 AM UTC-7, Fabio Martelli wrote: > > Hi All, I'd like to exploit "Ranking Providers" feature [1] in order to > implement a step-up

[cas-user] CAS 6.1 RC3 Release Annoucement

CAS 6.1 RC3 is released: https://github.com/apereo/cas/releases/tag/v6.1.0-RC3 --Misagh -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message

[cas-user] Re: Dynamic data in webflow

This might help: https://apereo.github.io/2019/04/25/cas61x-webflow-decorations/ On Monday, April 22, 2019 at 2:37:59 PM UTC-7, Michael MacEachran wrote: > > all, > > I need to inject dynamic data (Message of the Day) into the > casLoginView.html > > I have a basic understanding of

[cas-user] Re: cas/p3/login ?

This might help: https://apereo.github.io/2017/06/23/cas-protocol-compatibility/ On Tuesday, April 23, 2019 at 9:23:51 AM UTC-7, Mukunthini Jeyakumar wrote: > > I've ended up with the situation same as yours when I was configuring > libauth with CAS v5. Have you find the way to solve this? > >

[cas-user] Re: CAS REST Password management 404

You are expected to write and design the API. On Monday, April 22, 2019 at 6:55:38 PM UTC-7, casuser wrote: > > Hello everyone, > > we are using cas 5.3.8 in prod. I was trying to enable the rest password > management. I have added the dependencies and the required cas.properties > but

Re: [cas-user] CAS 6.x delegated auth chanied with different attributeRepository

This isn't quite possible to do as you describe it today. I'd suggest you wait until 6.1 RC4 as this is being somewhat worked. Otherwise, you might need to write your authentication handler and in there decide how to fetch attributes based on the client, etc. On Tuesday, April 16, 2019 at

[cas-user] Re: 6.0.x Actuator endpoint security for cas config server

s because of the configuration adapter class that is included > in the cas server webapp, but not in the cas config server or cas bootadmin > server webapp. > Which is our problem. > > On Wednesday, 24 April 2019 15:34:35 UTC+2, Robert Bond wrote: >> >> >> H

Re: [cas-user] How to evaluate user expiry date/time during database authentication?

> > However, I'm stuck on the following 2 issues: > Which authentication handler would be the best one to extend in this case? AbstractJdbcUsernamePasswordAuthenticationHandler > How do I include the userExpiry column data from my database in my custom > authentication handler? > Take a

[cas-user] Apereo CAS Deployer Survey: 2019 Edition

CAS Community, The CAS project management committee has prepared a survey to request feedback from CAS deployers: http://bit.ly/2XJAJRh The intention is to help clarify specific areas in the CAS ecosystem that need attention, understand user demographics and common use

[cas-user] Re: Apereo CAS Deployer Survey: 2019 Edition

Biweekly reminder; If you have not participated in the survey, please consider doing so in the next couple of weeks. CAS Community, > > The CAS project management committee has prepared a survey to request > feedback from CAS deployers: > > http://bit.ly/2XJAJRh > > The intention is to help

Re: [cas-user] Return uid in attribute list?

> So I can see why it's mapping to the principal id and would not release by > default, but I can't discern from the documentation how to change the default > behavior to release it as part of the attribute list. > > Any ideas? Have you looked at “principalIdAttribute”?

[cas-user] Re: Apereo CAS Deployer Survey: 2019 Edition

Another gentle biweekly reminder; If you have not participated in the survey, please consider doing so in the next couple of weeks. On Monday, July 15, 2019 at 12:06:19 PM UTC+4:30, Misagh Moayyed wrote: > > CAS Community, > > The CAS project management committee has prepared a surve

Re: [cas-user] Return uid in attribute list?

Apologies for the rather quick response; I realize you have certainly looked at that flag and relevant page in the docs. I think you're only missing that construct in your release policy. My example should help, I hope. On Thursday, August 15, 2019 at 10:32:28 AM UTC+4:30, Misagh Moayyed wrote

Re: [cas-user] CAS 6.1-RC4 OIDC configuration

Have you defined an issuer? https://apereo.github.io/cas/development/configuration/Configuration-Properties.html#openid-connect > On Aug 27, 2019, at 2:23 AM, 'Mallory, Erik' via CAS Community

Re: [cas-user] CAS 6.1-RC4 OIDC configuration

.authn.oidc.dynamicClientRegistrationMode=PROTECTED > > cas.authn.oidc.subjectTypes=public,pairwise > > Erik Mallory > Server Analyst > Wichita State University > 316.978.3502 > > > From: mailto:cas-user@apereo.org>> on behalf of Misagh > Moayyed mailto:misagh.moay...@gma

[cas-user] Re: Apereo CAS Deployer Survey: 2019 Edition

Survey is now closed. Thank you all for participating. Aggregated, anonymized results as well as a brief post-mortem analysis will be posted on the Apereo blog shortly, with a link to follow-up here. On Wednesday, August 28, 2019 at 2:10:35 PM UTC+4:30, Misagh Moayyed wrote: > > Final re

[cas-user] Re: Apereo CAS Deployer Survey: 2019 Edition

:19 AM UTC+3, Misagh Moayyed wrote: > CAS Community, > > > The CAS project management committee has prepared a survey to request > feedback from CAS deployers: > > > http://bit.ly/2XJAJRh > > > The intention is to help clarify specific areas in the CAS

[cas-user] CAS 6.1 RC5 Release Announcement

CAS 6.1 RC5 is released: https://github.com/apereo/cas/releases/tag/v6.1.0-RC5 -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are

[cas-user] Re: Inquiring CAS commercial support

ew years now. > Misagh, who I consider the main CAS developer, works for them. We're happy > with their support. > > -William > > > On Monday, September 9, 2019 at 1:38:05 PM UTC-5, Yan Zhou wrote: >> >> Hi, >> >> We use CAS 4.1.9 and CAS 5.3. It has been

[cas-user] Re: SAML Response Destination

Can you try this with 5.3.12? On Thursday, September 5, 2019 at 6:46:44 PM UTC+4:30, Josh G wrote: > > Apologies for the bump - just wanted to see if anyone else has run into > this before? > > On Wednesday, August 21, 2019 at 11:44:03 AM UTC, Josh G wrote: >> >> Hi all - >> >> We are working on

[cas-user] CAS 6.0.5 Release Announcement

CAS 6.0.5 is released: https://github.com/apereo/cas/releases/tag/v6.0.5 -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG

Re: [cas-user] CAS 6.1 RC 4 configuration issues Hazelcast service registry OIDC and OAuth

Post your settings please. Chances are, you are using: cas.serviceRegistry.stream.hazelcast.cluster.instanceName=blah where it should be: cas.serviceRegistry.stream.hazelcast.config.cluster.instanceName=blah Key being, quite literally, “cas.serviceRegistry.stream.hazelcast.config” as the

Re: [cas-user] Negative "evaluationOrder" for registered services

> On Aug 8, 2019, at 7:35 PM, Yauheni Sidarenka > wrote: > > Hello all, > > I have a question about "evaluationOrder" property of a registered > service:https://apereo.github.io/cas/6.0.x/services/Service-Management.html#registered-services > >

Re: [cas-user] CAS 6.1 RC 4 configuration issues Hazelcast service registry OIDC and OAuth

eRegistry.stream.hazelcast.config.cluster.port=5703 > > > Erik Mallory > Server Analyst > Wichita State University > 316.978.3502 > > > From: mailto:cas-user@apereo.org>> on behalf of Misagh > Moayyed mailto:misagh.moay...@gmail.com>> > Reply-To: &quo

Re: [cas-user] CAS 6.1 RC 4 configuration issues Hazelcast service registry OIDC and OAuth

ver Analyst > Wichita State University > > > From: mailto:cas-user@apereo.org>> on behalf of Misagh > Moayyed mailto:misagh.moay...@gmail.com>> > Reply-To: "cas-user@apereo.org <mailto:cas-user@apereo.org>" > mailto:cas-user@apereo.org>&

[cas-user] Re: About CAS flow diagram

No, they represent application cookie/session. One/First app is a Java application, presumably protected by the Java CAS client, and the second application is one protected by mod-auth-cas. On Thursday, September 19, 2019 at 7:35:56 AM UTC+4:30, Jeff Wang wrote: > > I start to study CAS

[cas-user] Re: About SP metadata generation in CAS

> > > So my question is: > 1) can we generate the SP metadata from CAS itself without using any Idp > metadata? > Yes. Modify it by hand, or create your own. CAS does not "need" the IdP metadata to generate the SP metadata. > 2) do you think we need to change our current pac4j

Re: [cas-user] How to evaluate user expiry date/time during database authentication?

> > > > Is there any way that I can manually expire TGTs for users that are > expired based on the user expiry date/time? It's my understanding that CAS > will automatically send out logout messages to registered services after a > user manually logs out. I can handle these messages in those

[cas-user] CAS 6.1.0 Release Annoucement

CAS 6.1.0 is released: https://github.com/apereo/cas/releases/tag/v6.1.0 -- Misagh -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because

[cas-user] Re: 6.1.0: Cannot find state with id 'casExpiredPassView' in flow 'login'

Consider switching to 6.1.0 to see if you experience the same behavior. On Thursday, October 17, 2019 at 10:57:12 PM UTC+4, Michael Lazar wrote: > > Hello all, > > I just updated my war overlay project from master, and going through my > testing an exception is being thrown with expired

[cas-user] Re: CAS 6.0.5.1 and RADIUS Auth.

> > > > When I look at the build.gradle of the CAS source I seem to see an > directive in there that switches from using standard getopt libraries to > java-getopt but since the overlay just pulls that I’m not sure if that is > doing anything, is a red herring or whatever. > You likely need

[cas-user] Re: private git Service Registry authentication not working

Are you still seeing this with 6.1.0? On Saturday, October 12, 2019 at 12:07:47 AM UTC+4, Robert Bond wrote: > > Getting an error when using a private git repo for cas service registry. > It works correctly if I remove the username and password config options are > use a public repo. > > Here

[cas-user] Re: remove MFA DUO Monitoring from CAS 6.0.5 heath check actuator url

I realize you're on 6.0.5 but, this *might* work for you: https://apereo.github.io/2019/02/07/cas61-healthstatus-springboot/#health-indicators Otherwise, switch to 6.1.0 or port back. On Monday, October 28, 2019 at 8:55:00 PM UTC+4, n99 wrote: > > Hello > > We have enabled MFA using Duo at the

[cas-user] CAS 6.1 RC6 Release Announcement

CAS 6.1 RC6 is released: https://github.com/apereo/cas/releases/tag/v6.1.0-RC6 -- Misagh -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message

[cas-user] Re: Apereo CAS Deployer Survey: 2019 Edition

Survey results are now published: https://apereo.github.io/2019/10/09/cas-survey-results2019/ On Tuesday, September 3, 2019 at 9:10:41 PM UTC+4, Misagh Moayyed wrote: > > Survey is now closed. Thank you all for participating. Aggregated, > anonymized results as well as a brief po

Re: [cas-user] Service Registry - Store in MySQL database

Something along the following lines should work: cas.serviceRegistry.initFromJson=true cas.serviceRegistry.json.location=file:/etc/cas/config/services - Then, make sure your JSON files are in the above noted directory. - Then, make sure your overlay contains a reference to the JPA service

[cas-user] Re: Trying to determine why CAS is returning an encoded attribute to SAML SP

> > > None of this would be a big deal if we hadn't run into a bizarre problem > that the encoded attribute being sent *CHANGED*. > It would be helpful to describe the steps you took to create/duplicate this scenario. > > So my two questions: > 1) Is there any chance that the google apps

[cas-user] Re: CAS 6.1.3 PM password reset link question.

> > Not sure the service needs to be on this link. As I understand it, the > transient service ticket is a one shot directed at the password reset > component, so I am uncertain why the service would be necessary as the link > also works with the ?service portion removed. > > Is this something

[cas-user] Re: [CAS 6.1.3]: OAuth2 Implict Grant - Passed state isn't returned correctly

Just wanted to note the patch/fix is now merged. Thank you David! On Friday, January 24, 2020 at 1:06:47 PM UTC+4, David Albrecht wrote: > > Hi all, > > when using the implict grant and passing a state parameter which contains > special characters the state parameter in the returned redirect

[cas-user] Re: Adding cas.properties file to source control

> > I would like to add my cas.properties file for a standalone deployment to > source control. I'd like to know if there is a way to put certain settings > that would necessarily be different between our dev & prod environments > someplace external to the main properties file so I don't need

[cas-user] Re: SAML Delegation in 6.2.0-RC2

> > I don't know what to look for. I know there's a tag on the > request standard for SAML, but the documentation is not clear about this > subject. > > Can you guys give me some advice or point me in the right direction? > There is no issuer tag in the saml2 response you get back from the

[cas-user] Re: How to unpack the cas war (5.3.x) with Jetty

> > > Does any one know how to make CAS unpack the war file to the temp > directory with embedded Jetty ? > That is not how "embedded" works. An "embedded" container is not a repackaged version of the server distribution stuffed into the CAS web application artifact. You won't find a "real

[cas-user] Re: Jackson Kotlin Warning on Startup

You need not be concerned about this. On Friday, February 14, 2020 at 1:44:36 AM UTC+4, jeremy.wickham wrote: > > I am looking upgrade our CAS environment to 6.1.x and I am currently > ironing out all of my errors/warnings. There is one warning I’m receiving > > > > WARN

<    1   2   3   4   5   6   7   >