[cas-user] Re: 6.0.x Actuator endpoint security for cas config server
Thank you for the answer. On Friday, 26 April 2019 20:40:22 UTC+2, Misagh Moayyed wrote: > > This doesn't exist, beyond what spring security natively allows with Boot > v2 via properties, etc. The project focuses on the CAS server development > with limited attention to peripheral projects as nice-to-haves. If you need > to secure the config server in fancier ways, you may talk to the Spring > Cloud project, ask for the feature and/or contribute or take inspiration > from what the CAS server does and emulate the same behavior in the config > server with code. > > On Wednesday, April 24, 2019 at 6:48:17 AM UTC-7, Juna Grosse Lengerich > wrote: >> >> Thank you Robert. >> But that works because of the configuration adapter class that is >> included in the cas server webapp, but not in the cas config server or cas >> bootadmin server webapp. >> Which is our problem. >> >> On Wednesday, 24 April 2019 15:34:35 UTC+2, Robert Bond wrote: >>> >>> >>> Here is a blog post by Misagh Moayyed about it: >>> https://apereo.github.io/2018/11/06/cas6-admin-endpoints-security/ >>> >>> On Wednesday, April 24, 2019 at 8:29:05 AM UTC-5, Juna Grosse Lengerich >>> wrote: Hi, we're having a problem with the actuator configuration for our cas config server. Since Spring Boot 2 the actuator endpoint security can't be configured by properties anymore. But the cas server properties that allow security configuration seem to be missing for both the config and admin server. The spring configuration adapters are defined in this class: https://github.com/apereo/cas/blob/6.0.x/webapp/cas-server-webapp-config/src/main/java/org/apereo/cas/web/security/CasWebSecurityConfigurerAdapter.java But the cas server webapp config dependency has conflicts with bean definitions, so it can't just be included. Has anyone found a solution to this problem? We need unrestricted access to the health endpoint for a health check Any help would be really appreciated >>> -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/b4a5f094-9f48-44c7-b9a2-869902150a25%40apereo.org.
[cas-user] Re: 6.0.x Actuator endpoint security for cas config server
This doesn't exist, beyond what spring security natively allows with Boot v2 via properties, etc. The project focuses on the CAS server development with limited attention to peripheral projects as nice-to-haves. If you need to secure the config server in fancier ways, you may talk to the Spring Cloud project, ask for the feature and/or contribute or take inspiration from what the CAS server does and emulate the same behavior in the config server with code. On Wednesday, April 24, 2019 at 6:48:17 AM UTC-7, Juna Grosse Lengerich wrote: > > Thank you Robert. > But that works because of the configuration adapter class that is included > in the cas server webapp, but not in the cas config server or cas bootadmin > server webapp. > Which is our problem. > > On Wednesday, 24 April 2019 15:34:35 UTC+2, Robert Bond wrote: >> >> >> Here is a blog post by Misagh Moayyed about it: >> https://apereo.github.io/2018/11/06/cas6-admin-endpoints-security/ >> >> On Wednesday, April 24, 2019 at 8:29:05 AM UTC-5, Juna Grosse Lengerich >> wrote: >>> >>> Hi, >>> >>> we're having a problem with the actuator configuration for our cas >>> config server. >>> Since Spring Boot 2 the actuator endpoint security can't be configured >>> by properties anymore. >>> But the cas server properties that allow security configuration seem to >>> be missing for both the config and admin server. >>> >>> The spring configuration adapters are defined in this class: >>> >>> https://github.com/apereo/cas/blob/6.0.x/webapp/cas-server-webapp-config/src/main/java/org/apereo/cas/web/security/CasWebSecurityConfigurerAdapter.java >>> >>> But the cas server webapp config dependency has conflicts with bean >>> definitions, so it can't just be included. >>> >>> Has anyone found a solution to this problem? We need unrestricted access >>> to the health endpoint for a health check >>> >>> Any help would be really appreciated >>> >> -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/1e54da6e-7241-4ed2-b07c-1f591de83000%40apereo.org.
[cas-user] Re: 6.0.x Actuator endpoint security for cas config server
Here is a blog post by Misagh Moayyed about it: https://apereo.github.io/2018/11/06/cas6-admin-endpoints-security/ On Wednesday, April 24, 2019 at 8:29:05 AM UTC-5, Juna Grosse Lengerich wrote: > > Hi, > > we're having a problem with the actuator configuration for our cas config > server. > Since Spring Boot 2 the actuator endpoint security can't be configured by > properties anymore. > But the cas server properties that allow security configuration seem to be > missing for both the config and admin server. > > The spring configuration adapters are defined in this class: > > https://github.com/apereo/cas/blob/6.0.x/webapp/cas-server-webapp-config/src/main/java/org/apereo/cas/web/security/CasWebSecurityConfigurerAdapter.java > > But the cas server webapp config dependency has conflicts with bean > definitions, so it can't just be included. > > Has anyone found a solution to this problem? We need unrestricted access > to the health endpoint for a health check > > Any help would be really appreciated > -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/07f64e5f-b953-45e7-b651-ec9460f158db%40apereo.org.
