Hi all,
I have trouble with user role in CAS Management
If I use user.json file store in directory /etc/cas/config like below, CAS Management worked well.
Here is user.json file
{
"casuser" : {
"@class" : "org.apereo.cas.mgmt.authz.json.UserAuthorizationDefinition",
"roles" : [ "ROLE_ADMIN" ]
}
}
But, how to apply this properties as CAS Overlay properties store in MongoDB?
Or how to indicate CAS-managment or CAS Overlay user's roles always is "ROLE_ADMIN"?
Please help me.
Thank you in advance.
When i change /var/lib/tomcat8/webapps/cas-management/WEB-INF/classes/log4j2.xml file, it works. but cas-management doesn't read log4j config from /etc/cas/config/log4j2-management.xml
what is the problem?
On this server cas read log4j2.xml file and apply the settings.
After cas management load it uses log4j2-management.xml setting. I think the problem occur during WAR deploy.
The docs describe both throttling by IP address, and IP address and username. How do we ensure the latter so the throttling is also per username? The cas.properties documentation includes a
cas.authn.throttle.usernameParameter=username property, but doesn't explain its purpose. I don't see anything else that looks like it may be relevant?
2 replies
- we are using CAS 3.5.0 war file from (https://repo1.maven.org/maven2/org/jasig/cas/cas-server-webapp/3.5.0/).
-deployed CAS war in tomact server and done basic configuration.
-from url (https://localhost:8443/cas) we are able to login succussfully. - But we are trying to use CAS REST API(https:localhost:8443/cas/v1/tickets?username=*&password=*) to get token.
but we are getting request error (to test this we are using Postman).
Please let us know how to get token through REST API?
Hi @sujithuvionics @CalaveraGaming_twitter
Are you also facing this problem after adding a few dependencies?
org.apache.maven.lifecycle.LifecycleExecutionException: Failed to execute goal org.springframework.boot:spring-boot-maven-plugin:1.5.18.RELEASE:run (default-cli) on project cas-overlay: Could not exec java
Hi all,
we are currently working on integration Domino/CAS/SecurEnvoy (2fa) using SAML. We are in situation, where CAS authenticate user with second factor and generate final callback response. Then we got following error.
2020-09-16 14:23:18,170 ERROR [org.jasig.cas.client.util.CommonUtils] - <Error getting response from host: [cas.uniqa.cz] with path: [/cas/p3/serviceValidate] and protocol: [https] Error Message: Connection refused (Connection refused)>
java.net.ConnectException: Connection refused (Connection refused)
at java.net.PlainSocketImpl.socketConnect(Native Method) ~[?:?]
at java.net.AbstractPlainSocketImpl.doConnect(AbstractPlainSocketImpl.java:399) ~[?:?]
at java.net.AbstractPlainSocketImpl.connectToAddress(AbstractPlainSocketImpl.java:242) ~[?:?]
at java.net.AbstractPlainSocketImpl.connect(AbstractPlainSocketImpl.java:224) ~[?:?]
at java.net.SocksSocketImpl.connect(SocksSocketImpl.java:403) ~[?:?]
Ports 8080 and 8443 a opened and we are using self-signed ssl certificate. I can access https://cas.uniqa.cz/cas/p3/serviceValidate from browser on 8443.
Anybody saw similar error. Is ti CAS internal error? We are using CAS 6.0.
Thanks for any suggestion.
Martin
Could my cas-manager problem be related to following:
[2020-09-18 09:28:59] [info] #033[32m2020-09-18 09:28:59,546 INFO [org.apereo.cas.mgmt.factory.FormDataFactory] - <CAS Server returned 404 status code from endpoint https://casserver.herokuapp.com/cas/actuator/discoveryProfile. Using default FormData values.>#033[m
?
How do i fix it? Is management somehow connecting to cas server? How? What ports does it use? What i need to do for cas-management to be able to successfully connect to cas?
Ok one thing might be, that i had not management.properties in /etc... The installation guide in cas-management-overlay seems to be missing following step:
./gradlew[.bat] copyCasConfiguration
BTW, what is the archived cas-management-gradle-overlay project? Is it not working anymore? So for "cas-overlay-template" i should build it with graddle, as specified in the readme, and "cas-management-overlay" should be built with maven?
The documentation is not very good IMHO :(
Hi! I really need help about a problem with CAS 6.2.0 and JDBC: i've to connect through JDBC to a MySQL 5.1.48 to match login data in a database... but each connection attempt returns
cas_1 | 2020-09-18 13:31:29,817 ERROR [org.apereo.cas.authentication.PolicyBasedAuthenticationManager] - <[QueryDatabaseAuthenticationHandler]: [SQL exception while executing query for email-xx-test@gmail.com / Failed to obtain JDBC Connection; nested exception is java.sql.SQLNonTransientConnectionException: CLIENT_PLUGIN_AUTH is required]>
I understand that's a compatibility problem... but I was unable to solve it.
dependencies {
// Other CAS dependencies/modules may be listed here...
implementation "org.apereo.cas:cas-server-support-json-service-registry:${casServerVersion}"
implementation "org.apereo.cas:cas-server-support-jdbc:${project.'cas.version'}"
implementation("mysql:mysql-connector-java") {
version {
strictly '5.1.48'
}
}
}Ok, so i have used cas.serviceRegistry.json.location and it is working!!! Finally i have running cas with cas-management.
Now i have a problem with starting cas-management war overlay. When i restart tomcat, it just freezes when deploying cas-management, however when i restart tomcat without cas-management and then deploy cas-management after start of cas, it loads without any problems....
Is anyone else experiencing this?
Hello, is it possible to use CAS for an app (running IIS with NTLM+Basic auth) that is unaware of CAS in any way? For example using it as proxy in the same way as WAP: https://docs.microsoft.com/en-us/windows-server/remote/media/publishing-applications-using-ad-fs-preauthentication/webapplicationproxy_httpbasicflow.png
?
Or do i have to use the CAS .net client ( https://github.com/apereo/dotnet-cas-client ) and modify the web application to be aware of CAS ?
D:\06_Java\jdk-11.0.8\bin\java.exe -XX:TieredStopAtLevel=1 -noverify -Dspring.output.ansi.enabled=always -Dcom.sun.management.jmxremote -Dspring.jmx.enabled=true -Dspring.liveBeansView.mbeanDomain -Dspring.application.admin.enabled=true -javaagent:D:\06_Java\ideaIU-2020.2.1.win\lib\idea_rt.jar=64946:D:\06_Java\ideaIU-2020.2.1.win\bin -Dfile.encoding=UTF-8 @C:\Users\SunKid\AppData\Local\Temp\idea_arg_file1498904897 org.apereo.cas.CasConfigurationServerWebApplication debug -DskipCheckstyle=true
/ | / \ / | / | __ / () __ / | __
| | / \ _ \ | | / | ' | || |/ ` | _ \ / \ '__\ \ / / \ '|
| |_ / \ ) | | || () | | | | | | (| | ) | / | \ V / / |
_// ___/ _\/|| ||| ||_, | |__/ \|| \/ _||
|/
CAS Version: Not Available
CAS Branch: Not Available
CAS Commit Id: Not Available
CAS Build Date/Time: 2020-09-24T07:19:09.721Z
Spring Boot Version: 2.3.4.RELEASE
Spring Version: 5.2.9.RELEASE
Java Home: D:\06_Java\jdk-11.0.8
Java Vendor: Oracle Corporation
Java Version: 11.0.8
JVM Free Memory: 91 MB
JVM Maximum Memory: 1 GB
JVM Total Memory: 154 MB
JCE Installed: Yes
OS Architecture: amd64
OS Name: Windows 10
OS Version: 10.0
OS Date/Time: 2020-09-24T16:44:04.376714800
OS Temp Directory: C:\Users\SunKid\AppData\Local\Temp\
2020-09-24 16:44:04.405 INFO 15236 --- [ main] a.c.CasConfigurationServerWebApplication : No active profile set, falling back to default profiles: default
2020-09-24 16:44:07.071 INFO 15236 --- [ main] o.s.c.c.s.GenericScope : BeanFactory id=a08fadf7-6c58-30b2-8c55-d1d80046f706
2020-09-24 16:44:07.239 WARN 15236 --- [ main] ConfigServletWebServerApplicationContext : Exception encountered during context initialization - cancelling refresh attempt: org.springframework.context.ApplicationContextException: Unable to start web server; nested exception is org.springframework.context.ApplicationContextException: Unable to start ServletWebServerApplicationContext due to missing ServletWebServerFactory bean.
2020-09-24 16:44:07.255 INFO 15236 --- [ main] ConditionEvaluationReportLoggingListener :
Error starting ApplicationContext. To display the conditions report re-run your application with 'debug' enabled.
2020-09-24 16:44:07.266 ERROR 15236 --- [ main] o.s.b.SpringApplication : Application run failed
org.springframework.context.ApplicationContextException: Unable to start web server; nested exception is org.springframework.context.ApplicationContextException: Unable to start ServletWebServerApplicationContext due to missing ServletWebServerFactory bean.
at org.springframework.boot.web.servlet.context.ServletWebServerApplicationContext.onRefresh(ServletWebServerApplicationContext.java:161) ~[spring-boot-2.3.4.RELEASE.jar:2.3.4.RELEASE]
at org.springframework.context.support.AbstractApplicationContext.refresh(AbstractApplicationContext.java:545) ~[spring-context-5.2.9.RELEASE.jar:5.2.9.RELEASE]
at org.springframework.boot.web.servlet.context.ServletWebServerApplicationContext.refresh(ServletWebServerApplicationContext.java:143) ~[spring-boot-2.3.4.RELEASE.jar:2.3.4.RELEASE]
at org.springframework.boot.SpringApplication.refresh(SpringApplication.java:758) ~[spring-boot-2.3.4.RELEASE.jar:2.3.4.RELEASE]
at org.springframework.boot.SpringApplication.refresh(SpringApplication.java:750) [spring-boot-2.3.4.RELEASE.jar:2.3.4.RELEASE]
at org.springframework.boot.SpringApplication.refreshContext(SpringApplication.java:397) [spring-boot-2.3.4.RELEASE.jar:2.3.4.RELEASE]
at org.springframework.boot.SpringApplication.run(SpringApplication.java:315) [spring-boot-2.3.4.RELEASE.jar:2.3.4.RELEASE]
at org.springframework.boot.builder.SpringApplicationBuilder.run(Sp