Where communities thrive


  • Join over 1.5M+ people
  • Join over 100K+ communities
  • Free without limits
  • Create your own community
People
Repo info
Activity
  • 05:03

    mmoayyed on master

    update depenencies; more javado… add tests for oauth introspecti… add tests for oauth introspecti… and 2 more (compare)

  • May 25 18:30

    mmoayyed on gh-pages

    Update main.js (compare)

  • May 25 18:11
    codecov[bot] commented #5473
  • May 25 18:10
    mmoayyed synchronize #5473
  • May 25 08:15
    codecov[bot] commented #5473
  • May 25 08:14
    codecov[bot] commented #5473
  • May 25 08:13
    codecov[bot] commented #5473
  • May 25 08:12
    codecov[bot] commented #5473
  • May 25 08:11
    codecov[bot] commented #5473
  • May 25 08:10
    codecov[bot] commented #5473
  • May 25 08:09
    codecov[bot] commented #5473
  • May 25 08:08
    codecov[bot] commented #5473
  • May 25 08:07
    codecov[bot] commented #5473
  • May 25 08:06
    codecov[bot] commented #5473
  • May 25 08:05
    codecov[bot] commented #5473
  • May 25 08:04
    codecov[bot] commented #5473
  • May 25 08:03
    codecov[bot] commented #5473
  • May 25 08:02
    codecov[bot] commented #5473
  • May 25 08:01
    codecov[bot] commented #5473
  • May 25 08:00
    codecov[bot] commented #5473
Upik Saleh
@upiksaleh

Error build CAS 6.3.6

2021-08-09 20:27:24,588 INFO [org.apereo.cas.configuration.DefaultCasConfigurationPropertiesSourceLocator] - <Configuration files found at [/etc/cas/config] are [[file [/etc/cas/config/cas.properties]]] under profile(s) [[standalone]]>
2021-08-09 20:27:25,070 INFO [org.apereo.cas.web.CasWebApplication] - <The following profiles are active: standalone>
2021-08-09 20:27:26,953 WARN [org.apereo.cas.web.CasWebApplicationContext] - <Exception encountered during context initialization - cancelling refresh attempt: org.springframework.beans.factory.BeanDefinitionStoreException: Failed to process import candidates for configuration class [org.apereo.cas.web.CasWebApplication]; nested exception is java.lang.IllegalStateException: Error processing condition on org.springframework.boot.actuate.autoconfigure.quartz.QuartzEndpointAutoConfiguration>

pls solution?

washidepl
@washidepl
Hello, Cas 6.3.2 .I Would like Cas to be IDP via SAML for WordPress but :

=============================================================
WHO: audit:unknown
WHAT: For input string: "auto"
ACTION: SAML2_RESPONSE_CREATED
APPLICATION: CAS
WHEN: Thu Aug 12 14:05:51 GMT 2021
CLIENT IP ADDRESS: windows_browser_client

SERVER IP ADDRESS: 172.17.0.3 <-docker idp container

>
2021-08-12 14:05:51,401 DEBUG [org.apereo.cas.web.FlowExecutionExceptionResolver] - <Ignoring the received exception [java.lang.NumberFormatException: For input string: "auto"] due to a type mismatch with handler [org.apereo.cas.support.saml.web.idp.profile.sso.SSOSamlIdPProfileCallbackHandlerController#handleCallbackProfileRequest(HttpServletResponse, HttpServletRequest)]>
2021-08-12 14:05:51,401 DEBUG [org.apereo.cas.web.FlowExecutionExceptionResolver] - <Ignoring the received exception [java.lang.NumberFormatException: For input string: "auto"] due to a type mismatch with handler [org.apereo.cas.support.saml.web.idp.profile.sso.SSOSamlIdPProfileCallbackHandlerController#handleCallbackProfileRequest(HttpServletResponse, HttpServletRequest)]>
2021-08-12 14:05:51,404 ERROR [org.apache.catalina.core.ContainerBase.[Tomcat].[localhost].[/casphp].[dispatcherServlet]] - <Servlet.service() for servlet [dispatcherServlet] in context with path [/casphp] threw exception [Request processing failed; nested exception is java.lang.NumberFormatException: For input string: "auto"] with root cause>
java.lang.NumberFormatException: For input string: "auto"
at java.lang.NumberFormatException.forInputString(Unknown Source) ~[?:?]
at java.lang.Integer.parseInt(Unknown Source) ~[?:?]
at java.lang.Integer.valueOf(Unknown Source) ~[?:?]
at org.opensaml.saml.ext.saml2mdui.impl.LogoUnmarshaller.processAttribute(LogoUnmarshaller.java:36) ~[opensaml-saml-impl-4.0.1.jar!/:?]
at org.opensaml.core.xml.io.AbstractXMLObjectUnmarshaller.unmarshallAttribute(AbstractXMLObjectUnmarshaller.java:224) ~[opensaml-core-4.0.1.jar!/:?]
at org.opensaml.core.xml.io.AbstractXMLObjectUnmarshaller.unmarshall(AbstractXMLObjectUnmarshaller.java:116) ~[opensaml-core-4.0.1.jar!/:?]
at org.opensaml.core.xml.io.AbstractXMLObjectUnmarshaller.unmarshallChildElement(AbstractXMLObjectUnmarshaller.java:337) ~[opensaml-core-4.0.1.jar!/:?]
at org.opensaml.core.xml.io.AbstractXMLObjectUnmarshaller.unmarshall(AbstractXMLObjectUnmarshaller.java:128) ~[opensaml-core-4.0.1.jar!/:?]
at org.opensaml.core.xml.io.AbstractXMLObjectUnmarshaller.unmarshallChildElement(AbstractXMLObjectUnmarshaller.java:337) ~[opensaml-core-4.0.1.jar!/:?]
at org.opensaml.core.xml.io.AbstractXMLObjectUnmarshaller.unmarshall(AbstractXMLObjectUnmarshaller.java:128) ~[opensaml-core-4.0.1.jar!/:?]
at org.opensaml.core.xml.io.AbstractXMLObjectUnmarshaller.unmarshallChildElement(AbstractXMLObjectUnmarshaller.java:337) ~[opensaml-core-4.0.1.jar!/:?]
at org.opensaml.core.xml.io.AbstractXMLObjectUnmarshaller.unmarshall(AbstractXMLObjectUnmarshaller.java:128) ~[opensaml-core-4.0.1.jar!/:?]
at org.opensaml.core.xml.io.AbstractXMLObjectUnmarshaller.unmarshallChildElement(AbstractXMLObjectUnmarshaller.java:337) ~[opensaml-core-4.0.1.jar!/:?]
at org.opensaml.core.xml.io.AbstractXMLObjectUnmarshaller.unmarshall(AbstractXMLObjectUnmarshaller.java:128) ~[opensaml-core-4.0.1.jar!/:?]
at org.opensaml.saml.metadata.resolver.impl.DOMMetadataResolver.initMetadataResolver(DOMMetadataResolver.java:68) ~[opensaml-saml-impl-4.0.1.jar!/:?]
at org.apereo.cas.support.saml.idp.metadata.locator.SamlIdPMetadataResolver.initMetadataResolver(SamlIdPMetadataResolver.java:64) ~[cas-server-support-saml-idp-core-6.3.2.jar!/:6.3.2]
at org.opensaml.saml.metadata.resolver.impl.AbstractMetadataResolver.doInitialize(AbstractMetadataResolver.java:289) ~[opensaml-saml-impl-4.0.1.jar!/:?]
at net.shibboleth.utilities.java.support.component.AbstractInitializableComponent.initialize(AbstractInitializableComponent.java:65) ~[java-support-8.1.0.jar!/:?]
at org.ape

i don know i have string auto , why it have trow "due to a type mismatch with handler" which handler ?
mijutu
@mijutu:ellipsis.fi
[m]

I'm trying to configure CAS to warn about soon expiring ldap password. I already managed to get

accountState=[org.ldaptive.auth.ext.PasswordPolicyAccountState@1977058880::accountWarnings=[[org.ldaptive.auth.AccountState$De
faultWarning@1311510613::expiration=2021-08-18T11:53:02.663310Z[Etc/UTC], loginsRemaining=-1]], accountErrors=null]

to log, but how do I configure cas to warn the user when that happens?

I could set "cas.authn.ldap[0].passwordPolicy.warning-attribute-name", but I'm not getting any kind of warning attribute to the user by default.
Can I make that warning to be an attribute? How?
mijutu
@mijutu:ellipsis.fi
[m]
More specifically: Normal attributes are listed as org.ldaptive.LdapAttributes in log and I can easily use them by adding their names to cas.authn.ldap[0].principalAttributeList. But password policy is not shown as org.ldaptive.LdapAttribute.
elankaruppasamy
@elankaruppasamy
Hi i'm using cas 5.3.3.. trying to encrypt passwords in properties file
encrypted passwords using Jaspty
now server failed to start with error unable to decrypt password
Caused by: java.lang.IllegalStateException: Cannot decrypt: key=cas.authn.jdbc.query[0].password
at org.springframework.cloud.bootstrap.encrypt.EnvironmentDecryptApplicationInitializer.decrypt(EnvironmentDecryptApplicationInitializer.java:201)
at org.springframework.cloud.bootstrap.encrypt.EnvironmentDecryptApplicationInitializer.decrypt(EnvironmentDecryptApplicationInitializer.java:165)
at org.springframework.cloud.bootstrap.encrypt.EnvironmentDecryptApplicationInitializer.initialize(EnvironmentDecryptApplicationInitializer.java:95)
at org.springframework.cloud.bootstrap.BootstrapApplicationListener$DelegatingEnvironmentDecryptApplicationInitializer.initialize(BootstrapApplicationListener.java:394)
at org.springframework.boot.SpringApplication.applyInitializers(SpringApplication.java:567)
at org.springframework.boot.SpringApplication.prepareContext(SpringApplication.java:338)
at org.springframework.boot.SpringApplication.run(SpringApplication.java:301)
at org.springframework.boot.web.support.SpringBootServletInitializer.run(SpringBootServletInitializer.java:154)
at org.springframework.boot.web.support.SpringBootServletInitializer.createRootApplicationContext(SpringBootServletInitializer.java:134)
at org.springframework.boot.web.support.SpringBootServletInitializer.onStartup(SpringBootServletInitializer.java:87)
at org.springframework.web.SpringServletContainerInitializer.onStartup(SpringServletContainerInitializer.java:169)
at org.apache.catalina.core.StandardContext.startInternal(StandardContext.java:5196)
at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:150)
... 10 more
Caused by: java.lang.UnsupportedOperationException: No decryption for FailsafeTextEncryptor. Did you configure the keystore correctly?
at org.springframework.cloud.bootstrap.encrypt.EncryptionBootstrapConfiguration$FailsafeTextEncryptor.decrypt(EncryptionBootstrapConfiguration.java:159)
at org.springframework.cloud.bootstrap.encrypt.EnvironmentDecryptApplicationInitializer.decrypt(EnvironmentDecryptApplicationInitializer.java:193)
... 22 more
springnirps
@springnirps
Hello, current have Shibboleth running with a CAS plugin. Looking at configuring CAS 6.x to use Shibboleth out of the box. Any guide available on migrating SP metadata, keys, and idp metadata from standalone Shibboleth to CAS's out of the box Shib?
springnirps
@springnirps
okay, figured out the SP metadata, now need to find out where the keys and idp metadata get migrated to
springnirps
@springnirps
I think I figured it out. On startup keyts, certs, idp-metdata get created in /etc/cas/saml defined by cas.authn.saml-idp.metadata.location property. I can then overwrite those from my standalone shib instance
jeanfpoulin
@jeanfpoulin
Hi. I'm looking for some assistance with the groovy scripts. I want to modify my unauthorizedRedirectURL based on user attributes but the user attributes are not available inside that function "getUnauthorizedRedirectUrl". Wondering how I can retrieve this data from groovy. Thanks.
elankaruppasamy
@elankaruppasamy
Hi i'm able to resolve the issue that i reported earlier. Until last week i have properties in classpath and cas.standalone.configurationDirectory=classpath:/, after moving properties to external location jasypt encryption works fine in standalone mode.
now i stuck with another issue, i have MFA enabled in cas using DUO it was working fine earlier. recently i deleted all my .m2 directory, now build failing with due to unable to download DUO dependencies
[INFO] Scanning for projects...
[INFO]
[INFO] ------------------------------------------------------------------------
[INFO] Building cas-overlay 1.0
[INFO] ------------------------------------------------------------------------
Downloading: https://dl.bintray.com/uniconiam/maven/com/nimbusds/lang-tag/maven-metadata.xml
Downloading: https://repo.spring.io/plugins-release/com/nimbusds/lang-tag/maven-metadata.xml
Downloading: https://dl.bintray.com/uniconiam/maven/com/nimbusds/lang-tag/maven-metadata.xml
Downloading: https://dl.bintray.com/uniconiam/maven/com/nimbusds/lang-tag/maven-metadata.xml
[WARNING] Could not transfer metadata com.nimbusds:lang-tag/maven-metadata.xml from/to duo-unicon (https://dl.bintray.com/uniconiam/maven): Access denied to: https://dl.bintray.com/uniconiam/maven/com/nimbusds/lang-tag/maven-metadata.xml , ReasonPhrase:Forbidden.
[WARNING] Could not transfer metadata com.nimbusds:lang-tag/maven-metadata.xml from/to duo (https://dl.bintray.com/uniconiam/maven): Access denied to: https://dl.bintray.com/uniconiam/maven/com/nimbusds/lang-tag/maven-metadata.xml , ReasonPhrase:Forbidden.
[WARNING] Could not transfer metadata com.nimbusds:lang-tag/maven-metadata.xml from/to spring-plugins (https://repo.spring.io/plugins-release/): Not authorized , ReasonPhrase:.
[WARNING] Could not transfer metadata com.nimbusds:lang-tag/maven-metadata.xml from/to uniconiam (https://dl.bintray.com/uniconiam/maven): Access denied to: https://dl.bintray.com/uniconiam/maven/com/nimbusds/lang-tag/maven-metadata.xml , ReasonPhrase:Forbidden.
Downloading: https://dl.bintray.com/uniconiam/maven/net/unicon/iam/duo-client/0.2.2/duo-client-0.2.2.pom
Downloading: https://dl.bintray.com/uniconiam/maven/net/unicon/iam/duo-client/0.2.2/duo-client-0.2.2.pom
Downloading: https://repo.spring.io/plugins-release/net/unicon/iam/duo-client/0.2.2/duo-client-0.2.2.pom
Downloading: https://dl.bintray.com/uniconiam/maven/net/unicon/iam/duo-client/0.2.2/duo-client-0.2.2.pom
Downloading: https://dl.bintray.com/uniconiam/maven/com/duosecurity/duo-client/0.2.1/duo-client-0.2.1.pom
Downloading: https://dl.bintray.com/uniconiam/maven/com/duosecurity/duo-client/0.2.1/duo-client-0.2.1.pom
[INFO] ------------------------------------------------------------------------
[INFO] BUILD FAILURE
[INFO] ------------------------------------------------------------------------
[INFO] Total time: 6.791 s
[INFO] Finished at: 2021-08-24T12:46:28-04:00
[INFO] Final Memory: 42M/425M
[INFO] ------------------------------------------------------------------------
[ERROR] Failed to execute goal on project cas-overlay: Could not resolve dependencies for project org.apereo.cas:cas-overlay:war:1.0: Failed to collect dependencies at org.apereo.cas:cas-server-support-duo:jar:5.3.3 -> org.apereo.cas:cas-server-support-duo-core:jar:5.3.3 -> net.unicon.iam:duo-client:jar:0.2.2: Failed to read artifact descriptor for net.unicon.iam:duo-client:jar:0.2.2: Could not transfer artifact net.unicon.iam:duo-client:pom:0.2.2 from/to duo-unicon (https://dl.bintray.com/uniconiam/maven): Access denied to: https://dl.bintray.com/uniconiam/maven/net/unicon/iam/duo-client/0.2.2/duo-client-0.2.2.pom , ReasonPhrase:Forbidden. -> [Help 1]
[ERROR]
[ERROR] To see the full stack trace of the errors, re-run Maven with the -e switch.
[ERROR] Re-run Maven using the -X switch to enable full debug logging.
[ERROR]
[ERROR] For more information about the errors and possible solutions, please read the following articles:
[ERROR] [Help 1] http://cwiki.apache.org/confluence/display/MAVEN/DependencyResolutionException
ximito
@ximito
Hello, i start to work with cas 6.3.3. Aside from authentication methods as login/pass or identity providers, i need to add new authentication method from initial page. Anybody can guide/help me ? Thanks
juandn
@juandn
hi, anyone know how to configure groovy script in ldap search like cas.authn.attribute-repository.ldap[0].searchFilter=file:/etc/cas/config/x509_groovy_filter.groovy
eike
@eike:matrix.elwms.org
[m]
hello there, i don't get it and im completly new to CAS, is there no easy walkthrough to install test and understand CAS?
i scrolled now for 3 hours to understand the basics, but i don't get it, and it seems i need this project to use another usefull project named unitime, for production use... i know SAML/OAuth and LDAP a bit... but CAS seems to be a bit horrible, because there is no concrete how to path for it in the web?! Anyone can help by this?
and please dont mind the official documentation, as i explained i read it know for 3 hours and dont get anything to work, when possible i want to work with docker
mijutu
@mijutu:ellipsis.fi
[m]
I have been using cas for a while and tried shibboleth for the first time. It felt like saml+shibboleth was horrible and cas was nice and easy :-)
I suggest you create cas.war with the overlay method and add the thing that verifies users's passwords, for example add
implementation "org.apereo.cas:cas-server-support-ldap:${project.'cas.version'}"
to dependencies section of build.gradle
And also
implementation "org.apereo.cas:cas-server-support-json-service-registry:${casServerVersion}"
that makes setting up services easy.
Hmm, I'm not sure which is the correct way to set the version.
mijutu
@mijutu:ellipsis.fi
[m]
Then ./gradlew build and run build/libs/cas.war in jetty or tomcat.
Then you can add configuration in /etc/cas/config/cas.properties to connect to ldap. After that you should be able to log in to cas. Then add service registry jsons to /etc/cas/services/ to allow web apps to use cas for logging in users.
eike
@eike:matrix.elwms.org
[m]
yeah thanks as i played now with MS Ubuntu wsl, installed all tools, like sdk, gradle (Ubuntu have Not the right Version, all of this is completly undocumented on github), right jdk Version and so on. i know build the war sucessful myself and deploy it within an own scripted dockercontainer with tomcat. hopefully the documentation for configuration is better, because i will use a office365 saml with cas
thank your for now mijutu, i was a Little Bit outrage to come Hefe, Not fair, but the Plattform has to work After werkend for test/demo
mijutu
@mijutu:ellipsis.fi
[m]
So are you using cas as saml client that connects to office365?
eike
@eike:matrix.elwms.org
[m]
ich hasse autokorrektur am Handy ^^
mijutu
@mijutu:ellipsis.fi
[m]
saml sp, I meant
eike
@eike:matrix.elwms.org
[m]
ähm No, i thought the other way round, UniTime <- CAS <- office365 Logins... we have manly a azure/ad infrastructure for the Moment here
sorry for my german, but now i can write a little bit better, i was on my smartphone for a moment.. now i'm back on my pc
^^
eike
@eike:matrix.elwms.org
[m]
thank you very much for your support mijutu i will promise to check your tips out
eike
@eike:matrix.elwms.org
[m]
hm, i complle now everything and no errors occured, but there are no *.war archiv in the bunch of jars, how do i get one?
why is there are in the documentation a reference to an war-overlay-mode but in the milestones it is not completed or no reference, but you told me that it is possible? how?
mijutu
@mijutu:ellipsis.fi
[m]
I took a git clone of the reference overlay project and ran ./gradlew build there
eike
@eike:matrix.elwms.org
[m]
so where is it?
yeah, i do the same.. https://github.com/apereo/cas but the template dir is empty (unless the readme.md) https://github.com/apereo/cas-overlay-template
ah sorry... i see, i have to choose the branche
eike
@eike:matrix.elwms.org
[m]
okay, next try, damn it, but the documentation and links can absolutly be better... i compiled a bunch of open source project in my life time, but this is realy not a good documentation
eike
@eike:matrix.elwms.org
[m]

hey people... thats not true... is anything working on this project or is everything fake?? realy, thats not nice:
Starting a Gradle Daemon, 3 incompatible and 1 stopped Daemons could not be reused, use --status for details

Task :bootWar FAILED

FAILURE: Build failed with an exception.

  • What went wrong:
    Execution failed for task ':bootWar'.

    Error while evaluating property 'mainClass' of task ':bootWar'
    Failed to calculate the value of task ':bootWar' property 'mainClass'.
    Main class name has not been configured and it could not be resolved

  • Try:
    Run with --stacktrace option to get the stack trace. Run with --info or --debug option to get more log output. Run with --scan to get full insights.

  • Get more help at https://help.gradle.org

Deprecated Gradle features were used in this build, making it incompatible with Gradle 8.0.

You can use '--warning-mode all' to show the individual deprecation warnings and determine if they come from your own scripts or plugins.

See https://docs.gradle.org/7.2/userguide/command_line_interface.html#sec:command_line_warnings

BUILD FAILED in 2m 23s
9 actionable tasks: 9 executed

can anyone, please give a simple (as many many other projects do) a sequence of commands to compile this project for a demo?
configuration is the second step, first to run it and check if everything work as needed