Setup Apereo Cas Management integrated with CAS server
I want to install Apero Cas Management (verison 6.0) and integrate it with Cas Server (version 6.0).
I have installed following these step:
Step 1: I installed Cas Server
I checked it with REST API. It worked.
My server stays at http://203.162.141.7:8080
And this is configuration of my Cas server. I put this config at /etc/cas/config. Here is my file cas.properties file
cas.server.name=http://203.162.141.7:8080
cas.server.prefix=${cas.server.name}/cas
logging.config: file:/etc/cas/config/log4j2.xml
server.port=8080
server.ssl.enabled=false
cas.serviceRegistry.initFromJson=false
cas.serviceRegistry.json.location=file:/etc/cas/services-repo
cas.authn.oauth.grants.resourceOwner.requireServiceHeader=true
cas.authn.oauth.userProfileViewType=NESTED
cas.authn.policy.requiredHandlerAuthenticationPolicyEnabled=false
cas.authn.attributeRepository.stub.attributes.email=casuser@example.org
#REST API JSON
cas.rest.attributeName=email
cas.rest.attributeValue=.+example.*
Step 2: I installed Cas-management-overlay
I put my cas-management-overlay's config file a /etc/cas/config too. Here is my management.properties file
cas.server.name=http://203.162.141.7:8080
cas.server.prefix=${cas.server.name}/cas
mgmt.serverName=http://203.162.141.7:8088
mgmt.adminRoles[0]=ROLE_ADMIN
mgmt.userPropertiesFile=file:/etc/cas/config/users.json
server.port=8088
server.ssl.enabled=false
logging.config=file:/etc/cas/config/log4j2-management.xml
And my here is users.json file
{
"casuser" : {
"@class" : "org.apereo.cas.mgmt.authz.json.UserAuthorizationDefinition",
"roles" : [ "ROLE_ADMIN" ]
}
}
Then I run ./build.sh, and it shows me that
Finally, I access this link to open cas-management http://203.162.141.7:8088/cas-management, but the it redirects to this url http://203.162.141.7:8080/cas/login?service=http%3A%2F%2F203.162.141.7%3A8088%2Fcas-management%2F and shows this error below
I don't know where I have gone wrong.
I think since you haven't told the management webapp about the location of the service registry, it can't add itself as a registered service.
Manually add a registered service for http://203.162.141.7:8088/cas-management and you should be able to log in to the management app at that point.
- Simple way to put AWS Lambda app behind SAML authentication
- Why wouldn't the IdP initiate contact with the SP in a SAML 2.0 SSO integration?
- Log out from SSO kerberos
- Getting TypeError: client_secret_basic client authentication method requires a client_secret
- SSO not working in iOS when using AWS Cognito and Azure AD
- Logout from next-auth with keycloak provider not works
- Azure b2c still authenticated after hitting logout
- What's the relationship between Keycloak SSO Session Idle Time and Spring Session Timeout?
- Execute a RESTAPI request from Powershell using the credentials of the user logged into the windows machine(AD Credential's)
- Python SSO: pysaml2 and python3-saml
- Keycloak adapter not able retrieve current username from windows AD logged-in user
- keycloak - realm resolution based on username (email address)
- Rolify and acts_as_tenant with Single Signon (with some Devise & Pundit on the side) - can it be done?
- which Oauth flow is good for Token authentication with javascript SPA
- Can I have secrets that don't expire in Microsoft SSO via Azure Microsoft Entra ID?
- Java 17 Allow RC4 HMAC while keeping allow_weak_crypto as false in krb5.conf
- Zabbix SAML Config using ActiveDirectory WIN 2016-ADFS
- Do Personal Accounts Have a UPN
- Buildfire: login api
- Moodle intergration with ADFS--Plugin SAML2 Single sign on
- Share authentication cookie between IdentityServer4 clients
- Kerberos SSO Issue with AD change of upns in Spring Boot Application
- Integrate SAML in Laravel using existing Idp and SP
- How can i enable Token_IDs in the new Azure/Microsoft Entra interface
- Okta SSO (Allowing other users from another organization to use SSO with the OpenID application i created on my Okta developer dashboard)
- Keycloak: Unique SAML endpoint per SAML Client in the same Realm
- Implement single signon (SSO) using SAML in java and AzureAD as IDP
- AADSTS9002325: Proof Key for Code Exchange is required for cross-origin authorization code redemption
- Why is a client secret required when setting up an Azure AD / Identity SSO in Asp.net (legacy .Net Framework), but it is not required in asp.net core?
- How to auto redirect to Auth0 IDP from Azure AD B2C custom polcieis based on certain condition