jasig-cas IRC Logs-2011-09-28
[07:37:49 CDT(-0500)] <foxnesn1> heyo <foxnesn1> In the pom.xml file for your CAS webapp (the default is $ /cas-server-webapp/pom.xml) add the following dependency: <foxnesn1> <groupId>$ </groupId> <foxnesn1> <version>$ </version>
[07:38:02 CDT(-0500)] <wgthom> morn
[07:55:07 CDT(-0500)] <ries> moin moin
[08:08:49 CDT(-0500)] <foxnesn1> bah somebody changed something yesterday
[08:09:00 CDT(-0500)] <foxnesn1> now my /cas/login page gives me a status 404
[08:09:05 CDT(-0500)] <foxnesn1> tomcat is running
[08:22:44 CDT(-0500)] <foxnesn1> hrm, can anyone explain why mvn clean package builds successfuly, i copy the war file over start tomcat and i get /cas/login resource not available in the login page?
[08:23:43 CDT(-0500)] <wgthom> can you get to tomcat default ROOT context? what shows up in in cas.log catalina.out?
[08:25:06 CDT(-0500)] <foxnesn1> omg typo in the deployer
[08:25:07 CDT(-0500)] <foxnesn1> lol
[08:28:07 CDT(-0500)] <foxnesn1> typical 9 am mistake ha
[08:54:56 CDT(-0500)] <ries> foxnesn1: I always look in my log files, in fact I have Console always showing my glassfish log so I can see if something get's wrong
[08:55:05 CDT(-0500)] <foxnesn1> ahh
[08:55:12 CDT(-0500)] <foxnesn1> i need a second monitor
[09:03:01 CDT(-0500)] <ries> foxnesn1: or a bigger ;9
[09:39:04 CDT(-0500)] <foxnesn1> do i have to work out of cas-server-webapp/src/main/webapp/WEB-INF or can i work out of $PROJECT_HOME/src/main/webapp/WEB-INF ?
[09:39:20 CDT(-0500)] <wgthom> you must work out of src/
[09:39:40 CDT(-0500)] <wgthom> cas-server-webapp will be over writen when you bump your cas version inthe pom
[09:39:52 CDT(-0500)] <wgthom> this is the upstream distrubution.
[09:40:10 CDT(-0500)] <foxnesn1> so i work out of the $PROJECT_HOME src and when i build the package it actually writes over the cas-server-webapp src
[09:40:17 CDT(-0500)] <foxnesn1> ?
[09:40:21 CDT(-0500)] <wgthom> yes
[09:40:25 CDT(-0500)] <foxnesn1> ok cool
[09:40:34 CDT(-0500)] <wgthom> "overlays" in maven
[09:40:38 CDT(-0500)] <wgthom> speak
[09:40:43 CDT(-0500)] <foxnesn1> i see now
[09:41:51 CDT(-0500)] <foxnesn1> Localization
[09:41:51 CDT(-0500)] <foxnesn1> Tutorials and HOWTOs
[09:41:51 CDT(-0500)] <foxnesn1> CAS on Windows Quick Setup Guide
[09:41:51 CDT(-0500)] <foxnesn1> Clustering CAS
[09:41:53 CDT(-0500)] <foxnesn1> Demo
[09:41:56 CDT(-0500)] <foxnesn1> HOWTO Configure JBoss for HTTPS
[09:41:58 CDT(-0500)] <foxnesn1> HOWTO Configure Single Sign On Session Timeout
[09:42:01 CDT(-0500)] <foxnesn1> HOWTO Setup Dual Authentication in CAS - SSL Client Auth and LDAP
[09:42:03 CDT(-0500)] <foxnesn1> HOWTO Setup LDAP GSSAPI+Kerberos Authentication in CAS
[09:42:06 CDT(-0500)] <foxnesn1> HOWTO Switch to Sun JVM in RHEL
[09:42:08 CDT(-0500)] <foxnesn1> End-to-end Windows Example
[09:42:11 CDT(-0500)] <foxnesn1> HOWTO Use Jasypt to encrypt passwords in configuration files
[09:42:13 CDT(-0500)] <foxnesn1> HOWTO utilize javax.servlet.http.HttpServletRequest isUserInRole( java.lang.String role )
[09:42:16 CDT(-0500)] <foxnesn1> Migrating an existing CAS server installation
[09:42:19 CDT(-0500)] <foxnesn1> Best Practice - Setting Up CAS Locally using the Maven2 WAR Overlay Method
[09:42:22 CDT(-0500)] <foxnesn1> Deploying CAS 3.0.x in RHEL 5 with Sun Java
[09:42:24 CDT(-0500)] <foxnesn1> HOWTO Configure CAS for LDAP DIGEST-MD5
[09:42:27 CDT(-0500)] <foxnesn1> HOWTO Run Canoo Web Tests
[09:42:29 CDT(-0500)] <foxnesn1> Shibboleth-CAS Integration
[09:42:32 CDT(-0500)] <foxnesn1> Troubleshooting
[09:42:34 CDT(-0500)] <foxnesn1> Logging
[09:42:37 CDT(-0500)] <foxnesn1> SSL Troubleshooting and Reference Guide
[09:42:39 CDT(-0500)] <foxnesn1> Services Management
[09:42:42 CDT(-0500)] <foxnesn1> Adding a New Service
[09:42:44 CDT(-0500)] <foxnesn1> Attributes
[09:42:47 CDT(-0500)] <foxnesn1> Configuring
[09:42:49 CDT(-0500)] <foxnesn1> Deleting
[09:42:52 CDT(-0500)] <foxnesn1> Editing
[09:42:54 CDT(-0500)] <foxnesn1> Extensions
[09:42:57 CDT(-0500)] <foxnesn1> ClearPass
[09:42:59 CDT(-0500)] <foxnesn1> LDAP Authentication Handler
[09:43:02 CDT(-0500)] <foxnesn1> Including the Handler
[09:43:04 CDT(-0500)]
[09:43:07 CDT(-0500)] <foxnesn1> <dependency>
[09:43:10 CDT(-0500)]
[09:43:12 CDT(-0500)] <foxnesn1> <artifactId>cas-server-support-ldap</artifactId>
[09:43:15 CDT(-0500)]
[09:43:17 CDT(-0500)] <foxnesn1> </dependency>
[09:43:20 CDT(-0500)] <foxnesn1> Version 3.3.5, due to a mistake in its build, included this by default. Prior and future versions do not include it by default.
[09:43:23 CDT(-0500)] <foxnesn1> Core Classes
[09:43:25 CDT(-0500)] <foxnesn1> You need to decide how you would like CAS to authenticate the credentials. Should it merely attempt to authenticate to (bind to) the LDAP server using the credentials directly as the user? Or should it first look up the user in some subtree and then attempt to bind as that user? It is more efficient and more secure to use fastbind, but that is not always possible. This is explained in detail later in this document.
[09:43:31 CDT(-0500)] <foxnesn1> Both methods require you to configure an LDAP context bean: this is the configuration to access your directory. It is recommended to configure a new bean in the top list and reference that from the configuration of the AuthenticationHandler, as explained in the instructions on this page.
[09:43:36 CDT(-0500)] <foxnesn1> FastBindLdapAuthenticationHandler
[09:43:39 CDT(-0500)] <foxnesn1> Use this handler when a user DN may be directly composed from the username, e.g. uid=%u,ou=people,dc=vt,edu, where %u is the username provided on the CAS login form.
[09:43:42 CDT(-0500)] <foxnesn1> The FastBindLdapAuthenticationHandler supports the following properties:
[09:43:44 CDT(-0500)] <foxnesn1> filter - The filter property is the LDAP filter that will be used for the search. When constructing the filter, wherever you want the username to appear, place a "%u".
[09:43:47 CDT(-0500)] <foxnesn1> ignorePartialResultException - This property informs Spring LDAP to ignore PartialResultExceptions that may get thrown when connecting to an Active Directory.
[09:43:50 CDT(-0500)] <foxnesn1> contextSource - This is a reference to a LdapContextSource (see below) which will contain the settings for connecting to the LDAP server.
[09:43:53 CDT(-0500)] <foxnesn1> BindLdapAuthenticationHandler
[09:43:56 CDT(-0500)] <foxnesn1> This component performs a typical two-phase LDAP authentication process:
[09:43:58 CDT(-0500)] <foxnesn1> Search for the user DN based on an arbitrary search filter.
[09:44:01 CDT(-0500)] <foxnesn1> Construct the DN and bind with it using the password from the CAS login form.
[09:44:04 CDT(-0500)] <foxnesn1> Use this handler when the DN cannot be directly composed from the username, for example when the directory uid is an opaque identifier that is distinct from a memorable username or the common sense of username is based on an alternative attribute such as mail (email address). Since two LDAP operations are performed for every authentication, this method is inherently less efficient than FastBindLdapAuthenticationHandler and sho
[09:44:10 CDT(-0500)] <foxnesn1> The BindLdapAuthenticationHandler supports the following properties:
[09:44:12 CDT(-0500)] <foxnesn1> filter - The filter property is the LDAP filter that will be used for the search. When constructing the filter, wherever you want the username to appear, place a "%u".
[09:44:15 CDT(-0500)] <foxnesn1> ignorePartialResultException - This property informs LdapTemplate to ignore PartialResultExceptions that may get thrown when connecting to an Active Directory.
[09:44:18 CDT(-0500)] <foxnesn1> contextSource - LdapContextSource used for the LDAP bind operation. (And search in versions prior to 3.4.9).
[09:44:21 CDT(-0500)] <foxnesn1> searchContextSource - New in 3.4.9 LdapContextSource used for the LDAP search operation. This property is intended to support LDAP connection pooling for improved performance. See https://issues.jasig.org/browse/CAS-987 for data on performance improvements.
[09:44:25 CDT(-0500)] <foxnesn1> allowMultipleAccounts - Allows more than one account to be returned.
[09:44:28 CDT(-0500)] <foxnesn1> maxNumberOfResults - this is the maximum number of results we allow.
[09:44:30 CDT(-0500)] <foxnesn1> scope - One of the predefined "SearchControl" Scopes: SearchControls.OBJECT_SCOPE, SearchControls.ONELEVEL_SCOPE, or SearchControls.SUBTREE_SCOPE
[09:44:34 CDT(-0500)] <foxnesn1> searchBase - The search base is the node in the directory from where the search will be performed.
[09:44:38 CDT(-0500)] <foxnesn1> timeout - This is the amount of time we are willing to wait for the search results to return.
[09:44:40 CDT(-0500)] <foxnesn1> Configuration
[09:44:43 CDT(-0500)] <foxnesn1> Note that all configuration should happen in cas-server-webapp/src/main/webapp/WEB-INF/deployerConfigContext.xml
[09:44:46 CDT(-0500)] <foxnesn1> Define a ContextSource
[09:44:48 CDT(-0500)] <foxnesn1> omg
[09:44:51 CDT(-0500)] <foxnesn1> sorry about that
[12:36:37 CDT(-0500)] <foxnesn1> hrm, i have a question about connection pooling
[12:36:54 CDT(-0500)] <foxnesn1> https://wiki.jasig.org/display/CASUM/LDAP
[12:37:45 CDT(-0500)] <foxnesn1> do i need both the contextsource file AND the sample pooled contextsource included in the deployerconfigcontext?
[14:51:19 CDT(-0500)] <foxnesn1> quiet day in here
[15:46:16 CDT(-0500)] <ries> foxnesn1: happens....
[15:46:23 CDT(-0500)] <ries> I will continue with my project next week