forceAuthn with CAS Service Providers....
melvin.lasky
melvin.lasky at manhattan.edu
Thu Feb 13 19:56:00 EST 2020
Ok guys I need help.
I added my services in cas-protocol.xml and that works fine
<bean
class="net.shibboleth.idp.cas.service.ServiceDefinition"
c:regex="https://server.domain.domain(:\d+)?/.*"
p:group="forceAuthCAS"
p:authorizedToProxy="false" />
However once I add this in my relying-party.xml,
<bean id="casForceAuthn" parent="RelyingPartyByGroup"
c:groupNames="forceAuthCAS">
<property name="profileConfigurations">
<list>
<bean parent="CAS.LoginConfiguration"
p:forceAuthn="true" >
<ref bean="CAS.ValidateConfiguration" />
</list>
</property>
</bean>
I get this:
shib-idp;idp-process.log;dev;nothing; - [149.61.194.199]2020-02-14
00:52:13,139 - ERROR
[net.shibboleth.idp.relyingparty.impl.ReloadingRelyingPartyConfigurationResolver:108]
- RelyingPartyResolver 'shibboleth.RelyingPartyConfigurationResolver': error
looking up Relying Party: Invalid configuration.
shib-idp;idp-warn.log;dev;nothing;2020-02-14 00:52:13,139 - ERROR
[net.shibboleth.idp.relyingparty.impl.ReloadingRelyingPartyConfigurationResolver:108]
- RelyingPartyResolver 'shibboleth.RelyingPartyConfigurationResolver': error
looking up Relying Party: Invalid configuration.
I put it in section:
<util:list id="shibboleth.RelyingPartyOverrides">
</util:list>
I have other other overrides in there, but none related to CAS.
Any ideas?
Thanks everyone!
Mel
--
Sent from: https://shibboleth.1660669.n2.nabble.com/Shibboleth-Users-f1660767.html
More information about the users
mailing list