Stack Overflow
Stack Overflow

Questions tagged [spring-security-cas]

Deals with questions specifically related to Spring Framework's Central Authentication Services (CAS).

Spring Security (formerly known as Acegi Security) is the Spring Framework's application security solution. Spring security can be used to secure URLs and method invocations. It is widely used to secure standalone web applications, portlets and increasingly REST applications. This deals with questions specifically related to Spring Framework's Central Authentication Services (CAS).

32 questions
6
votes
0 answers

How do I configure Spring Security CAS support using Java configuration?

I'm trying to setup CAS authentication using Spring Security for my web application. I've followed the documentation and managed to convert the XML configuration examples to Java config. However, I'm not sure I did everything correctly and given the…
user180940
  • 324
  • 1
  • 18
5
votes
1 answer

Spring 4.2's native Global CORS support won't work with CAS filterProcessesUrl

i am trying to switch to spring 4.2's native Global CORS support after i upgrade to spring-boot 1.3, but it seemed won't work with CAS filter process url(/login/cas). Originally, i was using spring-boot 1.2.7 with spring 4.2 and spring-security…
bitmountain
  • 95
  • 2
  • 9
3
votes
4 answers

Spring Boot Security upgrade breaks CAS

I tried to get Spring Boot + Spring Security work with CAS and ran into some troubles. After some time researching I found a good example project https://github.com/jgribonvald/demo-spring-security-cas It is very good, I only had to change the CAS…
modorono
  • 41
  • 1
  • 6
3
votes
1 answer

Is HttpServletRequest.getRequestURL() spoofable?

The question is self explanatory, I hope. I am setting up a Spring Security enviroment with a CAS-server. Because the exact same application is deployed on the same server, but the server is accessible via different host names (.de domain, .com…
Schaka
  • 772
  • 9
  • 20
3
votes
0 answers

Grails Spring Security not redirecting to saved request after successful login

I have a Grails 2.2.5 application that uses Grails Spring Security 1.2.7.3, Spring Security LDAP 1.0.6, and Spring Security CAS 1.0.5 plugins for authentication/authorization. Logging in, roles, single-sign-on all works fine. But for some reason the…
grantmcconnaughey
  • 10,130
  • 10
  • 37
  • 66
3
votes
2 answers

Spring-security-cas plugin Single Sign Out not working

I'm very new to grails and I'm developing an app with Spring-Security-Core and Spring-Security-CAS plugins. The single sign on is working as expected, but I'm in trouble with the single sign out. I have two applications, and when I log in in cas or…
gandrademello
  • 111
  • 1
  • 6
2
votes
1 answer

Upgrading spring-security-cas to spring 6.x

I am upgrading a project from Spring 5.x to Spring 6.x. The project uses CAS for Single Sign On. While upgrading the project, I found that the latest version of spring-security-cas is 5.8.1 whereas the latest version of Spring Security is 6.0.1. The…
Nitish Kumar
  • 161
  • 1
  • 1
  • 7
2
votes
1 answer

Parameter 0 of constructor required a bean of type that could not be found

I want to have an SSO CAS Authentification, I've followed the instruction of the Bealdung's tutorial (https://www.baeldung.com/spring-security-cas-sso part 4) but when I run as spring boot app I've got this error Parameter 0 of constructor in…
Mez Rbk
  • 130
  • 2
  • 2
  • 9
2
votes
1 answer

Utility of SingleSignOutHttpSessionListener when a SingleSignOutFilter is used

I am currently trying to implement a CAS Client and everything is working fine. The authentication and the logout processes work like a charm. Here is my code for the Single Sign-Out process: @Bean public FilterRegistrationBean…
Neyt
  • 479
  • 1
  • 12
  • 27
2
votes
2 answers

Upgrading from Spring Security 3.x to 4.x

jslearner07
  • 451
  • 1
  • 4
  • 17
2
votes
1 answer

Jasig CAS - how to customize WebFlow to redirect user after successful login?

I'm trying to integrate CAS auth in our web services and use the Jasig CAS server (v. 4.2) which is Spring-based webapp. Unfortunately, Jasig CAS server can only use service ID for redirection after successful login. It is unacceptable, because CAS…
JDoeNext
  • 41
  • 3
2
votes
0 answers

Spring Security, Spring MVC, PreAuthorise annotation and exception handling

I'm struggling with Spring Security and exception handling. I have the following exception handler configured in my servlet-context:
Mark
  • 1,754
  • 3
  • 26
  • 43
2
votes
1 answer

java.lang.NullPointerException with spring security cas

I have set up my application successfully with spring-security-core and spring-security-ldap. However, when I installed spring-security-cas plugin to connect to the cas server, I have been getting a java.lang.NullPointerException continously in a…
Hani Alsafadi
  • 108
  • 8
1
vote
1 answer

Getting error while reading value from property file in spring security:session-management tag

I need to implement session management in spring security but I am getting an error while deploying the application on tomcat. Application is trying to fetch invalid-session-url and expired-url property values from property file but getting error on…
sandeep bhatt
  • 11
  • 1
1
vote
1 answer

How to invalidate user in CAS server

I implement CAS server 4.0 for SSO. I have 3 apps (Spring web MVC with Spring CAS security) connect to CAS server. I configure CAS server to manage ticket by JPA and check authentication in CAS by username. Currently I'm creating forgot-password…
Quan M Le
  • 73
  • 2
  • 8
1
2 3