Stack Overflow
Stack Overflow

Questions tagged [pac4j]

Pac4j is an open source security framework for java applications handling authentication and authorisation created and maintained by CAS in the cloud.

77 questions
0
votes
1 answer

about pac4j-cas and buji-pac4j upgrade version question

my spring-boot project(2.3.10.RELEASE ) with shiro (1.7.1) updating the pac4j-cas(3.9.0) and buji-pac4j(4.1.1) to the latest (pac4j-cas :5.1.2 pac4j-cas:6.0.0),but it happen to I can not use iframe in the HTML (X-Frame-Options deny) and ajax was…
OracleLin
  • 1
  • 1
0
votes
1 answer

In which order are pac4j client used

I have an application using pac4j and use multiple authentication clients to secure my routes (both direct and indirect) like this: Secure("AnonymousClient", "FacebookClient", "JWTClient"). I don't really understand in which order the clients are…
stackoverflowed
  • 686
  • 8
  • 22
0
votes
1 answer

How to make Play and Pac4j compatible?

I use Play 2.8 with pac4j. Play 2.8 uses Jackson 2.10, while pac4j-oidc uses Jackson 2.11. 2.10 is therefore evicted and makes Play unhappy: com.fasterxml.jackson.databind.JsonMappingException: Scala module 2.10.5 requires Jackson Databind version…
stackoverflowed
  • 686
  • 8
  • 22
0
votes
2 answers

Apache Zeppelin configured for OIDC redirects to http://localhost:8081/null

I've tried with both Apache Zeppelin 0.8 and 0.9 + pac4j and the problem is the same. When visiting the app root at http://localhost:8081/ I get redirected to http://localhost:8081/null. log4j does not output anything that may help. This is my…
AlfredoRevilla-MSFT
  • 3,171
  • 1
  • 12
  • 18
0
votes
0 answers

is there anyway we can get control of SAML assertion lifetime which is defined in NotOnOrAfter attribute?

I need to use SAML assertion lifetime for deciding the expiry of the API key, is there any way we can get the SAML session/assertion validity from the identity provider, I know using notonorafter attribute that value can be retrieved but can we…
MukulChakane
  • 73
  • 2
  • 8
0
votes
1 answer

shiro pac4j cas ajax 401 when accessing another client

I am using cas 5.x. I have cas-server and two web apps client-1 and client-2. currently, I can single sign on and single sign out, but there is one problem in following steps: access client-1, it will ask me for login in cas server, then redirect…
frank
  • 1,169
  • 18
  • 43
0
votes
0 answers

Authentication via Twitter with pac4j in Vaadin 14.2 application: "code":32,"message":"Could not authenticate you."

I'm trying to integrate a Twitter authentication (ideally SSO) in a Vaadin application. For this I created a Vaadin application from scratch and tried to integrate pac4j (see following steps). Unfortunately I get error "code":32,"message":"Could not…
S. Doe
  • 685
  • 1
  • 6
  • 25
0
votes
3 answers

is there any way to query if user is exist or not in SAML based identity provider?

I want to just check if user is exist or not in Active Directory or LDAP connected to SAML Identity provider without performing full SSO through the browser. does SAML IDP provide any API for user lookup without actually performing SSO?
MukulChakane
  • 73
  • 2
  • 8
0
votes
2 answers

How to create kubernetes secret as json object and load the same in kubernetes environment as json

I need to pass a JWK as kubernetes environment variable to my app. I created a file to store my key like so: cat deploy/keys/access-signature-public-jwk { algorithm = "RS256" jwk =…
iamsmkr
  • 800
  • 2
  • 10
  • 29
0
votes
1 answer

SAML 2.0 - Authentication issue instant is too old or in the future

I have an authentication service with SAML. I've recently had a weird issue saying that Authentication issue instant is too old or in the future. The maximum lifetime in the backend is set up to 1 hour. I tried reproducing the issue with no luck and…
Zied Bellil
  • 1
  • 1
  • 1
0
votes
1 answer

shiro buji pac4j cas single sign out not work

spring boot 2.2.5 shiro-spring-boot-web-starter 1.5.1 buji-pac4j 4.1.1 pac4j-cas 3.8.3 cas overlay template 5.3. I start cas server in tomcat with https, and start two clients(pac4j1 and pac4j2) in eclipse. single sign on works, but single sign out…
frank
  • 1,169
  • 18
  • 43
0
votes
1 answer

pac4j-saml client is not sending a request to the IDP

I'm trying to get the pac4j-saml running. I've got a local IDP running and am now trying to setup a simple service provider via tomcat. Acording to the documentation this should be fairly simple but it will not work. If my interpretation of the…
FMK
  • 1,062
  • 1
  • 14
  • 25
0
votes
1 answer

pac4j-play SecureAction (extension), type mismatch

I'm trying to extend the SecureAction of the pac4j-play module, because i want some extra stuff validated and added to the request, for easy access in the controller. But i run into a type-mismatch compilation issue, and i cannot seem to grasp…
Martin Hansen
  • 2,033
  • 1
  • 18
  • 34
0
votes
0 answers

Implementing social media login with grails

I'm trying to implement Google/LinkedIn registration/login with grails. I've started with spring security rest plugin and this is my application.groovy file: oauth { frontendCallbackUrl = { String tokenValue ->…
Nicolas Ventura
  • 1
  • 2
0
votes
0 answers

SAML2.0 Specification how Response Should be sent

I have connected to two different saml2.0 identity providers. Test IdP https://hub.docker.com/r/kristophjunge/test-saml-idp/ And a Third party idp. I am new to SAML so I may be missing something here. It turns out that the test idp works perfectly…
flexxxit
  • 2,440
  • 5
  • 42
  • 69
1 2 3 4
5
6