Registered service [name] does not define any authorized/supported delegated authentication provider

512 views
Skip to first unread message

Fernando Gomez

unread,
Jun 3, 2021, 4:37:05 PM6/3/21
to CAS Community
Hello, the following warning is coming out in my logs:

 [org.apereo.cas.services.DefaultRegisteredServiceDelegatedAuthenticationPolicy] - 
<Registered service [name] does not define any authorized/supported delegated authentication providers. It is STRONGLY recommended that you authorize and assign providers to the service definition. While just a warning for now, this behavior will be enforced by CAS in future versions.>

The problem is that the production log is filling up very quickly for this issue.
I have my service configured as follows:


{
    "@class": "org.apereo.cas.services.RegexRegisteredService",
    "serviceId": "^(http|https)://(.*)URL(.*)",
    "name": "name",
    "id": 003,
    "description": " ",
    "theme" : "Theme",
    "accessStrategy" : {
    "@class" : "org.apereo.cas.services.DefaultRegisteredServiceAccessStrategy",
    "enabled" : true,
    "ssoEnabled" : true
    },    
     "delegatedAuthenticationPolicy" : {
      "@class" : "org.apereo.cas.services.DefaultRegisteredServiceDelegatedAuthenticationPolicy",
      "allowedProviders" : [[ "Facebook", "Twitter" ] ],
      "permitUndefined": true,
     },    
     "singleSignOnParticipationPolicy" : {
      "@class": "org.apereo.cas.services.ChainingRegisteredServiceSingleSignOnParticipationPolicy",
      "policies": [
        "java.util.ArrayList",
        [
          {
            "@class": "org.apereo.cas.services.AuthenticationDateRegisteredServiceSingleSignOnParticipationPolicy",
            "timeUnit": "SECONDS",
            "timeValue": 2592000,
            "order": 0
          }
        ]
      ],
     "createCookieOnRenewedAuthentication": "TRUE"
    },
    "properties" : {
    "@class" : "java.util.HashMap",
    "httpHeaderEnableXFrameOptions" : {
      "@class" : "org.apereo.cas.services.DefaultRegisteredServiceProperty",
      "values" : [ "java.util.HashSet", [ "true" ] ]
    }
  }
    
}


I have the REST, Facebook and google login enabled.

I have the Delegated Authentication Policy enabled in the service, can you help me see what error I am making?

Thank you very much in advance!

Andy Ng

unread,
Jun 3, 2021, 9:46:57 PM6/3/21
to CAS Community, Fernando Gomez
Hi Fernando,

We use something like this:
==============================================
  "accessStrategy": {
    "@class": "org.apereo.cas.services.DefaultRegisteredServiceAccessStrategy",
    "delegatedAuthenticationPolicy" : {
      "@class" : "org.apereo.cas.services.DefaultRegisteredServiceDelegatedAuthenticationPolicy",
      "allowedProviders" : [ "java.util.ArrayList", [ "Facebook", "Twitter" ] ]
    }
  },
==============================================
Also, you should also make sure `Facebook` and `Twitter` is the correct name for your provider, for us the name is a bit different because we set a differernt name in the properties for our provider.

Cheers!
- Andy

Reply all
Reply to author
Forward
0 new messages