CAS Upgrade 6.3.x OAuth Cache not being refreshed.

21 views

Skip to first unread message

John Bergant

unread,

Jun 28, 2021, 2:33:04 PM6/28/21

to CAS Community

I am trying to upgrade my CAS server to 6.3.3 from 6.2.8 and it seems the OAuth flow is not working after the upgrade. In 6.3.x there was a feature added that cached registered services (here is the commit). When testing locally it seems like the cache is not being updated on a miss. Other types of registered services rehydrate the cache on misses but not the OAuth service.

Am I missing a property that needs to be set on the Service so the cache gets rehydrated? I took a look at the RegexRegisteredService and the OAuthRegisteredService interface and I didn't see anything that would indicate if the service should be cached.

I am not using the Service Management, all my services are registered at startup as beans and placed in a inMemoryRegisteredService Bean.

John Bergant

unread,

Jun 28, 2021, 2:36:47 PM6/28/21

to CAS Community, John Bergant

It looks like the class: OAuth20AuthorizationCodeResponseTypeAuthorizationRequestValidator only checks for services based on client id and not service name. Since the service name is not checked the resulting service is null and the cache is never updated.

Reply all

Reply to author

Forward

0 new messages