Groups
Groups
Sign in
Groups
Groups
CAS Developer
Conversations
About
Send feedback
Help
CAS Developer
Contact owners and managers
1–30 of 472
Mark all as read
Report group
0 selected
Misagh
Aug 19
CAS Security Vulnerability Disclosure
Please see https://apereo.github.io/2025/08/19/simplemfa-vuln/
unread,
CAS Security Vulnerability Disclosure
Please see https://apereo.github.io/2025/08/19/simplemfa-vuln/
Aug 19
Ray Bon
Jun 24
puppeteer tests failing
I am running this puppeteer test on master: ./ci/tests/puppeteer/run.sh --scenario ./ci/tests/
unread,
puppeteer tests failing
I am running this puppeteer test on master: ./ci/tests/puppeteer/run.sh --scenario ./ci/tests/
Jun 24
Ray Bon
,
Misagh Moayyed
2
Jun 21
add DUO_SECURITY_ADMIN_SKEY to pupeteer test
export DUO_SECURITY_ADMIN_SKEY=MY_KEY On Saturday, June 21, 2025 at 6:43:03 AM UTC+4 rb...@uvic.ca
unread,
add DUO_SECURITY_ADMIN_SKEY to pupeteer test
export DUO_SECURITY_ADMIN_SKEY=MY_KEY On Saturday, June 21, 2025 at 6:43:03 AM UTC+4 rb...@uvic.ca
Jun 21
Andrea Maria Farina
Apr 27
Surrogate auth support in oidc password flow
Hello, I would like to contribute to the project by adding support for surrogate authentication in
unread,
Surrogate auth support in oidc password flow
Hello, I would like to contribute to the project by adding support for surrogate authentication in
Apr 27
Misagh
Apr 11
CAS Security Vulnerability Disclosure
Please see https://apereo.github.io/2025/04/11/oidc-webauthn-vuln/
unread,
CAS Security Vulnerability Disclosure
Please see https://apereo.github.io/2025/04/11/oidc-webauthn-vuln/
Apr 11
Ray Bon
Mar 21
error with module @napi-rs/canvas
I am running this test: ./ci/tests/puppeteer/run.sh --scenario ./ci/tests/puppeteer/scenarios/
unread,
error with module @napi-rs/canvas
I am running this test: ./ci/tests/puppeteer/run.sh --scenario ./ci/tests/puppeteer/scenarios/
Mar 21
Ray Bon
,
Misagh
2
Mar 18
Unit test not running
You're missing the fact that testSimple cannot run something tagged for LDAP. -- Misagh On Wed,
unread,
Unit test not running
You're missing the fact that testSimple cannot run something tagged for LDAP. -- Misagh On Wed,
Mar 18
Ray Bon
Jan 29
7.1.x build failing
The 7.1.x branch references this repository, but it requires authorization: https://jitpack.io/com/
unread,
7.1.x build failing
The 7.1.x branch references this repository, but it requires authorization: https://jitpack.io/com/
Jan 29
Dennis Rech
2
Jan 27
User enumeration disclosure in CAS
@CAS developers: any feedback on this? Please check if this can be implemented. Any feedback will be
unread,
User enumeration disclosure in CAS
@CAS developers: any feedback on this? Please check if this can be implemented. Any feedback will be
Jan 27
Yan
3
10/2/24
how to properly load CAS into Intellij IDE?
I disabled parallelism in gradle.properties, then it loads fine into Intellij. org.gradle.parallel=
unread,
how to properly load CAS into Intellij IDE?
I disabled parallelism in gradle.properties, then it loads fine into Intellij. org.gradle.parallel=
10/2/24
Olivier MOUTRET
9/20/24
CAS Shell - Error Windows version on CAS Shell
Le « CasCommandLineShellApplication » indique une mauvaise version de Windows
unread,
CAS Shell - Error Windows version on CAS Shell
Le « CasCommandLineShellApplication » indique une mauvaise version de Windows
9/20/24
Jose Luis Martínez del Amor
,
Ray Bon
2
7/22/24
Username case in RedisMultifactorAuthenticationTrustStorage
Jose Luis, You can make the username all one case. See https://apereo.github.io/cas/7.0.x/
unread,
Username case in RedisMultifactorAuthenticationTrustStorage
Jose Luis, You can make the username all one case. See https://apereo.github.io/cas/7.0.x/
7/22/24
Jose Luis Martínez del Amor
,
Łukasz Woźniak
3
7/20/24
10 seconds delay in mfa-gauth and trusted devices
Hi, Definitely overwriting the class so that there were no deletions in the queries improved
unread,
10 seconds delay in mfa-gauth and trusted devices
Hi, Definitely overwriting the class so that there were no deletions in the queries improved
7/20/24
Misagh
6/26/24
CAS OAuth/OpenID Connect Vulnerability Disclosure
Please see https://apereo.github.io/2024/06/26/oidc-vuln/
unread,
CAS OAuth/OpenID Connect Vulnerability Disclosure
Please see https://apereo.github.io/2024/06/26/oidc-vuln/
6/26/24
Felix Scheinost
6/13/24
Discussion: LoggingUtils#prepareLogEvent should gracefully handle missing ApplicationContext
Hi, currently when using `CasAppender` it is difficult to troubleshoot issues the application has on
unread,
Discussion: LoggingUtils#prepareLogEvent should gracefully handle missing ApplicationContext
Hi, currently when using `CasAppender` it is difficult to troubleshoot issues the application has on
6/13/24
Misagh
5/18/24
CAS OAuth/OpenID Connect Vulnerability Disclosure
Please see: https://apereo.github.io/2024/05/18/oauth-vuln/
unread,
CAS OAuth/OpenID Connect Vulnerability Disclosure
Please see: https://apereo.github.io/2024/05/18/oauth-vuln/
5/18/24
Misagh Moayyed
,
atilling
2
2/20/24
Apereo #cas Slack Channel
Would like to signup with conncoll.edu domain. On Thursday, November 16, 2017 at 5:46:10 PM UTC-5
unread,
Apereo #cas Slack Channel
Would like to signup with conncoll.edu domain. On Thursday, November 16, 2017 at 5:46:10 PM UTC-5
2/20/24
Ray Bon
,
Misagh Moayyed
5
2/1/24
CAS 7.0 attribute retrieval failure
2. add the attribute used in the authentication stage to the list of query parameters (so the same
unread,
CAS 7.0 attribute retrieval failure
2. add the attribute used in the authentication stage to the list of query parameters (so the same
2/1/24
Nina Nedjar
,
Misagh
2
10/12/23
New MFA features proposition
> We also want to carry out a PR so that this module is added to the CAS project, how can we do
unread,
New MFA features proposition
> We also want to carry out a PR so that this module is added to the CAS project, how can we do
10/12/23
Colin Wilkinson
, …
Pablo Vidaurri
5
10/12/23
PAC4J OIDC Change have broken Azure
Hi PSVID, Sorry for the late reply yes I did. Basically you need to recreate the
unread,
PAC4J OIDC Change have broken Azure
Hi PSVID, Sorry for the late reply yes I did. Basically you need to recreate the
10/12/23
CAS Developer
,
CAS Developer
2
9/19/23
CAS 7.x OpenSAML
Thats why non-snapshot (releases) should *never* have dependencies on -SNAPSHOT versions. I fixed the
unread,
CAS 7.x OpenSAML
Thats why non-snapshot (releases) should *never* have dependencies on -SNAPSHOT versions. I fixed the
9/19/23
Misagh
8/30/23
CAS Security Releases
Please see: https://apereo.github.io/2023/08/30/groovy-vuln/
unread,
CAS Security Releases
Please see: https://apereo.github.io/2023/08/30/groovy-vuln/
8/30/23
Pablo Vidaurri
8/22/23
CAS 7.x with Azure AD B2C
We created new instance of azure ad b2c (Entra). I am able to include the azuread dependency and
unread,
CAS 7.x with Azure AD B2C
We created new instance of azure ad b2c (Entra). I am able to include the azuread dependency and
8/22/23
Ray Bon
,
Misagh
2
8/8/23
publishToMavenLocal failing in cas
Try with: --no-configuration-cache -- Misagh On Sat, Aug 5, 2023, 8:36 AM Ray Bon <rbonatuvic.ca@
unread,
publishToMavenLocal failing in cas
Try with: --no-configuration-cache -- Misagh On Sat, Aug 5, 2023, 8:36 AM Ray Bon <rbonatuvic.ca@
8/8/23
spfma...@e.mail.fr
7/18/23
[CAS 6.6.9] Multifactor authentication problems (mfa-gauth)
Hi, I am trying to setup MFA, with GoogleAuthenticator and CouchDB. I am experiencing two problems :
unread,
[CAS 6.6.9] Multifactor authentication problems (mfa-gauth)
Hi, I am trying to setup MFA, with GoogleAuthenticator and CouchDB. I am experiencing two problems :
7/18/23
Richard Frovarp
7/11/23
Public workstation functionality doesn't work with Duo Universal Prompt
I have two otherwise identically configured CAS configurations, both on 6.6.6. Both are configured to
unread,
Public workstation functionality doesn't work with Duo Universal Prompt
I have two otherwise identically configured CAS configurations, both on 6.6.6. Both are configured to
7/11/23
Pablo Vidaurri
,
Daniel Fisher
7
6/22/23
Change request for org.apereo.cas.util.LdapUtils
I ended up commenting out setControls method from ldaptive's AuthenticationRequest.java source
unread,
Change request for org.apereo.cas.util.LdapUtils
I ended up commenting out setControls method from ldaptive's AuthenticationRequest.java source
6/22/23
Jean-noel RIBETTE
,
Misagh
2
6/22/23
CAS 6.6.8 - performance issue in AbstractPrincipalAttributesRepository and support of custom error messages in delegated authentication
> First one is about the synchronized block in AbstractPrincipalAttributesRepository.
unread,
CAS 6.6.8 - performance issue in AbstractPrincipalAttributesRepository and support of custom error messages in delegated authentication
> First one is about the synchronized block in AbstractPrincipalAttributesRepository.
6/22/23
Colin Wilkinson
,
Misagh Moayyed
2
5/16/23
CAS 7.0.0-RC5 change passsword issue
Thank you for the suggestion. Please put together a pull request that corrects the mistake and we
unread,
CAS 7.0.0-RC5 change passsword issue
Thank you for the suggestion. Please put together a pull request that corrects the mistake and we
5/16/23
Patrick Masson
2
5/15/23
Oracle Java Licensing Changes, Jakarta EE, OpenJDK
Just a reminder, the "Java Licensing Options" call is today (Monday, May 15th) at 1:30 PM
unread,
Oracle Java Licensing Changes, Jakarta EE, OpenJDK
Just a reminder, the "Java Licensing Options" call is today (Monday, May 15th) at 1:30 PM
5/15/23
