Hello,
I am trying to generate a deployment of CAS 7.0. From reading the documentation, I should (and am hopefully) using a clean WAR Overlay build. I am using guides I found in the CAS Community such as the following:
I am going the route of checking out (and creating my own branch of) branch 7.0 from https://github.com/apereo/cas-overlay-template/tree/7.0 instead of doing the curl command. I then run the “./gradlew clean build” command. That works. Next, from all the documentation, it mentions to look into the cas.properties files among others. When I look into the etc/config folder, I seem to be missing many files like the SAML and Services folder, and the keystore. Having missing SAML and Services folders causes my builds to fail too.
How does one generate the files (among others I’m sure I’m missing)? Am I missing an obvious step?
Thanks,
Benjamin Chang
curl -k https://getcas.apereo.org/starter.tgz \
-d type=cas-overlay -d baseDir=overlay | tar -xzvf -
This made an overview file that had SAML and Services folder in the /etc/cas. However there is still no keystore. I've tried running your command among "./gradlew.bat createkeystore --info" and it keeps erroring. I getHi Benjamin,as saml and services folders are not mandatory (saml is optionnal and you may store your services elsewhere, eg. in a mongo/redit/postgres db ...) you'll have to handle this on your ownYou might write your cas.properties file from scratch (know that cas properties could also be stored in a .yml format ...)If you choose your filesystem to store services, create the folder /etc/cas/services regarding the documentation you've just told about :cas.service-registry.core.init-from-json=false cas.service-registry.json.location=file:/etc/cas/servicesSame thing for SAML.Finally, about Keystore, the doc says :By default, the CAS web application expects to run on the secure port 8443 which requires that you create a keystore file at /etc/cas/ named thekeystore.So, let's generate your own keystore with keytool, eg :sudo keytool -keystore /etc/cas/thekeystore -keyalg RSA -genkey -alias sharedsudo keytool -importkeystore -srckeystore mywonderful.p12 -destkeystore /etc/cas/thekeystore -srcstoretype pkcs12 -alias shared(Watch for permissions on every file/folder you create so that your tomcat webapp can open them)hope it helps
You don't often get email from zeal...@gmail.com.
Learn why this is important
|
To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/YT3PR01MB994671D7728513A805991CEACEDD2%40YT3PR01MB9946.CANPRD01.PROD.OUTLOOK.COM.