cas service not authorized despite being in cas-management

[Jennifer LaVoie]

I am not sure what I am doing wrong.  I have entered the service into the cas-management application, but I keep getting an error that the service isn't recognized.

Here is the json file contents.  I am not sure why it won't resolve the service. 

{

  @class: org.apereo.cas.services.RegexRegisteredService

  serviceId: ^http:/hosttest.campus.bridgew.edu/AppXtender/login.aspx?sso=true&DataSource=hostBANT(\\z|.*)

  name: test

  id: 1530038970162

  expirationPolicy:

  {

    @class: org.apereo.cas.services.DefaultRegisteredServiceExpirationPolicy

    deleteWhenExpired: false

    notifyWhenDeleted: false

  }

  proxyPolicy:

  {

    @class: org.apereo.cas.services.RefuseRegisteredServiceProxyPolicy

  }

  evaluationOrder: 4

  usernameAttributeProvider:

  {

    @class: org.apereo.cas.services.DefaultRegisteredServiceUsernameProvider

    canonicalizationMode: NONE

    encryptUsername: false

  }

  logoutType: BACK_CHANNEL

  attributeReleasePolicy:

  {

    @class: org.apereo.cas.services.ReturnAllAttributeReleasePolicy

    principalAttributesRepository:

    {

      @class: org.apereo.cas.authentication.principal.DefaultPrincipalAttributesRepository

      expiration: 2

      timeUnit: HOURS

    }

    consentPolicy:

    {

      @class: org.apereo.cas.services.consent.DefaultRegisteredServiceConsentPolicy

      enabled: true

    }

    authorizedToReleaseCredentialPassword: false

    authorizedToReleaseProxyGrantingTicket: false

    excludeDefaultAttributes: false

    authorizedToReleaseAuthenticationAttributes: true

  }

  multifactorPolicy:

  {

    @class: org.apereo.cas.services.DefaultRegisteredServiceMultifactorPolicy

    failureMode: NOT_SET

    bypassEnabled: false

  }

  accessStrategy:

  {

    @class: org.apereo.cas.services.DefaultRegisteredServiceAccessStrategy

    order: 0

    enabled: true

    ssoEnabled: true

    requireAllAttributes: false

    caseInsensitive: true

  }

  publicKey:

  {

    @class: org.apereo.cas.services.RegisteredServicePublicKeyImpl

    algorithm: RSA

  }

in cas.log, I can see this line

2018-06-26 15:47:55,499 DEBUG [org.apereo.cas.services.AbstractServicesManager] - <Adding registered service [^http://hosttest.campus.bridgew.edu/AppXtender/login.aspx?sso=true&DataSource=hostBANT(\\z|.*)]>  so it looks like the service is added ok...

  But I also get this message in the log as well  2018-06-26 15:53:04,710 WARN [org.apereo.cas.web.flow.ServiceAuthorizationCheck] - <Service Management: missing service. Service [http:/hosttest.campus.bridgew.edu/AppXtender/login.aspx?DataSource=hostBANT] is not found in service registry.>

scratching my head here

[Travis Schmidt]

You have it in the registry with parameter sso=true, but the client calling CAS is not adding that parameter.  You registry entry might be better as "^http://hosttest.campus.bridgew.edu/.*" 

--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+u...@apereo.org.
To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/dc683578-a4c2-4968-bf82-1ead2fbf445a%40apereo.org.

[Ray Bon]

Jen,

http:/hosttest.campus.bridgew.edu/AppXtender/login.aspx?DataSource=hostBANT

is missing a '/' http:/hosttest but I will assume that is a typo.

Your registry entry includes the text sso=... but your service URL does not.

Are the URL parameters necessary to identify the service? Will they always be in the same order and have the same values?

If you are going to include the parameters, escape the question mark, \\?

Ray

-- 
Ray Bon
Programmer analyst
Development Services, University Systems
2507218831 | CLE 019 | rb...@uvic.ca

[Jennifer LaVoie]

Thank you for that tip.  that works...I am having the application owner test next.

To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAC_RtEYr-gqH6%2BmzQABJ35EEb2-gGq-rcnKzC9SLpKkCGdY5AQ%40mail.gmail.com.

--

"Confusion is a word we have invented for an order which is not understood."  ~Henry Miller