Error with auditTrailContext.xml

[carlos maddaleno cuellar]

Hi im having a problem with auditTrailContext.xml i have it under my spring-configuration im using cas 4.2.3  the error says this

org.springframework.beans.factory.UnsatisfiedDependencyException: Error creating bean with name 'assertionAsReturnValuePrincipalResolver' defined in URL [jar:file:/C:/Projects/cas/cas-overlay-template-master/cas-overlay-template-master/target/cas/WEB-INF/lib/cas-server-core-audit-4.2.3.jar!/org/jasig/cas/audit/spi/AssertionAsReturnValuePrincipalResolver.class]: Unsatisfied dependency expressed through constructor argument with index 0 of type [org.jasig.cas.audit.spi.TicketOrCredentialPrincipalResolver]: : Error creating bean with name 'auditablePrincipalResolver' defined in ServletContext resource [/WEB-INF/spring-configuration/auditTrailContext.xml]: Unsatisfied dependency expressed through constructor argument with index 0 of type [org.jasig.cas.CentralAuthenticationService]: Ambiguous constructor argument types - did you specify the correct bean references as constructor arguments?; nested exception is org.springframework.beans.factory.UnsatisfiedDependencyException: Error creating bean with name 'auditablePrincipalResolver' defined in ServletContext resource [/WEB-INF/spring-configuration/auditTrailContext.xml]: Unsatisfied dependency expressed through constructor argument with index 0 of type [org.jasig.cas.CentralAuthenticationService]: Ambiguous constructor argument types - did you specify the correct bean references as constructor arguments?

this is my file:

<?xml version="1.0" encoding="UTF-8"?>

<beans xmlns="http://www.springframework.org/schema/beans"

       xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"

       xmlns:aop="http://www.springframework.org/schema/aop"

       xmlns:p="http://www.springframework.org/schema/p"

       xmlns:c="http://www.springframework.org/schema/c"

       xmlns:util="http://www.springframework.org/schema/util"

       xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd

       http://www.springframework.org/schema/aop http://www.springframework.org/schema/aop/spring-aop.xsd

       http://www.springframework.org/schema/util http://www.springframework.org/schema/util/spring-util.xsd">

    <description>

        Configuration file for the Inspektr package which handles auditing for Java applications.

        If enabled this should be modified to log audit and statistics information the same way

        your local applications do. The default is currently to log to the console which is good

        for debugging/testing purposes.

    </description>

    <aop:aspectj-autoproxy/>

    <bean id="auditTrailManagementAspect" class="org.jasig.inspektr.audit.AuditTrailManagementAspect"

          c:applicationCode="${cas.audit.appcode:CAS}" c:auditablePrincipalResolver-ref="assertionAsReturnValuePrincipalResolver"

          c:auditTrailManagers-ref="auditTrailManager" c:auditActionResolverMap-ref="auditActionResolverMap"

          c:auditResourceResolverMap-ref="auditResourceResolverMap"/>

    <util:map id="auditActionResolverMap">

        <entry key="AUTHENTICATION_RESOLVER">

            <ref bean="authenticationActionResolver"/>

        </entry>

        <entry key="SAVE_SERVICE_ACTION_RESOLVER">

            <ref bean="authenticationActionResolver"/>

        </entry>

        <entry key="CREATE_TICKET_GRANTING_TICKET_RESOLVER">

            <ref bean="ticketCreationActionResolver"/>

        </entry>

        <entry key="DESTROY_TICKET_GRANTING_TICKET_RESOLVER">

            <bean class="org.jasig.inspektr.audit.spi.support.DefaultAuditActionResolver"/>

        </entry>

        <entry key="CREATE_PROXY_GRANTING_TICKET_RESOLVER">

            <ref bean="ticketCreationActionResolver"/>

        </entry>

        <entry key="DESTROY_PROXY_GRANTING_TICKET_RESOLVER">

            <bean class="org.jasig.inspektr.audit.spi.support.DefaultAuditActionResolver"/>

        </entry>

        <entry key="GRANT_SERVICE_TICKET_RESOLVER">

            <ref bean="ticketCreationActionResolver"/>

        </entry>

        <entry key="GRANT_PROXY_TICKET_RESOLVER">

            <ref bean="ticketCreationActionResolver"/>

        </entry>

        <entry key="VALIDATE_SERVICE_TICKET_RESOLVER">

            <ref bean="ticketValidationActionResolver"/>

        </entry>

    </util:map>

    <util:map id="auditResourceResolverMap">

        <entry key="AUTHENTICATION_RESOURCE_RESOLVER">

            <bean class="org.jasig.cas.audit.spi.CredentialsAsFirstParameterResourceResolver"/>

        </entry>

        <entry key="CREATE_TICKET_GRANTING_TICKET_RESOURCE_RESOLVER">

            <ref bean="returnValueResourceResolver"/>

        </entry>

        <entry key="DESTROY_TICKET_GRANTING_TICKET_RESOURCE_RESOLVER">

            <ref bean="ticketResourceResolver"/>

        </entry>

        <entry key="CREATE_PROXY_GRANTING_TICKET_RESOURCE_RESOLVER">

            <ref bean="returnValueResourceResolver"/>

        </entry>

        <entry key="DESTROY_PROXY_GRANTING_TICKET_RESOURCE_RESOLVER">

            <ref bean="ticketResourceResolver"/>

        </entry>

        <entry key="GRANT_SERVICE_TICKET_RESOURCE_RESOLVER">

            <bean class="org.jasig.cas.audit.spi.ServiceResourceResolver"/>

        </entry>

        <entry key="GRANT_PROXY_TICKET_RESOURCE_RESOLVER">

            <bean class="org.jasig.cas.audit.spi.ServiceResourceResolver"/>

        </entry>

        <entry key="VALIDATE_SERVICE_TICKET_RESOURCE_RESOLVER">

            <ref bean="ticketResourceResolver"/>

        </entry>

        <entry key="SAVE_SERVICE_RESOURCE_RESOLVER">

            <ref bean="returnValueResourceResolver"/>

        </entry>

    </util:map>

    <bean id="authenticationActionResolver"

          class="org.jasig.inspektr.audit.spi.support.DefaultAuditActionResolver"

          c:successSuffix="_SUCCESS" c:failureSuffix="_FAILED"/>

    <bean id="ticketCreationActionResolver"

          class="org.jasig.inspektr.audit.spi.support.DefaultAuditActionResolver"

          c:successSuffix="_CREATED" c:failureSuffix="_NOT_CREATED"/>

    <bean id="ticketValidationActionResolver"

          class="org.jasig.inspektr.audit.spi.support.DefaultAuditActionResolver"

          c:successSuffix="D" c:failureSuffix="_FAILED"/>

    <bean id="returnValueResourceResolver"

          class="org.jasig.inspektr.audit.spi.support.ReturnValueAsStringResourceResolver"/>

    

    

    <bean id="auditablePrincipalResolver" class="org.jasig.cas.audit.spi.TicketOrCredentialPrincipalResolver"

          c:ticketRegistry-ref="ticketRegistry" />

    <bean id="ticketResourceResolver"

        class="org.jasig.cas.audit.spi.TicketAsFirstParameterResourceResolver" />

</beans>

could some one help me please

my pom dependencies

<dependency>

            <groupId>org.jasig.cas</groupId>

            <artifactId>cas-server-webapp</artifactId>

            <version>${cas.version}</version>

            <type>war</type>

            <scope>runtime</scope>

        </dependency>

        <dependency>

            <groupId>org.jasig.cas</groupId>

            <artifactId>cas-server-support-jdbc</artifactId>

            <version>${cas.version}</version>

        </dependency>

        

        <dependency>

            <groupId>org.jasig.cas</groupId>

            <artifactId>cas-server-webapp-actions-aup-webflow</artifactId>

            <version>${cas.version}</version>

        </dependency>

        

        <dependency>

            <groupId>org.apache.commons</groupId>

            <artifactId>commons-collections4</artifactId>

            <version>4.1</version>

        </dependency>

        <dependency>

            <groupId>org.apereo.service.persondir</groupId>

            <artifactId>person-directory-api</artifactId>

            <version>1.8.1</version>

            <type>jar</type>

        </dependency>

        <dependency>

            <groupId>org.apereo.service.persondir</groupId>

            <artifactId>person-directory-impl</artifactId>

            <version>1.8.1</version>

            <type>jar</type>

        </dependency>

        <dependency>

            <groupId>org.jasig.cas</groupId>

            <artifactId>cas-server-webapp-throttle</artifactId>

            <version>${cas.version}</version>

        </dependency>

        

        <dependency>

            <groupId>javax.servlet</groupId>

            <artifactId>servlet-api</artifactId>

            <version>2.5</version>

        </dependency>

        <dependency>

            <groupId>org.apereo.inspektr</groupId>

            <artifactId>inspektr-audit</artifactId>

            <version>1.5.GA</version>

            <type>jar</type>

        </dependency>

       

<properties>

        <cas.version>4.2.3</cas.version>

        <maven-jetty-plugin.version>9.3.6.v20151106</maven-jetty-plugin.version>

        <maven.compiler.source>1.7</maven.compiler.source>

        <maven.compiler.target>1.7</maven.compiler.target>

        <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>

    </properties>

[Misagh Moayyed]

Why do you have that file in your configuration? 

-- 
Misagh

--
You received this message because you are subscribed to the Google Groups "CAS Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+u...@apereo.org.
To post to this group, send email to cas-...@apereo.org.
Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/.
To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/CANEG9%2BcecBn4fBv7fqxJZJ7ecOB9Gx32UnKiFn0s3j12VUJ%2BBw%40mail.gmail.com.
For more options, visit https://groups.google.com/a/apereo.org/d/optout.

[Misagh Moayyed]

That’s better handled by your authentication source, if it supports that, or via throttling. Not via audits. 

-- 
Misagh

From: carlos maddaleno cuellar <iamcarlos...@gmail.com>
Reply: carlos maddaleno cuellar <iamcarlos...@gmail.com>

Date: August 3, 2016 at 12:09:35 PM
To: Misagh Moayyed <mmoa...@unicon.net>
Subject:  Re: [cas-user] Error with auditTrailContext.xml

i wanted to overwrite 

org.jasig.inspektr.audit.AuditTrailManagementAspect

flow so when a user make a AUTHENTICATION_FAILED I have a flag to block the user on more than 3 fails

To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/etPan.57a23c39.22a9ce41.232b%40unicon.net.

[Misagh Moayyed]

No. It’s not something you’d “do”. Your handler is not your source. Your source is the database, and the database(likely, I don’t know for sure) has no way of blocking an account on X number of failed attempts. Lots of “it depends” there. 

So your best method of discourse would be to use throttling. If that doesn’t work, then you can do it manually by tracking failed authn attempts in the database somehow. 

-- 
Misagh

From: carlos maddaleno cuellar <iamcarlos...@gmail.com>
Reply: carlos maddaleno cuellar <iamcarlos...@gmail.com>
Date: August 3, 2016 at 12:45:57 PM
To: Misagh Moayyed <mmoa...@unicon.net>
Subject:  Re: [cas-user] Error with auditTrailContext.xml

Ok thanks i will try im using

<alias name="queryDatabaseAuthenticationHandler" alias="primaryAuthenticationHandler" />

    <alias name="dataSource" alias="queryDatabaseDataSource" />

    

to authenticate to my database so you think i could do it on the queryDatabaseAuthenticationHandler bean?

To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/etPan.57a2473e.3843ea7.232b%40unicon.net.