Try to install CAS with overlay method

291 views
Skip to first unread message

qla3fa

unread,
Aug 26, 2020, 7:10:39 AM8/26/20
to cas-...@apereo.org

Hi,

I'm trying to install CAS with the overlay method with gradle on CentOS8. I deploy cas-overlay-template directory with git command. I want LDAP authentication, so I add the module cas-server-support-ldap. My gradle.properties file is :

# Versions
cas.version=6.2.1
springBootVersion=2.3.3.RELEASE

# Use -jetty, -undertow to other containers
# Or blank if you want to deploy to an external container
appServer=-tomcat
executable=false

tomcatVersion=8.5.50
group=org.apereo.cas
sourceCompatibility=11
targetCompatibility=11

jibVersion=2.4.0
gradleVersion=6.5.1

# Location of the downloaded CAS shell JAR
shellDir=build/libs
ivyVersion=2.4.0
gradleDownloadTaskVersion=3.4.3
gradleMavenPluginVersion=4.1.5
gradleLombokPluginVersion=4.1.5

# use without "-slim" in tag name if you want tools like jstack, adds about 100MB to image size
# (https://hub.docker.com/r/adoptopenjdk/openjdk11/tags/)
baseDockerImage=adoptopenjdk/openjdk11:alpine-jre
allowInsecureRegistries=false

dependencies {
    implementation "org.apereo.cas:cas-server-webapp${project.appServer}:${project.'cas.version'}"
    //Liste des modules additionnels
    //Module pour les pages de management
    implementation "org.apereo.cas:cas-server-support-monitor:${project.'cas.version'}"
    //Ajout du module pour l'authentification LDAP
    implementation "org.apereo.cas:cas-server-support-ldap:${project.'cas.version'}"
    //Pour la configuration des fichiers de services au fomrat json
    implementation "org.apereo.cas:cas-server-support-json-service-registry:${project.'cas.version'}"
}



and my cas.properties is :


cas.server.name=https://my-cas.exemple.org
cas.server.prefix=${cas.server.name}/cas
cas.host.name: my-cas.exemple.org

# Log
logging.config=file:/etc/cas/config/log4j2.xml
logging.level.org.apereo=DEBUG

#Config LDAP
cas.myldap.ldap.url=ldaps://my-ldap.exemple.org
cas.myldap.ldap.user=cn=cas,ou=roles,dc=exemple,dc=org
cas.myldap.ldap.password=XXXXXXXXXXXX

# Management
management.endpoints.web.base-path=/actuator
management.endpoints.web.exposure.include=status
management.endpoint.status.enabled=true
cas.monitor.endpoints.endpoint.status.access=IP_ADDRESS
cas.monitor.endpoints.endpoint.status.requiredIpAddresses=XXX.XXX.XXX.XXX


# Format de definition des services
cas.service-registry.initFromJson=false
cas.service-registry.json.location=file:/etc/cas/services

#Config SIGNING et ENCRYPTION KEYS
#Pour webflow
cas.webflow.crypto.enabled=true
cas.webflow.crypto.alg=AES
cas.webflow.crypto.signing.keySize=512
cas.webflow.crypto.signing.key=XXXXXXXXXXXXXX
cas.webflow.crypto.encryption.keySize=16
cas.webflow.crypto.encryption.key=XXXXXXXXXXXX
# Pour TGC
cas.tgc.crypto.enabled=true
cas.tgc.crypto.encryption.key=XXXXXXXXXXXX
cas.tgc.crypto.signing.key=XXXXXXXXXX


cas.authn.accept.users=

cas.authn.ldap[0].order=1
cas.authn.ldap[0].name=LDAP
cas.authn.ldap[0].type=AUTHENTICATED
cas.authn.ldap[0].ldap-url=${cas.myldap.ldap.url}
cas.authn.ldap[0].bind-dn=${cas.myldap.ldap.user}
cas.authn.ldap[0].bind-credential=${cas.myldap.ldap.password}
cas.authn.ldap[0].use-ssl=true
cas.authn.ldap[0].use-start-tls=false
cas.authn.ldap[0].trust-certificates=file:///etc/certs/chain.pem
cas.authn.ldap[0].block-wait-time=PT3S
cas.authn.ldap[0].response-timeout=PT5S
cas.authn.ldap[0].idle-time=PT10M
cas.authn.ldap[0].prune-period=PT5M
cas.authn.ldap[0].min-pool-size=3
cas.authn.ldap[0].max-pool-size=10
cas.authn.ldap[0].validate-on-checkout=true
cas.authn.ldap[0].validate-periodically=true
cas.authn.ldap[0].validate-period=PT5M
cas.authn.ldap[0].base-dn=dc=ou=people,exemple,dc=org
cas.authn.ldap[0].subtree-search=false
cas.authn.ldap[0].search-filter=(&(login={user})(entryStatus=valid))
cas.authn.ldap[0].dn-format=uid=%s,ou=people,dc=exemple,dc=org
cas.authn.ldap[0].principal-attribute-id=login
cas.authn.ldap[0].principal-attribute-list=uid,mail,sn,givenName,cn,groupMemberOf

#Password management LDAP
cas.authn.pm.ldap[0].type=GENERIC


To build the war file, I run commands :

rm -rf $HOME/.gradle/caches/

./gradlew --refresh-dependencies clean CopyCasConfiguration build

cp /opt/cas-overlay-template/build/libs/cas.war /opt/tomcat/webapps/

systemctl restart tomcat.service

Compilation seems good and the login page is ok. But if I try a login/password of my LDAP, authentication failed...

In CAS log file I found an exception but I don't understand why it doesn't work :

2020-08-26 12:20:28,322 DEBUG [org.springframework.web.servlet.DispatcherServlet] - <POST "/cas/login", parameters={masked}>
2020-08-26 12:20:28,323 DEBUG [org.springframework.webflow.mvc.servlet.FlowHandlerMapping] - <Mapping request with URI '/cas/login' to flow with id 'login'>
2020-08-26 12:20:28,324 DEBUG [org.springframework.webflow.mvc.servlet.FlowHandlerMapping] - <Mapped to [FlowHandlerMapping.DefaultFlowHandler@78595db0]>
2020-08-26 12:20:28,324 DEBUG [org.springframework.webflow.executor.FlowExecutorImpl] - <Resuming flow execution with key 'XXXXXX....XXXXX=>
2020-08-26 12:20:28,329 DEBUG [org.springframework.webflow.definition.registry.FlowDefinitionRegistryImpl] - <Getting FlowDefinition with id 'login'>
2020-08-26 12:20:28,329 DEBUG [org.springframework.webflow.engine.impl.FlowExecutionImpl] - <Resuming in org.springframework.webflow.mvc.servlet.MvcExternalContext@4b36cf82>
2020-08-26 12:20:28,348 DEBUG [org.springframework.webflow.engine.Flow] - <Restoring [FlowVariable@bc2b5b2 name = 'credential', valueFactory = [BeanFactoryVariableValueFactory@11686818 type = UsernamePasswordCredential]]>
2020-08-26 12:20:28,350 DEBUG [org.springframework.webflow.mvc.view.AbstractMvcView] - <Processing user event 'submit'>
2020-08-26 12:20:28,350 DEBUG [org.springframework.webflow.mvc.view.AbstractMvcView] - <Resolved model UsernamePasswordCredential(username=null, source=null, customFields={})>
2020-08-26 12:20:28,350 DEBUG [org.springframework.webflow.mvc.view.AbstractMvcView] - <Binding to model>
2020-08-26 12:20:28,350 DEBUG [org.springframework.webflow.mvc.view.AbstractMvcView] - <Adding mapping for parameter 'username'>
2020-08-26 12:20:28,351 DEBUG [org.springframework.webflow.mvc.view.AbstractMvcView] - <Adding mapping for parameter 'password'>
2020-08-26 12:20:28,469 DEBUG [org.springframework.webflow.mvc.view.AbstractMvcView] - <Validating model>
2020-08-26 12:20:28,470 DEBUG [org.springframework.webflow.validation.ValidationHelper] - <Invoking default model validation method 'validate(ValidationContext)'>
2020-08-26 12:20:28,472 DEBUG [org.springframework.webflow.engine.ViewState] - <Event 'submit' returned from view [ServletMvcView@161cf80a view = org.thymeleaf.spring5.view.ThymeleafView@6068f415]>
2020-08-26 12:20:28,473 DEBUG [org.springframework.webflow.engine.Transition] - <Executing [Transition@169616f on = submit, to = realSubmit]>
2020-08-26 12:20:28,473 DEBUG [org.springframework.webflow.engine.Transition] - <Exiting state 'viewLoginForm'>
2020-08-26 12:20:28,473 DEBUG [org.springframework.webflow.engine.ActionState] - <Entering state 'realSubmit' of flow 'login'>
2020-08-26 12:20:28,473 DEBUG [org.springframework.webflow.execution.ActionExecutor] - <Executing [EvaluateAction@8aae1fb expression = authenticationViaFormAction, resultExpression = [null]]>
2020-08-26 12:20:28,474 DEBUG [org.springframework.webflow.execution.ActionExecutor] - <Executing org.apereo.cas.web.flow.actions.InitialAuthenticationAction@5b1d3c33>
2020-08-26 12:20:28,475 DEBUG [org.apereo.cas.authentication.adaptive.DefaultAdaptiveAuthenticationPolicy] - <User agent [Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:80.0) Gecko/20100101 Firefox/80.0] is authorized to proceed>
2020-08-26 12:20:28,476 DEBUG [org.apereo.cas.authentication.adaptive.DefaultAdaptiveAuthenticationPolicy] - <Adaptive authentication policy has authorized client [XXX.XXX.XXX.XXX] to proceed.>
2020-08-26 12:20:28,476 DEBUG [org.apereo.cas.web.flow.resolver.impl.ServiceTicketRequestWebflowEventResolver] - <Located ticket-granting ticket [] from the request context>
2020-08-26 12:20:28,476 DEBUG [org.apereo.cas.web.flow.resolver.impl.ServiceTicketRequestWebflowEventResolver] - <Located service [null] from the request context>
2020-08-26 12:20:28,476 DEBUG [org.apereo.cas.web.flow.resolver.impl.ServiceTicketRequestWebflowEventResolver] - <Provided value for [renew] request parameter is [null]>
2020-08-26 12:20:28,476 DEBUG [org.apereo.cas.web.flow.resolver.impl.ServiceTicketRequestWebflowEventResolver] - <Request is not eligible to be issued service tickets just yet>
2020-08-26 12:20:28,505 DEBUG [org.apereo.cas.authentication.PolicyBasedAuthenticationManager] - <Authentication credentials provided for this transaction are [[UsernamePasswordCredential(username=toto, source=null, customFields={})]]>
2020-08-26 12:20:28,530 DEBUG [org.apereo.cas.authentication.DefaultAuthenticationEventExecutionPlan] - <Candidate/Registered authentication handlers for this transaction are [[org.apereo.cas.authentication.handler.support.HttpBasedServiceCredentialsAuthenticationHandler@69b94e6a]]>
2020-08-26 12:20:28,530 DEBUG [org.apereo.cas.authentication.DefaultAuthenticationEventExecutionPlan] - <Authentication handler resolvers for this transaction are [[org.apereo.cas.authentication.handler.RegisteredServiceAuthenticationHandlerResolver@3c7178b]]>
2020-08-26 12:20:28,532 DEBUG [org.apereo.cas.authentication.DefaultAuthenticationEventExecutionPlan] - <Authentication handler resolvers produced no candidate authentication handler. Using the default handler resolver instead...>
2020-08-26 12:20:28,533 DEBUG [org.apereo.cas.authentication.AuthenticationHandlerResolver] - <Default authentication handlers used for this transaction are [HttpBasedServiceCredentialsAuthenticationHandler]>
2020-08-26 12:20:28,533 DEBUG [org.apereo.cas.authentication.DefaultAuthenticationEventExecutionPlan] - <Resolved and finalized authentication handlers to carry out this authentication transaction are [[org.apereo.cas.authentication.handler.RegisteredServiceAuthenticationHandlerResolver@3c7178b]]>
2020-08-26 12:20:28,533 DEBUG [org.apereo.cas.authentication.PolicyBasedAuthenticationManager] - <Candidate resolved authentication handlers for this transaction are [[org.apereo.cas.authentication.handler.support.HttpBasedServiceCredentialsAuthenticationHandler@69b94e6a]]>
2020-08-26 12:20:28,533 DEBUG [org.apereo.cas.authentication.PolicyBasedAuthenticationManager] - <Attempting to authenticate credential [UsernamePasswordCredential(username=toto, source=null, customFields={})]>
2020-08-26 12:20:28,534 DEBUG [org.apereo.cas.authentication.PolicyBasedAuthenticationManager] - <Authentication handler [HttpBasedServiceCredentialsAuthenticationHandler] does not support the credential type [UsernamePasswordCredential(username=toto, source=null, customFields={})]. Trying next...>
2020-08-26 12:20:28,537 INFO [org.apereo.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit trail record BEGIN
=============================================================
WHO: toto
WHAT: Supplied credentials: [UsernamePasswordCredential(username=toto, source=null, customFields={})]
ACTION: AUTHENTICATION_FAILED
APPLICATION: CAS
WHEN: Wed Aug 26 12:20:28 CEST 2020
CLIENT IP ADDRESS: XXX.XXX.XXX.XXX
SERVER IP ADDRESS: XXX.XXX.XXX.XXX
=============================================================

>
2020-08-26 12:20:28,537 WARN [org.apereo.cas.web.flow.resolver.impl.DefaultCasDelegatingWebflowEventResolver] - <class org.apereo.cas.authentication.AuthenticationException: 0 errors, 0 successes>
2020-08-26 12:20:28,537 DEBUG [org.apereo.cas.web.flow.resolver.impl.DefaultCasDelegatingWebflowEventResolver] - <0 errors, 0 successes>
org.apereo.cas.authentication.AuthenticationException: 0 errors, 0 successes
    at org.apereo.cas.authentication.PolicyBasedAuthenticationManager.evaluateFinalAuthentication(PolicyBasedAuthenticationManager.java:346) ~[cas-server-core-authentication-api-6.2.1.jar:6.2.1]
    at org.apereo.cas.authentication.PolicyBasedAuthenticationManager.authenticateInternal(PolicyBasedAuthenticationManager.java:324) ~[cas-server-core-authentication-api-6.2.1.jar:6.2.1]
    at org.apereo.cas.authentication.PolicyBasedAuthenticationManager.authenticate(PolicyBasedAuthenticationManager.java:62) ~[cas-server-core-authentication-api-6.2.1.jar:6.2.1]
    at org.apereo.cas.authentication.PolicyBasedAuthenticationManager$$FastClassBySpringCGLIB$$90e801d3.invoke(<generated>) ~[cas-server-core-authentication-api-6.2.1.jar:6.2.1]
    at org.springframework.cglib.proxy.MethodProxy.invoke(MethodProxy.java:218) ~[spring-core-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.aop.framework.CglibAopProxy$CglibMethodInvocation.invokeJoinpoint(CglibAopProxy.java:771) ~[spring-aop-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:163) ~[spring-aop-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.aop.framework.CglibAopProxy$CglibMethodInvocation.proceed(CglibAopProxy.java:749) ~[spring-aop-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.aop.aspectj.MethodInvocationProceedingJoinPoint.proceed(MethodInvocationProceedingJoinPoint.java:88) ~[spring-aop-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.apereo.inspektr.audit.AuditTrailManagementAspect.handleAuditTrail(AuditTrailManagementAspect.java:135) ~[inspektr-audit-1.8.7.GA.jar:1.8.7.GA]
    at jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method) ~[?:?]
    at jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) ~[?:?]
    at jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:?]
    at java.lang.reflect.Method.invoke(Method.java:566) ~[?:?]
    at org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethodWithGivenArgs(AbstractAspectJAdvice.java:644) ~[spring-aop-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethod(AbstractAspectJAdvice.java:633) ~[spring-aop-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.aop.aspectj.AspectJAroundAdvice.invoke(AspectJAroundAdvice.java:70) ~[spring-aop-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:175) ~[spring-aop-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.aop.framework.CglibAopProxy$CglibMethodInvocation.proceed(CglibAopProxy.java:749) ~[spring-aop-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:95) ~[spring-aop-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:186) ~[spring-aop-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.aop.framework.CglibAopProxy$CglibMethodInvocation.proceed(CglibAopProxy.java:749) ~[spring-aop-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.aop.framework.CglibAopProxy$DynamicAdvisedInterceptor.intercept(CglibAopProxy.java:691) ~[spring-aop-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.apereo.cas.authentication.PolicyBasedAuthenticationManager$$EnhancerBySpringCGLIB$$affa7075.authenticate(<generated>) ~[cas-server-core-authentication-api-6.2.1.jar:6.2.1]
    at jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method) ~[?:?]
    at jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) ~[?:?]
    at jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:?]
    at java.lang.reflect.Method.invoke(Method.java:566) ~[?:?]
    at org.springframework.util.ReflectionUtils.invokeMethod(ReflectionUtils.java:282) ~[spring-core-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.cloud.context.scope.GenericScope$LockedScopedProxyFactoryBean.invoke(GenericScope.java:499) ~[spring-cloud-context-2.2.2.RELEASE.jar:2.2.2.RELEASE]
    at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:186) ~[spring-aop-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:212) ~[spring-aop-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at com.sun.proxy.$Proxy153.authenticate(Unknown Source) ~[?:?]
    at org.apereo.cas.authentication.DefaultAuthenticationTransactionManager.handle(DefaultAuthenticationTransactionManager.java:31) ~[cas-server-core-authentication-api-6.2.1.jar:6.2.1]
    at jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method) ~[?:?]
    at jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) ~[?:?]
    at jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:?]
    at java.lang.reflect.Method.invoke(Method.java:566) ~[?:?]
    at org.springframework.util.ReflectionUtils.invokeMethod(ReflectionUtils.java:282) ~[spring-core-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.cloud.context.scope.GenericScope$LockedScopedProxyFactoryBean.invoke(GenericScope.java:499) ~[spring-cloud-context-2.2.2.RELEASE.jar:2.2.2.RELEASE]
    at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:186) ~[spring-aop-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:212) ~[spring-aop-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at com.sun.proxy.$Proxy152.handle(Unknown Source) ~[?:?]
    at org.apereo.cas.authentication.DefaultAuthenticationSystemSupport.handleAuthenticationTransaction(DefaultAuthenticationSystemSupport.java:53) ~[cas-server-core-authentication-api-6.2.1.jar:6.2.1]
    at org.apereo.cas.authentication.DefaultAuthenticationSystemSupport.handleInitialAuthenticationTransaction(DefaultAuthenticationSystemSupport.java:34) ~[cas-server-core-authentication-api-6.2.1.jar:6.2.1]
    at org.apereo.cas.web.flow.resolver.impl.DefaultCasDelegatingWebflowEventResolver.resolveInternal(DefaultCasDelegatingWebflowEventResolver.java:56) ~[cas-server-core-webflow-api-6.2.1.jar:6.2.1]
    at org.apereo.cas.web.flow.resolver.impl.AbstractCasWebflowEventResolver.resolve(AbstractCasWebflowEventResolver.java:105) ~[cas-server-core-webflow-api-6.2.1.jar:6.2.1]
    at org.apereo.cas.web.flow.resolver.impl.AbstractCasWebflowEventResolver.resolveSingle(AbstractCasWebflowEventResolver.java:110) ~[cas-server-core-webflow-api-6.2.1.jar:6.2.1]
    at jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method) ~[?:?]
    at jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) ~[?:?]
    at jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:?]
    at java.lang.reflect.Method.invoke(Method.java:566) ~[?:?]
    at org.springframework.util.ReflectionUtils.invokeMethod(ReflectionUtils.java:282) ~[spring-core-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.cloud.context.scope.GenericScope$LockedScopedProxyFactoryBean.invoke(GenericScope.java:499) ~[spring-cloud-context-2.2.2.RELEASE.jar:2.2.2.RELEASE]
    at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:186) ~[spring-aop-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:212) ~[spring-aop-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at com.sun.proxy.$Proxy213.resolveSingle(Unknown Source) ~[?:?]
    at org.apereo.cas.web.flow.actions.AbstractAuthenticationAction.doExecute(AbstractAuthenticationAction.java:63) ~[cas-server-core-webflow-api-6.2.1.jar:6.2.1]
    at org.springframework.webflow.action.AbstractAction.execute(AbstractAction.java:188) ~[spring-webflow-2.5.1.RELEASE.jar:2.5.1.RELEASE]
    at jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method) ~[?:?]
    at jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) ~[?:?]
    at jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:?]
    at java.lang.reflect.Method.invoke(Method.java:566) ~[?:?]
    at org.springframework.util.ReflectionUtils.invokeMethod(ReflectionUtils.java:282) ~[spring-core-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.cloud.context.scope.GenericScope$LockedScopedProxyFactoryBean.invoke(GenericScope.java:499) ~[spring-cloud-context-2.2.2.RELEASE.jar:2.2.2.RELEASE]
    at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:186) ~[spring-aop-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:212) ~[spring-aop-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at com.sun.proxy.$Proxy201.execute(Unknown Source) ~[?:?]
    at org.springframework.webflow.execution.ActionExecutor.execute(ActionExecutor.java:51) ~[spring-webflow-2.5.1.RELEASE.jar:2.5.1.RELEASE]
    at org.springframework.webflow.action.EvaluateAction.doExecute(EvaluateAction.java:77) ~[spring-webflow-2.5.1.RELEASE.jar:2.5.1.RELEASE]
    at org.springframework.webflow.action.AbstractAction.execute(AbstractAction.java:188) ~[spring-webflow-2.5.1.RELEASE.jar:2.5.1.RELEASE]
    at org.springframework.webflow.execution.ActionExecutor.execute(ActionExecutor.java:51) ~[spring-webflow-2.5.1.RELEASE.jar:2.5.1.RELEASE]
    at org.springframework.webflow.engine.ActionState.doEnter(ActionState.java:101) ~[spring-webflow-2.5.1.RELEASE.jar:2.5.1.RELEASE]
    at org.springframework.webflow.engine.State.enter(State.java:194) ~[spring-webflow-2.5.1.RELEASE.jar:2.5.1.RELEASE]
    at org.springframework.webflow.engine.Transition.execute(Transition.java:228) ~[spring-webflow-2.5.1.RELEASE.jar:2.5.1.RELEASE]
    at org.springframework.webflow.engine.impl.FlowExecutionImpl.execute(FlowExecutionImpl.java:395) ~[spring-webflow-2.5.1.RELEASE.jar:2.5.1.RELEASE]
    at org.springframework.webflow.engine.impl.RequestControlContextImpl.execute(RequestControlContextImpl.java:214) ~[spring-webflow-2.5.1.RELEASE.jar:2.5.1.RELEASE]
    at org.springframework.webflow.engine.TransitionableState.handleEvent(TransitionableState.java:116) ~[spring-webflow-2.5.1.RELEASE.jar:2.5.1.RELEASE]
    at org.springframework.webflow.engine.Flow.handleEvent(Flow.java:547) ~[spring-webflow-2.5.1.RELEASE.jar:2.5.1.RELEASE]
    at org.springframework.webflow.engine.impl.FlowExecutionImpl.handleEvent(FlowExecutionImpl.java:390) ~[spring-webflow-2.5.1.RELEASE.jar:2.5.1.RELEASE]
    at org.springframework.webflow.engine.impl.RequestControlContextImpl.handleEvent(RequestControlContextImpl.java:210) ~[spring-webflow-2.5.1.RELEASE.jar:2.5.1.RELEASE]
    at org.springframework.webflow.engine.ViewState.handleEvent(ViewState.java:231) ~[spring-webflow-2.5.1.RELEASE.jar:2.5.1.RELEASE]
    at org.springframework.webflow.engine.ViewState.resume(ViewState.java:195) ~[spring-webflow-2.5.1.RELEASE.jar:2.5.1.RELEASE]
    at org.springframework.webflow.engine.Flow.resume(Flow.java:537) ~[spring-webflow-2.5.1.RELEASE.jar:2.5.1.RELEASE]
    at org.springframework.webflow.engine.impl.FlowExecutionImpl.resume(FlowExecutionImpl.java:259) ~[spring-webflow-2.5.1.RELEASE.jar:2.5.1.RELEASE]
    at org.springframework.webflow.executor.FlowExecutorImpl.resumeExecution(FlowExecutorImpl.java:168) ~[spring-webflow-2.5.1.RELEASE.jar:2.5.1.RELEASE]
    at jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method) ~[?:?]
    at jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) ~[?:?]
    at jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:?]
    at java.lang.reflect.Method.invoke(Method.java:566) ~[?:?]
    at org.springframework.util.ReflectionUtils.invokeMethod(ReflectionUtils.java:282) ~[spring-core-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.cloud.context.scope.GenericScope$LockedScopedProxyFactoryBean.invoke(GenericScope.java:499) ~[spring-cloud-context-2.2.2.RELEASE.jar:2.2.2.RELEASE]
    at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:186) ~[spring-aop-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:212) ~[spring-aop-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at com.sun.proxy.$Proxy216.resumeExecution(Unknown Source) ~[?:?]
    at org.springframework.webflow.mvc.servlet.FlowHandlerAdapter.handle(FlowHandlerAdapter.java:254) ~[spring-webflow-2.5.1.RELEASE.jar:2.5.1.RELEASE]
    at org.springframework.web.servlet.DispatcherServlet.doDispatch(DispatcherServlet.java:1040) ~[spring-webmvc-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.web.servlet.DispatcherServlet.doService(DispatcherServlet.java:943) ~[spring-webmvc-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.web.servlet.FrameworkServlet.processRequest(FrameworkServlet.java:1006) ~[spring-webmvc-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.web.servlet.FrameworkServlet.doPost(FrameworkServlet.java:909) ~[spring-webmvc-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:660) ~[servlet-api.jar:?]
    at org.springframework.web.servlet.FrameworkServlet.service(FrameworkServlet.java:883) ~[spring-webmvc-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:741) ~[servlet-api.jar:?]
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:231) ~[catalina.jar:8.5.50]
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) ~[catalina.jar:8.5.50]
    at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52) ~[tomcat-websocket.jar:8.5.50]
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) ~[catalina.jar:8.5.50]
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) ~[catalina.jar:8.5.50]
    at org.apereo.cas.web.support.AuthenticationCredentialsThreadLocalBinderClearingFilter.doFilter(AuthenticationCredentialsThreadLocalBinderClearingFilter.java:28) ~[cas-server-core-web-api-6.2.1.jar:6.2.1]
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) ~[catalina.jar:8.5.50]
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) ~[catalina.jar:8.5.50]
    at org.apereo.cas.web.support.filters.RequestParameterPolicyEnforcementFilter.doFilter(RequestParameterPolicyEnforcementFilter.java:409) ~[cas-server-core-web-api-6.2.1.jar:6.2.1]
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) ~[catalina.jar:8.5.50]
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) ~[catalina.jar:8.5.50]
    at org.apereo.cas.web.support.filters.ResponseHeadersEnforcementFilter.doFilter(ResponseHeadersEnforcementFilter.java:199) ~[cas-server-core-web-api-6.2.1.jar:6.2.1]
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) ~[catalina.jar:8.5.50]
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) ~[catalina.jar:8.5.50]
    at org.apereo.cas.web.support.filters.AddResponseHeadersFilter.doFilter(AddResponseHeadersFilter.java:63) ~[cas-server-core-web-api-6.2.1.jar:6.2.1]
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) ~[catalina.jar:8.5.50]
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) ~[catalina.jar:8.5.50]
    at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:320) ~[spring-security-web-5.3.2.RELEASE.jar:5.3.2.RELEASE]
    at org.springframework.security.web.access.intercept.FilterSecurityInterceptor.invoke(FilterSecurityInterceptor.java:126) ~[spring-security-web-5.3.2.RELEASE.jar:5.3.2.RELEASE]
    at org.springframework.security.web.access.intercept.FilterSecurityInterceptor.doFilter(FilterSecurityInterceptor.java:90) ~[spring-security-web-5.3.2.RELEASE.jar:5.3.2.RELEASE]
    at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334) ~[spring-security-web-5.3.2.RELEASE.jar:5.3.2.RELEASE]
    at org.springframework.security.web.access.ExceptionTranslationFilter.doFilter(ExceptionTranslationFilter.java:118) ~[spring-security-web-5.3.2.RELEASE.jar:5.3.2.RELEASE]
    at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334) ~[spring-security-web-5.3.2.RELEASE.jar:5.3.2.RELEASE]
    at org.springframework.security.web.session.SessionManagementFilter.doFilter(SessionManagementFilter.java:137) ~[spring-security-web-5.3.2.RELEASE.jar:5.3.2.RELEASE]
    at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334) ~[spring-security-web-5.3.2.RELEASE.jar:5.3.2.RELEASE]
    at org.springframework.security.web.authentication.AnonymousAuthenticationFilter.doFilter(AnonymousAuthenticationFilter.java:111) ~[spring-security-web-5.3.2.RELEASE.jar:5.3.2.RELEASE]
    at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334) ~[spring-security-web-5.3.2.RELEASE.jar:5.3.2.RELEASE]
    at org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter.doFilter(SecurityContextHolderAwareRequestFilter.java:158) ~[spring-security-web-5.3.2.RELEASE.jar:5.3.2.RELEASE]
    at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334) ~[spring-security-web-5.3.2.RELEASE.jar:5.3.2.RELEASE]
    at org.springframework.security.web.savedrequest.RequestCacheAwareFilter.doFilter(RequestCacheAwareFilter.java:63) ~[spring-security-web-5.3.2.RELEASE.jar:5.3.2.RELEASE]
    at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334) ~[spring-security-web-5.3.2.RELEASE.jar:5.3.2.RELEASE]
    at org.springframework.security.web.context.SecurityContextPersistenceFilter.doFilter(SecurityContextPersistenceFilter.java:105) ~[spring-security-web-5.3.2.RELEASE.jar:5.3.2.RELEASE]
    at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334) ~[spring-security-web-5.3.2.RELEASE.jar:5.3.2.RELEASE]
    at org.springframework.security.web.context.request.async.WebAsyncManagerIntegrationFilter.doFilterInternal(WebAsyncManagerIntegrationFilter.java:56) ~[spring-security-web-5.3.2.RELEASE.jar:5.3.2.RELEASE]
    at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119) ~[spring-web-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334) ~[spring-security-web-5.3.2.RELEASE.jar:5.3.2.RELEASE]
    at org.springframework.security.web.access.channel.ChannelProcessingFilter.doFilter(ChannelProcessingFilter.java:157) ~[spring-security-web-5.3.2.RELEASE.jar:5.3.2.RELEASE]
    at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:334) ~[spring-security-web-5.3.2.RELEASE.jar:5.3.2.RELEASE]
    at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:215) ~[spring-security-web-5.3.2.RELEASE.jar:5.3.2.RELEASE]
    at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:178) ~[spring-security-web-5.3.2.RELEASE.jar:5.3.2.RELEASE]
    at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:358) ~[spring-web-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:271) ~[spring-web-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) ~[catalina.jar:8.5.50]
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) ~[catalina.jar:8.5.50]
    at org.springframework.web.filter.RequestContextFilter.doFilterInternal(RequestContextFilter.java:100) ~[spring-web-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119) ~[spring-web-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) ~[catalina.jar:8.5.50]
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) ~[catalina.jar:8.5.50]
    at org.springframework.web.filter.FormContentFilter.doFilterInternal(FormContentFilter.java:93) ~[spring-web-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119) ~[spring-web-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) ~[catalina.jar:8.5.50]
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) ~[catalina.jar:8.5.50]
    at org.springframework.boot.web.servlet.support.ErrorPageFilter.doFilter(ErrorPageFilter.java:128) ~[spring-boot-2.2.8.RELEASE.jar:2.2.8.RELEASE]
    at org.springframework.boot.web.servlet.support.ErrorPageFilter.access$000(ErrorPageFilter.java:66) ~[spring-boot-2.2.8.RELEASE.jar:2.2.8.RELEASE]
    at org.springframework.boot.web.servlet.support.ErrorPageFilter$1.doFilterInternal(ErrorPageFilter.java:103) ~[spring-boot-2.2.8.RELEASE.jar:2.2.8.RELEASE]
    at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119) ~[spring-web-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.boot.web.servlet.support.ErrorPageFilter.doFilter(ErrorPageFilter.java:121) ~[spring-boot-2.2.8.RELEASE.jar:2.2.8.RELEASE]
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) ~[catalina.jar:8.5.50]
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) ~[catalina.jar:8.5.50]
    at org.springframework.boot.actuate.metrics.web.servlet.WebMvcMetricsFilter.doFilterInternal(WebMvcMetricsFilter.java:109) ~[spring-boot-actuator-2.2.8.RELEASE.jar:2.2.8.RELEASE]
    at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119) ~[spring-web-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) ~[catalina.jar:8.5.50]
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) ~[catalina.jar:8.5.50]
    at org.apereo.cas.logging.web.ThreadContextMDCServletFilter.doFilter(ThreadContextMDCServletFilter.java:99) ~[cas-server-core-logging-6.2.1.jar:6.2.1]
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) ~[catalina.jar:8.5.50]
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) ~[catalina.jar:8.5.50]
    at org.apereo.inspektr.common.web.ClientInfoThreadLocalFilter.doFilter(ClientInfoThreadLocalFilter.java:66) ~[inspektr-common-1.8.7.GA.jar:1.8.7.GA]
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) ~[catalina.jar:8.5.50]
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) ~[catalina.jar:8.5.50]
    at org.springframework.web.filter.CharacterEncodingFilter.doFilterInternal(CharacterEncodingFilter.java:201) ~[spring-web-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119) ~[spring-web-5.2.6.RELEASE.jar:5.2.6.RELEASE]
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) ~[catalina.jar:8.5.50]
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) ~[catalina.jar:8.5.50]
    at org.apache.logging.log4j.web.Log4jServletFilter.doFilter(Log4jServletFilter.java:71) ~[log4j-web-2.13.3.jar:2.13.3]
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) ~[catalina.jar:8.5.50]
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) ~[catalina.jar:8.5.50]
    at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:199) ~[catalina.jar:8.5.50]
    at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:96) ~[catalina.jar:8.5.50]
    at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:543) ~[catalina.jar:8.5.50]
    at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:139) ~[catalina.jar:8.5.50]
    at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:81) ~[catalina.jar:8.5.50]
    at org.apache.catalina.valves.AbstractAccessLogValve.invoke(AbstractAccessLogValve.java:678) ~[catalina.jar:8.5.50]
    at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:87) ~[catalina.jar:8.5.50]
    at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:343) ~[catalina.jar:8.5.50]
    at org.apache.coyote.ajp.AjpProcessor.service(AjpProcessor.java:482) ~[tomcat-coyote.jar:8.5.50]
    at org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:65) ~[tomcat-coyote.jar:8.5.50]
    at org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:810) ~[tomcat-coyote.jar:8.5.50]
    at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1623) ~[tomcat-coyote.jar:8.5.50]
    at org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:49) ~[tomcat-coyote.jar:8.5.50]
    at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128) ~[?:?]
    at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) ~[?:?]
    at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) ~[tomcat-util.jar:8.5.50]
    at java.lang.Thread.run(Thread.java:834) [?:?]
2020-08-26 12:20:28,538 DEBUG [org.apereo.cas.web.flow.resolver.impl.AbstractCasWebflowEventResolver] - <Resolved single event [authenticationFailure] via [org.apereo.cas.web.flow.resolver.impl.DefaultCasDelegatingWebflowEventResolver] for this context>
2020-08-26 12:20:28,538 DEBUG [org.springframework.webflow.execution.ActionExecutor] - <Finished executing org.apereo.cas.web.flow.actions.InitialAuthenticationAction@5b1d3c33; result = authenticationFailure>
2020-08-26 12:20:28,538 DEBUG [org.springframework.webflow.execution.ActionExecutor] - <Finished executing [EvaluateAction@8aae1fb expression = authenticationViaFormAction, resultExpression = [null]]; result = authenticationFailure>
2020-08-26 12:20:28,538 DEBUG [org.springframework.webflow.engine.Transition] - <Executing [Transition@1c4e0 on = authenticationFailure, to = handleAuthenticationFailure]>
2020-08-26 12:20:28,538 DEBUG [org.springframework.webflow.engine.Transition] - <Exiting state 'realSubmit'>
2020-08-26 12:20:28,539 DEBUG [org.springframework.webflow.engine.ActionState] - <Entering state 'handleAuthenticationFailure' of flow 'login'>
2020-08-26 12:20:28,539 DEBUG [org.springframework.webflow.execution.ActionExecutor] - <Executing [EvaluateAction@64842e15 expression = authenticationExceptionHandler, resultExpression = [null]]>
2020-08-26 12:20:28,539 DEBUG [org.springframework.webflow.execution.ActionExecutor] - <Executing org.apereo.cas.web.flow.actions.AuthenticationExceptionHandlerAction@62b5be87>
2020-08-26 12:20:28,539 DEBUG [org.apereo.cas.web.flow.actions.AuthenticationExceptionHandlerAction] - <Located current event [authenticationFailure]>
2020-08-26 12:20:28,540 DEBUG [org.apereo.cas.web.flow.actions.AuthenticationExceptionHandlerAction] - <Located error attribute [class org.apereo.cas.authentication.AuthenticationException] with message [0 errors, 0 successes] from the current event>
2020-08-26 12:20:28,565 DEBUG [org.apereo.cas.web.flow.authentication.DefaultCasWebflowAuthenticationExceptionHandler] - <Unable to translate handler errors of the authentication exception [org.apereo.cas.authentication.AuthenticationException: 0 errors, 0 successes]. Returning [UNKNOWN]>
2020-08-26 12:20:28,566 DEBUG [org.apereo.cas.web.flow.actions.AuthenticationExceptionHandlerAction] - <Final event id resolved from the error is [UNKNOWN]>
2020-08-26 12:20:28,566 DEBUG [org.springframework.webflow.execution.ActionExecutor] - <Finished executing org.apereo.cas.web.flow.actions.AuthenticationExceptionHandlerAction@62b5be87; result = UNKNOWN>
2020-08-26 12:20:28,566 DEBUG [org.springframework.webflow.execution.ActionExecutor] - <Finished executing [EvaluateAction@64842e15 expression = authenticationExceptionHandler, resultExpression = [null]]; result = UNKNOWN>
2020-08-26 12:20:28,566 DEBUG [org.springframework.webflow.engine.Transition] - <Executing [Transition@55c177e6 on = *, to = initializeLoginForm]>
2020-08-26 12:20:28,567 DEBUG [org.springframework.webflow.engine.Transition] - <Exiting state 'handleAuthenticationFailure'>
2020-08-26 12:20:28,567 DEBUG [org.springframework.webflow.engine.ActionState] - <Entering state 'initializeLoginForm' of flow 'login'>
2020-08-26 12:20:28,567 DEBUG [org.springframework.webflow.execution.ActionExecutor] - <Executing [EvaluateAction@1b29c2bd expression = initializeLoginAction, resultExpression = [null]]>
2020-08-26 12:20:28,567 DEBUG [org.springframework.webflow.execution.AnnotatedAction] - <Putting action execution attributes map[[empty]]>
2020-08-26 12:20:28,567 DEBUG [org.springframework.webflow.execution.ActionExecutor] - <Executing org.apereo.cas.web.flow.login.InitializeLoginAction@4e651ca6>
2020-08-26 12:20:28,567 DEBUG [org.springframework.webflow.execution.ActionExecutor] - <Finished executing org.apereo.cas.web.flow.login.InitializeLoginAction@4e651ca6; result = success>
2020-08-26 12:20:28,568 DEBUG [org.springframework.webflow.execution.AnnotatedAction] - <Clearing action execution attributes map[[empty]]>
2020-08-26 12:20:28,568 DEBUG [org.springframework.webflow.execution.ActionExecutor] - <Finished executing [EvaluateAction@1b29c2bd expression = initializeLoginAction, resultExpression = [null]]; result = success>
2020-08-26 12:20:28,568 DEBUG [org.springframework.webflow.engine.Transition] - <Executing [Transition@7e4e4227 on = success, to = viewLoginForm]>
2020-08-26 12:20:28,568 DEBUG [org.springframework.webflow.engine.Transition] - <Exiting state 'initializeLoginForm'>
2020-08-26 12:20:28,568 DEBUG [org.springframework.webflow.engine.ViewState] - <Entering state 'viewLoginForm' of flow 'login'>
2020-08-26 12:20:28,597 DEBUG [org.springframework.webflow.engine.impl.FlowExecutionImpl] - <Assigned key XXXXXXXX....XXXXXX=>
2020-08-26 12:20:28,598 DEBUG [org.springframework.webflow.engine.ViewState] - <Rendering + [ServletMvcView@31bfbf46 view = org.thymeleaf.spring5.view.ThymeleafView@6068f415]>
2020-08-26 12:20:28,598 DEBUG [org.springframework.webflow.engine.ViewState] - <  Flash scope = map[[empty]]>
2020-08-26 12:20:28,598 DEBUG [org.springframework.webflow.engine.ViewState] - <  Messages = [DefaultMessageContext@43f53718 sourceMessages = map[[null] -> list[[Message@5a482c49 source = [null], severity = ERROR, text = 'Mauvais identifiant / mot de passe.']]]]>
2020-08-26 12:20:28,598 DEBUG [org.springframework.webflow.execution.ActionExecutor] - <Executing [EvaluateAction@1cb893e9 expression = renderLoginFormAction, resultExpression = [null]]>
2020-08-26 12:20:28,599 DEBUG [org.springframework.webflow.execution.ActionExecutor] - <Executing org.apereo.cas.web.flow.login.RenderLoginAction@54252b58>
2020-08-26 12:20:28,599 DEBUG [org.springframework.webflow.execution.ActionExecutor] - <Finished executing org.apereo.cas.web.flow.login.RenderLoginAction@54252b58; result = null>
2020-08-26 12:20:28,599 DEBUG [org.springframework.webflow.execution.ActionExecutor] - <Finished executing [EvaluateAction@1cb893e9 expression = renderLoginFormAction, resultExpression = [null]]; result = null>
2020-08-26 12:20:28,601 DEBUG [org.springframework.webflow.mvc.view.AbstractMvcView] - <Rendering MVC [org.thymeleaf.spring5.view.ThymeleafView@6068f415] with model map [{passwordManagementEnabled=false, viewScope=map[[empty]], warnCookieValue=false, org.springframework.validation.BindingResult.credential=org.springframework.webflow.mvc.view.BindingModel: 1 errors
Error in object 'credential': codes []; arguments []; default message [Mauvais identifiant / mot de passe.], staticAuthentication=false, flowExecutionUrl=/cas/login?username=toto&password=XXXXXXexecution=XXXXXXXXXXXXXX...XXXXXXXXXXXXXXXX, flowRequestContext=[RequestControlContextImpl@815cd6b externalContext = org.springframework.webflow.mvc.servlet.MvcExternalContext@4b36cf82, currentEvent = success, requestScope = map[[empty]], attributes = map[[empty]], messageContext = [DefaultMessageContext@43f53718 sourceMessages = map[[null] -> list[[Message@5a482c49 source = [null], severity = ERROR, text = 'Mauvais identifiant / mot de passe.']]]], flowExecution = [FlowExecutionImpl@7b370795 flow = 'login', flowSessions = list[[FlowSessionImpl@2b5ef849 flow = 'login', state = 'viewLoginForm', scope = map['passwordManagementEnabled' -> false, 'rememberMeAuthenticationEnabled' -> false, 'customLoginFormFields' -> map[[empty]], 'viewScope' -> map[[empty]], 'credential' -> UsernamePasswordCredential(username=toto, source=null, customFields={}), 'warnCookieValue' -> false, 'staticAuthentication' -> false, 'service' -> [null], 'ticketGrantingTicketId' -> '', 'trackGeoLocation' -> false, 'ipAddressIntelligenceResponse' -> org.apereo.cas.authentication.adaptive.intel.IPAddressIntelligenceResponse@6192b0b9]]]]], rememberMeAuthenticationEnabled=false, customLoginFormFields={}, currentUser=null, credential=UsernamePasswordCredential(username=toto, source=null, customFields={}), flowExecutionKey=XXXXXXXXX...XXXXXXXXXX==, service=null, ticketGrantingTicketId=, trackGeoLocation=false, flashScope=map[[empty]], ipAddressIntelligenceResponse=org.apereo.cas.authentication.adaptive.intel.IPAddressIntelligenceResponse@6192b0b9}]>
2020-08-26 12:20:28,659 DEBUG [org.springframework.webflow.engine.Transition] - <Completed transition execution.  As a result, the new state is 'viewLoginForm' in flow 'login'>
2020-08-26 12:20:28,660 DEBUG [org.springframework.webflow.engine.Transition] - <Completed transition execution.  As a result, the new state is 'viewLoginForm' in flow 'login'>
2020-08-26 12:20:28,660 DEBUG [org.springframework.webflow.engine.Transition] - <Completed transition execution.  As a result, the new state is 'viewLoginForm' in flow 'login'>
2020-08-26 12:20:28,660 DEBUG [org.springframework.webflow.engine.Transition] - <Completed transition execution.  As a result, the new state is 'viewLoginForm' in flow 'login'>
2020-08-26 12:20:28,660 DEBUG [org.springframework.web.servlet.DispatcherServlet] - <Completed 401 UNAUTHORIZED>
2020-08-26 12:20:28,820 DEBUG [org.springframework.web.servlet.DispatcherServlet] - <GET "/cas/webjars/normalize.css/8.0.1/normalize.css", parameters={}>
2020-08-26 12:20:28,822 DEBUG [org.springframework.webflow.mvc.servlet.FlowHandlerMapping] - <No flow mapping found for request with URI '/cas/webjars/normalize.css/8.0.1/normalize.css'>
2020-08-26 12:20:28,822 DEBUG [org.springframework.webflow.mvc.servlet.FlowHandlerMapping] - <No flow mapping found for request with URI '/cas/webjars/normalize.css/8.0.1/normalize.css'>
2020-08-26 12:20:28,823 DEBUG [org.springframework.web.servlet.handler.SimpleUrlHandlerMapping] - <Mapped to ResourceHttpRequestHandler ["classpath:/META-INF/resources/webjars/"]>
2020-08-26 12:20:28,824 DEBUG [org.springframework.web.servlet.DispatcherServlet] - <Completed 304 NOT_MODIFIED>
2020-08-26 12:20:28,868 DEBUG [org.springframework.web.servlet.DispatcherServlet] - <GET "/cas/webjars/css-vars-ponyfill/2.3.1/dist/css-vars-ponyfill.min.js", parameters={}>
2020-08-26 12:20:28,869 DEBUG [org.springframework.webflow.mvc.servlet.FlowHandlerMapping] - <No flow mapping found for request with URI '/cas/webjars/css-vars-ponyfill/2.3.1/dist/css-vars-ponyfill.min.js'>
2020-08-26 12:20:28,869 DEBUG [org.springframework.webflow.mvc.servlet.FlowHandlerMapping] - <No flow mapping found for request with URI '/cas/webjars/css-vars-ponyfill/2.3.1/dist/css-vars-ponyfill.min.js'>
2020-08-26 12:20:28,870 DEBUG [org.springframework.web.servlet.handler.SimpleUrlHandlerMapping] - <Mapped to ResourceHttpRequestHandler ["classpath:/META-INF/resources/webjars/"]>
2020-08-26 12:20:28,871 DEBUG [org.springframework.web.servlet.DispatcherServlet] - <Completed 304 NOT_MODIFIED>
2020-08-26 12:20:28,888 DEBUG [org.springframework.web.servlet.DispatcherServlet] - <GET "/cas/webjars/bootstrap/4.5.0/css/bootstrap-grid.min.css", parameters={}>
2020-08-26 12:20:28,888 DEBUG [org.springframework.webflow.mvc.servlet.FlowHandlerMapping] - <No flow mapping found for request with URI '/cas/webjars/bootstrap/4.5.0/css/bootstrap-grid.min.css'>
2020-08-26 12:20:28,888 DEBUG [org.springframework.webflow.mvc.servlet.FlowHandlerMapping] - <No flow mapping found for request with URI '/cas/webjars/bootstrap/4.5.0/css/bootstrap-grid.min.css'>
2020-08-26 12:20:28,889 DEBUG [org.springframework.web.servlet.handler.SimpleUrlHandlerMapping] - <Mapped to ResourceHttpRequestHandler ["classpath:/META-INF/resources/webjars/"]>
2020-08-26 12:20:28,889 DEBUG [org.springframework.web.servlet.DispatcherServlet] - <Completed 304 NOT_MODIFIED>
2020-08-26 12:20:28,904 DEBUG [org.springframework.web.servlet.DispatcherServlet] - <GET "/cas/webjars/material-components-web/4.0.0/dist/material-components-web.css", parameters={}>
2020-08-26 12:20:28,904 DEBUG [org.springframework.webflow.mvc.servlet.FlowHandlerMapping] - <No flow mapping found for request with URI '/cas/webjars/material-components-web/4.0.0/dist/material-components-web.css'>
2020-08-26 12:20:28,904 DEBUG [org.springframework.webflow.mvc.servlet.FlowHandlerMapping] - <No flow mapping found for request with URI '/cas/webjars/material-components-web/4.0.0/dist/material-components-web.css'>
2020-08-26 12:20:28,904 DEBUG [org.springframework.web.servlet.handler.SimpleUrlHandlerMapping] - <Mapped to ResourceHttpRequestHandler ["classpath:/META-INF/resources/webjars/"]>
2020-08-26 12:20:28,905 DEBUG [org.springframework.web.servlet.DispatcherServlet] - <Completed 304 NOT_MODIFIED>
2020-08-26 12:20:28,908 DEBUG [org.springframework.web.servlet.DispatcherServlet] - <GET "/cas/webjars/mdi__font/5.0.45/css/materialdesignicons.css", parameters={}>
2020-08-26 12:20:28,908 DEBUG [org.springframework.webflow.mvc.servlet.FlowHandlerMapping] - <No flow mapping found for request with URI '/cas/webjars/mdi__font/5.0.45/css/materialdesignicons.css'>
2020-08-26 12:20:28,909 DEBUG [org.springframework.webflow.mvc.servlet.FlowHandlerMapping] - <No flow mapping found for request with URI '/cas/webjars/mdi__font/5.0.45/css/materialdesignicons.css'>
2020-08-26 12:20:28,909 DEBUG [org.springframework.web.servlet.handler.SimpleUrlHandlerMapping] - <Mapped to ResourceHttpRequestHandler ["classpath:/META-INF/resources/webjars/"]>
2020-08-26 12:20:28,909 DEBUG [org.springframework.web.servlet.DispatcherServlet] - <Completed 304 NOT_MODIFIED>
2020-08-26 12:20:28,927 DEBUG [org.springframework.web.servlet.DispatcherServlet] - <GET "/cas/css/cas.css", parameters={}>
2020-08-26 12:20:28,928 DEBUG [org.springframework.webflow.mvc.servlet.FlowHandlerMapping] - <No flow mapping found for request with URI '/cas/css/cas.css'>
2020-08-26 12:20:28,928 DEBUG [org.springframework.webflow.mvc.servlet.FlowHandlerMapping] - <No flow mapping found for request with URI '/cas/css/cas.css'>
2020-08-26 12:20:28,928 DEBUG [org.springframework.web.servlet.handler.SimpleUrlHandlerMapping] - <Mapped to ResourceHttpRequestHandler ["classpath:/META-INF/resources/", "classpath:/resources/", "classpath:/static/", "classpath:/public/", "/"]>
2020-08-26 12:20:28,938 DEBUG [org.springframework.web.servlet.DispatcherServlet] - <GET "/cas/webjars/es5-shim/4.5.9/es5-shim.js", parameters={}>
2020-08-26 12:20:28,939 DEBUG [org.springframework.webflow.mvc.servlet.FlowHandlerMapping] - <No flow mapping found for request with URI '/cas/webjars/es5-shim/4.5.9/es5-shim.js'>
2020-08-26 12:20:28,939 DEBUG [org.springframework.webflow.mvc.servlet.FlowHandlerMapping] - <No flow mapping found for request with URI '/cas/webjars/es5-shim/4.5.9/es5-shim.js'>
2020-08-26 12:20:28,939 DEBUG [org.springframework.web.servlet.handler.SimpleUrlHandlerMapping] - <Mapped to ResourceHttpRequestHandler ["classpath:/META-INF/resources/webjars/"]>
2020-08-26 12:20:28,940 DEBUG [org.springframework.web.servlet.DispatcherServlet] - <Completed 304 NOT_MODIFIED>
2020-08-26 12:20:28,941 DEBUG [org.springframework.web.servlet.DispatcherServlet] - <GET "/cas/webjars/jquery/3.5.1/jquery.min.js", parameters={}>
2020-08-26 12:20:28,941 DEBUG [org.springframework.webflow.mvc.servlet.FlowHandlerMapping] - <No flow mapping found for request with URI '/cas/webjars/jquery/3.5.1/jquery.min.js'>
2020-08-26 12:20:28,942 DEBUG [org.springframework.webflow.mvc.servlet.FlowHandlerMapping] - <No flow mapping found for request with URI '/cas/webjars/jquery/3.5.1/jquery.min.js'>
2020-08-26 12:20:28,942 DEBUG [org.springframework.web.servlet.handler.SimpleUrlHandlerMapping] - <Mapped to ResourceHttpRequestHandler ["classpath:/META-INF/resources/webjars/"]>
2020-08-26 12:20:28,942 DEBUG [org.springframework.web.servlet.DispatcherServlet] - <Completed 304 NOT_MODIFIED>
2020-08-26 12:20:28,945 DEBUG [org.springframework.web.servlet.DispatcherServlet] - <GET "/cas/webjars/material-components-web/4.0.0/dist/material-components-web.js", parameters={}>
2020-08-26 12:20:28,946 DEBUG [org.springframework.web.servlet.DispatcherServlet] - <GET "/cas/js/cas.js", parameters={}>
2020-08-26 12:20:28,951 DEBUG [org.springframework.web.servlet.DispatcherServlet] - <Completed 304 NOT_MODIFIED>
2020-08-26 12:20:28,971 DEBUG [org.springframework.webflow.mvc.servlet.FlowHandlerMapping] - <No flow mapping found for request with URI '/cas/js/cas.js'>
2020-08-26 12:20:28,972 DEBUG [org.springframework.webflow.mvc.servlet.FlowHandlerMapping] - <No flow mapping found for request with URI '/cas/js/cas.js'>
2020-08-26 12:20:28,972 DEBUG [org.springframework.web.servlet.handler.SimpleUrlHandlerMapping] - <Mapped to ResourceHttpRequestHandler ["classpath:/META-INF/resources/", "classpath:/resources/", "classpath:/static/", "classpath:/public/", "/"]>
2020-08-26 12:20:28,973 DEBUG [org.springframework.web.servlet.DispatcherServlet] - <Completed 304 NOT_MODIFIED>
2020-08-26 12:20:28,975 DEBUG [org.springframework.webflow.mvc.servlet.FlowHandlerMapping] - <No flow mapping found for request with URI '/cas/webjars/material-components-web/4.0.0/dist/material-components-web.js'>
2020-08-26 12:20:28,975 DEBUG [org.springframework.webflow.mvc.servlet.FlowHandlerMapping] - <No flow mapping found for request with URI '/cas/webjars/material-components-web/4.0.0/dist/material-components-web.js'>
2020-08-26 12:20:28,975 DEBUG [org.springframework.web.servlet.handler.SimpleUrlHandlerMapping] - <Mapped to ResourceHttpRequestHandler ["classpath:/META-INF/resources/webjars/"]>
2020-08-26 12:20:28,976 DEBUG [org.springframework.web.servlet.DispatcherServlet] - <Completed 304 NOT_MODIFIED>

If someone can help me...

Best regards.

Quentin.


Pablo Vidaurri

unread,
Aug 26, 2020, 9:17:22 AM8/26/20
to CAS Community, quentin
I assumed you have verified bindDn BindCredentails, baseDn, dnFormat values by directly checking ldap.

Did you add a service config?

{
  "@class" :            "org.apereo.cas.services.RegexRegisteredService",
  "serviceId" :         "^https?://.*",
  "name" :              "localhost",
  "id" :                1,
  "evaluationOrder" :   1,
  "accessStrategy" : {
    "@class" : "org.apereo.cas.services.DefaultRegisteredServiceAccessStrategy",
    "enabled" : true,
    "ssoEnabled" : true

qla3fa

unread,
Aug 26, 2020, 10:07:47 AM8/26/20
to Pablo Vidaurri, CAS Community

thanks for your help.

Yes, LDAP config is good and currently works with my old CAS.

Indeed I have configured a default service...

Jason Everling

unread,
Aug 26, 2020, 10:10:30 AM8/26/20
to cas-...@apereo.org, Pablo Vidaurri

Are you sure, looks to me you have a typo in your ldap config, you have, dc=ou=people,example,dc=org, notice the dc= before ou=

 

cas.authn.ldap[0].base-dn=dc=ou=people,exemple,dc=org

 

But then you have

 

cas.authn.ldap[0].dn-format=uid=%s,ou=people,dc=exemple,dc=org

--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+u...@apereo.org.
To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/11a429ed-5d73-98c7-3f28-8133825ad630%40gmail.com.

 

qla3fa

unread,
Aug 26, 2020, 10:47:34 AM8/26/20
to cas-...@apereo.org

You are right, but it's just an error when I copy/paste the config to the mail. I checked the real config and it's good.

It's weird, I'm thinking maybe the ldap module is not up. In the logs there is no reference to LDAP. With tcpdump I'm trying to see communications between my CAS server and my LDAP server. But nothing... My CAS server don't try to join LDAP...

King, Robert

unread,
Aug 26, 2020, 12:03:32 PM8/26/20
to cas-...@apereo.org

Did you include the dependency in your build.gradle?  You mentioned gradle.properties, but I didn’t see any mention of build.gradle.

 

build.gradle:

 

dependencies {

    // Other CAS dependencies/modules may be listed here...

    // compile "org.apereo.cas:cas-server-support-json-service-registry:${casServerVersion}"

}

 

modify to:

 

dependencies {

    // Other CAS dependencies/modules may be listed here...

    // compile "org.apereo.cas:cas-server-support-json-service-registry:${casServerVersion}"

   compile “org.apereo.cas:cas-server-support-ldap:${casServerVersion}”

Ray Bon

unread,
Aug 26, 2020, 12:11:47 PM8/26/20
to cas-...@apereo.org
Turn off spring logging and turn on ldaptive logging.
You might try logging in with the default user just to make sure that your configuration is being added (though you would have received configuration errors).

Ray

On Wed, 2020-08-26 at 13:10 +0200, qla3fa wrote:
Notice: This message was sent from outside the University of Victoria email system. Please be cautious with links and sensitive information. 
--
Ray Bon
Programmer Analyst
Development Services, University Systems

I respectfully acknowledge that my place of work is located within the ancestral, traditional and unceded territory of the Songhees, Esquimalt and WSÁNEĆ Nations.

qla3fa

unread,
Aug 27, 2020, 2:28:33 AM8/27/20
to cas-...@apereo.org

Yes ! It was the problem. So any dependencies I declare in gradle.properties must be in buid.gradle too ?

Thanks.

King, Robert

unread,
Aug 27, 2020, 7:54:17 AM8/27/20
to cas-...@apereo.org

I think gradle.properties is for your Gradle environment, where build.gradle is for your project build.

qla3fa

unread,
Aug 27, 2020, 7:57:36 AM8/27/20
to cas-...@apereo.org

Ok, thanks a lot.

Reply all
Reply to author
Forward
0 new messages