CAS 5.1.0-SNAPSHOT - SPNEGO broken ?

77 views
Skip to first unread message

Philippe MARASSE

unread,
Nov 16, 2016, 5:20:18 AM11/16/16
to CAS Community
Hello,

Thanks implementing MFA bypass in CAS 5.1.0, I'm moving on to test it on
our actual test case : SPNEGO or Login/Password + yubikey.

If I'm not mistaken, after reviewed up to date documentation, I've added
a line in my cas.properties :

cas.authn.mfa.yubikey.bypass.authenticationHandlerName=JcifsSpnegoAuthenticationHandler

I've also updated my tomcat to 8.5.8 + java 1.8.0u111. my pom.xml from
CASv5.0.0 to CASv5.1.0-SNAPSHOT. cas.war builds ok with maven overlay
but when it comes to start, spnego webflow configurer (which is
misspelled spengo) hangs :

2016-11-16 11:09:34,911 INFO
[org.apereo.cas.services.ServiceRegistryInitializer] - <The service
registry database will not be initialized from default JSON services. If
the service registry database ends up empty, CAS will refuse to
authenticate services until service definitions are added to the registry.>
2016-11-16 11:09:35,185 ERROR
[org.apereo.cas.web.flow.SpengoWebflowConfigurer] - <The literal is
required>
java.lang.IllegalArgumentException: The literal is required
at org.springframework.util.Assert.notNull(Assert.java:115)
~[spring-core-4.3.4.RELEASE.jar:4.3.4.RELEASE]
at
org.springframework.binding.expression.support.LiteralExpression.<init>(LiteralExpression.java:34)
~[spring-binding-2.4.4.RELEASE.jar:2.4.4.RELEASE]
at
org.apereo.cas.web.flow.AbstractCasWebflowConfigurer.createTransition(AbstractCasWebflowConfigurer.java:268)
~[cas-server-core-webflow-5.1.0-SNAPSHOT.jar:5.1.0-SNAPSHOT]
at
org.apereo.cas.web.flow.AbstractCasWebflowConfigurer.createTransitionForState(AbstractCasWebflowConfigurer.java:256)
~[cas-server-core-webflow-5.1.0-SNAPSHOT.jar:5.1.0-SNAPSHOT]
at
org.apereo.cas.web.flow.AbstractCasWebflowConfigurer.lambda$registerMultifactorProvidersStateTransitionsIntoWebflow$2(AbstractCasWebflowConfigurer.java:643)
~[cas-server-core-webflow-5.1.0-SNAPSHOT.jar:5.1.0-SNAPSHOT]
at java.util.LinkedHashMap.forEach(LinkedHashMap.java:684)
~[?:1.8.0_111]
at
org.apereo.cas.web.flow.AbstractCasWebflowConfigurer.registerMultifactorProvidersStateTransitionsIntoWebflow(AbstractCasWebflowConfigurer.java:643)
~[cas-server-core-webflow-5.1.0-SNAPSHOT.jar:5.1.0-SNAPSHOT]
at
org.apereo.cas.web.flow.SpengoWebflowConfigurer.doInitialize(SpengoWebflowConfigurer.java:40)
~[cas-server-support-spnego-webflow-5.1.0-SNAPSHOT.jar:5.1.0-SNAPSHOT]
at
org.apereo.cas.web.flow.AbstractCasWebflowConfigurer.initialize(AbstractCasWebflowConfigurer.java:112)
~[cas-server-core-webflow-5.1.0-SNAPSHOT.jar:5.1.0-SNAPSHOT]
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
~[?:1.8.0_111]
at
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
~[?:1.8.0_111]
at
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
~[?:1.8.0_111]
at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_111]
at
org.springframework.beans.factory.annotation.InitDestroyAnnotationBeanPostProcessor$LifecycleElement.invoke(InitDestroyAnnotationBeanPostProcessor.java:366)
~[spring-beans-4.3.4.RELEASE.jar:4.3.4.RELEASE]
at
org.springframework.beans.factory.annotation.InitDestroyAnnotationBeanPostProcessor$LifecycleMetadata.invokeInitMethods(InitDestroyAnnotationBeanPostProcessor.java:311)
~[spring-beans-4.3.4.RELEASE.jar:4.3.4.RELEASE]
at
org.springframework.beans.factory.annotation.InitDestroyAnnotationBeanPostProcessor.postProcessBeforeInitialization(InitDestroyAnnotationBeanPostProcessor.java:134)
~[spring-beans-4.3.4.RELEASE.jar:4.3.4.RELEASE]
at
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.applyBeanPostProcessorsBeforeInitialization(AbstractAutowireCapableBeanFactory.java:408)
~[spring-beans-4.3.4.RELEASE.jar:4.3.4.RELEASE]
at
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.initializeBean(AbstractAutowireCapableBeanFactory.java:1575)
~[spring-beans-4.3.4.RELEASE.jar:4.3.4.RELEASE]
at
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.doCreateBean(AbstractAutowireCapableBeanFactory.java:553)
~[spring-beans-4.3.4.RELEASE.jar:4.3.4.RELEASE]
at
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBean(AbstractAutowireCapableBeanFactory.java:482)
~[spring-beans-4.3.4.RELEASE.jar:4.3.4.RELEASE]
at
org.springframework.beans.factory.support.AbstractBeanFactory$1.getObject(AbstractBeanFactory.java:306)
~[spring-beans-4.3.4.RELEASE.jar:4.3.4.RELEASE]
at
org.springframework.beans.factory.support.DefaultSingletonBeanRegistry.getSingleton(DefaultSingletonBeanRegistry.java:230)
~[spring-beans-4.3.4.RELEASE.jar:4.3.4.RELEASE]
at
org.springframework.beans.factory.support.AbstractBeanFactory.doGetBean(AbstractBeanFactory.java:302)
~[spring-beans-4.3.4.RELEASE.jar:4.3.4.RELEASE]
at
org.springframework.beans.factory.support.AbstractBeanFactory.getBean(AbstractBeanFactory.java:197)
~[spring-beans-4.3.4.RELEASE.jar:4.3.4.RELEASE]
at
org.springframework.beans.factory.support.DefaultListableBeanFactory.preInstantiateSingletons(DefaultListableBeanFactory.java:754)
~[spring-beans-4.3.4.RELEASE.jar:4.3.4.RELEASE]
at
org.springframework.context.support.AbstractApplicationContext.finishBeanFactoryInitialization(AbstractApplicationContext.java:866)
~[spring-context-4.3.4.RELEASE.jar:4.3.4.RELEASE]
at
org.springframework.context.support.AbstractApplicationContext.refresh(AbstractApplicationContext.java:542)
~[spring-context-4.3.4.RELEASE.jar:4.3.4.RELEASE]
at
org.springframework.boot.context.embedded.EmbeddedWebApplicationContext.refresh(EmbeddedWebApplicationContext.java:122)
~[spring-boot-1.4.2.RELEASE.jar:1.4.2.RELEASE]
at
org.springframework.boot.SpringApplication.refresh(SpringApplication.java:761)
~[spring-boot-1.4.2.RELEASE.jar:1.4.2.RELEASE]
at
org.springframework.boot.SpringApplication.refreshContext(SpringApplication.java:371)
~[spring-boot-1.4.2.RELEASE.jar:1.4.2.RELEASE]
at
org.springframework.boot.SpringApplication.run(SpringApplication.java:315)
~[spring-boot-1.4.2.RELEASE.jar:1.4.2.RELEASE]
at
org.springframework.boot.web.support.SpringBootServletInitializer.run(SpringBootServletInitializer.java:151)
~[spring-boot-1.4.2.RELEASE.jar:1.4.2.RELEASE]
at
org.springframework.boot.web.support.SpringBootServletInitializer.createRootApplicationContext(SpringBootServletInitializer.java:131)
~[spring-boot-1.4.2.RELEASE.jar:1.4.2.RELEASE]
at
org.springframework.boot.web.support.SpringBootServletInitializer.onStartup(SpringBootServletInitializer.java:86)
~[spring-boot-1.4.2.RELEASE.jar:1.4.2.RELEASE]
at
org.springframework.web.SpringServletContainerInitializer.onStartup(SpringServletContainerInitializer.java:169)
~[spring-web-4.3.4.RELEASE.jar:4.3.4.RELEASE]
at
org.apache.catalina.core.StandardContext.startInternal(StandardContext.java:5178)
~[catalina.jar:8.5.8]
at
org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:150)
~[catalina.jar:8.5.8]
at
org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:752)
~[catalina.jar:8.5.8]
at
org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:728)
~[catalina.jar:8.5.8]
at
org.apache.catalina.core.StandardHost.addChild(StandardHost.java:734)
~[catalina.jar:8.5.8]
at
org.apache.catalina.startup.HostConfig.deployWAR(HostConfig.java:952)
~[catalina.jar:8.5.8]
at
org.apache.catalina.startup.HostConfig$DeployWar.run(HostConfig.java:1823)
~[catalina.jar:8.5.8]
at
java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:511)
~[?:1.8.0_111]
at java.util.concurrent.FutureTask.run(FutureTask.java:266)
~[?:1.8.0_111]
at
java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
[?:1.8.0_111]
at
java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)
[?:1.8.0_111]
at java.lang.Thread.run(Thread.java:745) [?:1.8.0_111]
2016-11-16 11:09:40,260 INFO
[org.apereo.cas.configuration.CasConfigurationRebinder] - <Reloaded CAS
configuration cas-org.apereo.cas.configuration.CasConfigurationProperties>

Regards.

--
Philippe MARASSE

Responsable pôle Infrastructures - DSIO
Centre Hospitalier Henri Laborit
CS 10587 - 370 avenue Jacques Cœur
86021 Poitiers Cedex
Tel : 05.49.44.57.19


Misagh Moayyed

unread,
Nov 16, 2016, 9:56:22 AM11/16/16
to cas-...@apereo.org
Looks like a bug. File an issue please, and attach logs at DEBUG (specially
for SWF).

--Misagh
--
- CAS gitter chatroom: https://gitter.im/apereo/cas
- CAS mailing list guidelines:
https://apereo.github.io/cas/Mailing-Lists.html
- CAS documentation website: https://apereo.github.io/cas
- CAS project website: https://github.com/apereo/cas
---
You received this message because you are subscribed to the Google Groups
"CAS Community" group.
To unsubscribe from this group and stop receiving emails from it, send an
email to cas-user+u...@apereo.org.
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/3010f187-3466-3d24-d8be-c64f730d0e05%40ch-poitiers.fr.

Philippe MARASSE

unread,
Nov 16, 2016, 11:55:47 AM11/16/16
to cas-...@apereo.org
Done : https://github.com/apereo/cas/issues/2126

I've raised Spring Web Flow logging to debug (only this one, hoping this
will be enough).

Regards.
Reply all
Reply to author
Forward
0 new messages