Good morning all, We are doing the migration of CAS to its 5.3.9 version. The step we are attempting to realize is the authentication delegation with France Connect. Always according to the apereo.github documentation, we implement the CAS overlay template to reach it. Nevertheless, we have recently discovered that the Maven dependency related to pac4j, cas-server-support-pac4j-webflow, does not respect rigorously the France Connect protocol because one class does force the delegatedclientid HTTP parameter to be in the URL handled by France Connect, which is explicitly not necessary with France Connect. The concerning class is the following: org.apereo.cas.web.DelegatedClientWebflowManager Which is here: https://github.com/apereo/cas/blob/master/support/cas-server-support-pac4j-webflow/src/main/java/org/apereo/cas/web/DelegatedClientWebflowManager.java During the delegation process, France Connect stops it and specifies some informations about this parameter: "The following fields are not supposed to be present : delegatedclientid" For information, the different existing HTTP parameters in the URL are the following: scope response_type redirect_uri state nonce delegatedclientid client_id
Please, is this parameter very necessary in this class or is there a way to disable it? Boris. -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/dbe0f2c7-4e31-4703-b216-a8623b656edf%40apereo.org.
