I am running the .war overlay. therefore I have no tomcat user. But I checked the file, it's owned by the root user. I then checked the process running the war file environment in the jdk folder - it is also the root user.
Am Donnerstag, 6. Juni 2019 15:37:05 UTC+2 schrieb Matthew Uribe: > > Is the devConfluence-1558621301329267.json file readable for whatever > user/service is running CAS? When I forget to change ownership of my json > files to the tomcat user, I run into the same issue. > > > On Thursday, June 6, 2019 at 7:06:50 AM UTC-6, Fabian Schipp wrote: >> >> Hi everyone, >> >> I am currently trying to connect Confluence as SAML SP with a CAS 6 >> instance. >> CAS Server on its own is running fine. I added a SAML service I created >> using the docs chapter on SAML services: >> >> https://apereo.github.io/cas/6.0.x/installation/Configuring-SAML2-Authentication.html#saml-services >> >> My SAML service: >> { >> "@class" : >> "org.apereo.cas.support.saml.services.SamlRegisteredService", >> "serviceId" : "https://<CONFLUENCE_DOMAIN>/ >> plugins/servlet/samlsso", >> "name" : "dev Confluence Application", >> "id" : 1558621301329267, >> "metadataLocation" : >> "https://<CONFLUENCE_DOMAIN>/plugins/servlet/samlsso/metadata", >> "evaluationOrder" : 10 >> } >> >> But CAS does load the service but it looks like it is malformed in some >> way. >> >> I checked some things that might have gone wrong: >> - the metadata-URL does link to the correct metadata of the SP >> - the serviceId matches the corresponding URL from the confluence system >> - the id field matches the name of the service-filename (it is called >> devConfluence-1558621301329267.json) >> >> The output I get is this: >> 2019-06-06 14:56:58,002 DEBUG >> [org.apereo.cas.support.saml.web.idp.profile.AbstractSamlProfileHandlerController] >> >> - <Located issuer [https://<CONFLUENCE_DOMAIN>/plugins/servlet/samlsso] >> from authentication request> >> >> 2019-06-06 14:56:58,004 DEBUG >> [org.apereo.cas.support.saml.web.idp.profile.AbstractSamlProfileHandlerController] >> >> - <Checking service access in CAS service registry for >> [AbstractWebApplicationService(id=https://<CONFLUENCE_DOMAIN>/plugins/servlet/samlsso, >> >> originalUrl=https://<CONFLUENCE_DOMAIN>/plugins/servlet/samlsso, >> artifactId=null, principal=null, source=null, loggedOutAlready=false, >> format=XML, attributes={})]> >> >> 2019-06-06 14:56:58,024 WARN >> [org.apereo.cas.support.saml.web.idp.profile.AbstractSamlProfileHandlerController] >> >> - <[https://<CONFLUENCE_DOMAIN>/plugins/servlet/samlsso] is not found in >> the registry or service access is denied. Ensure service is registered in >> service registry> >> >> So there is another service registry I have to register my service in? >> Are there any more fields that are mandatory to include in the service? >> If so I can't find the correct pafe on the docs that says so. >> >> I am realy lost on this one. Any help is appreciated. >> >> Thank you very much. >> > -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/8f97b99e-1d54-41f2-88b0-cb63c0cdac5d%40apereo.org.
