You're going to have to read through the documentation for Hazelcast to
see what matches your needs. Most of the time in the past, upgrades are
reimplementations. It is unfortunately a lot of work. OpenRewrite is
supposed to help that from the best I know. I don't know if it will work
until you get to 7.1 though. I haven't used it yet.
https://apereo.github.io/cas/7.1.x/installation/OpenRewrite-Upgrade-Recipes.html
On 3/20/25 13:47, Phil Hale wrote:
I added the missing dependency and restarted the services and I'm
still getting the same warning in the logs:
2025-03-20 13:15:27,445 WARN
[com.hazelcast.instance.impl.HazelcastInstanceFactory] - <Hazelcast is
starting in a Java modular environment (Java 9 and newer) but without
proper access to required Java packages. Use additional Java arguments
to provide Hazelcast access to Java internal API. The internal API
access is used to get the best performance results. Arguments to be used:
Are their any additional cas.properties I need to add to make this
work again?
Phil
On Thursday, March 20, 2025 at 11:59:04 AM UTC-5 Pablo Vidaurri wrote:
Using OIDC I assume?
Have you tried these dependencies:
implementation "org.apereo.cas:cas-server-support-pac4j-oidc"
<-- Looks like just introduced in 7.1.0
implementation "org.apereo.cas:cas-server-support-pac4j-webflow"
-psv
On Wednesday, March 19, 2025 at 10:00:52 PM UTC-5 Phil Hale wrote:
Hello,
I'm attempting to upgrade from CAS 7.0 to CAS 7.1. I can
successfully build the war file and launch it without issues.
When I attempt to log in I get the following error in the log
file:
cas.war[331470]: 2025-03-19 15:38:17,967 WARN
[org.apereo.cas.web.flow.DefaultDelegatedClientIdentityProviderConfigurationProducer]
- <No delegated authentication providers could be determined
based on the provided configuration. Either no identity
providers are configured, or the current access strategy rules
prohibit CAS from using authentication providers>
and the following on the web browser:
Screenshot From 2025-03-19 15-40-11.png
We have each service file set up to call out to a default
identity provider with the following block in the service json
file:
accessStrategy:
{
@class:
org.apereo.cas.services.DefaultRegisteredServiceAccessStrategy
delegatedAuthenticationPolicy:
{
@class:
org.apereo.cas.services.DefaultRegisteredServiceDelegatedAuthenticationPolicy
allowedProviders:
[
java.util.ArrayList
[
TAMUCC_AAD
]
]
permitUndefined: false
exclusive: true
}
}
This works as expected in 7.0 but does not work in 7.1. In
7.0, we are automatically directed to the AAD login and after
successfully logging in, given access to the app. I've
compared the json service file formatting with what is
documented and can't find any issues.
Hopefully someone has some suggestions on what changes we need
to make to get this working again.
Thanks,
Phil
--
- Website: https://apereo.github.io/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google
Groups "CAS Community" group.
To unsubscribe from this group and stop receiving emails from it, send
an email to cas-user+unsubscr...@apereo.org.
To view this discussion visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/cb0853c1-ee51-4a69-804d-06580dffe90dn%40apereo.org
<https://groups.google.com/a/apereo.org/d/msgid/cas-user/cb0853c1-ee51-4a69-804d-06580dffe90dn%40apereo.org?utm_medium=email&utm_source=footer>.
--
- Website: https://apereo.github.io/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to cas-user+unsubscr...@apereo.org.
To view this discussion visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/3eea065f-66c2-41b9-a180-9025a4a3f2d7%40ndsu.edu.
