An update, the latest working version is 7.2.3
It seems something started to break in 7.2.4.
On Wednesday, 6 August 2025 at 10:41:33 UTC-4 Agus Santosa wrote:
> Hi,
>
> Does anyone notice any difference between 7.1.x and 7.2.x in terms of
> SAML2 service registry?
> For my case, the same SAML2 service works in 7.1.x, but it is somehow not
> found/authorized in 7.2.x.
>
> This is the log
> 2025-08-06 10:06:48,023 TRACE
> [org.apereo.cas.services.mgmt.AbstractServicesManager] - <Service
> [local-saml-test] is not cached; Searching [JsonServiceRegistry]>
> 2025-08-06 10:06:48,025 TRACE
> [org.apereo.cas.support.saml.services.SamlIdPServicesManagerRegisteredServiceLocator]
>
> - <Reviewing service attributes
> [{headers={jakarta.servlet.http.HttpServletRequest.header-host=[localhost:8543],
>
> jakarta.servlet.http.HttpServletRequest.header-user-agent=[Mozilla/5.0
> (Windows NT 10.0; Win64; x64; rv:141.0) Gecko/20100101 Firefox/141.0],
> jakarta.servlet.http.HttpServletRequest.header-accept=[text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8],
>
> jakarta.servlet.http.HttpServletRequest.header-accept-language=[en-US,en;q=0.5],
>
> jakarta.servlet.http.HttpServletRequest.header-accept-encoding=[gzip,
> deflate, br, zstd], jakarta.servlet.http.HttpServletRequest.header-referer=[
> https://localhost:9876/],
> jakarta.servlet.http.HttpServletRequest.header-connection=[keep-alive],
> jakarta.servlet.http.HttpServletRequest.header-cookie=[JSESSIONID=4A46B00617D6A13EA14E9F3E74A3D75D;
>
> _mkto_trk=id:287-VKI-861&token:_mch-localhost-c73c7200637fdabf3d894f21c3c7ef29;
>
> org.springframework.web.servlet.i18n.CookieLocaleResolver.LOCALE=en-US],
> jakarta.servlet.http.HttpServletRequest.header-upgrade-insecure-requests=[1],
> jakarta.servlet.http.HttpServletRequest.header-sec-fetch-dest=[document],
> jakarta.servlet.http.HttpServletRequest.header-sec-fetch-mode=[navigate],
> jakarta.servlet.http.HttpServletRequest.header-sec-fetch-site=[same-site],
> jakarta.servlet.http.HttpServletRequest.header-priority=[u=0, i]},
> RelayState=[saml-sp-relay-state], service=[
> https://localhost:8543/cas/idp/profile/SAML2/Callback?srid=a4g6f37hb5g945je30da1e82j6bh8i7&entityId=local-saml-test],
>
> httpRequest={jakarta.servlet.http.HttpServletRequest.httpMethod=[GET],
> jakarta.servlet.http.HttpServletRequest.requestURL=[
> https://localhost:8543/cas/login],
> jakarta.servlet.http.HttpServletRequest.requestURI=[/cas/login],
> jakarta.servlet.http.HttpServletRequest.requestId=[1],
> jakarta.servlet.http.HttpServletRequest.contextPath=[/cas],
> jakarta.servlet.http.HttpServletRequest.localeName=[kubernetes.docker.internal]},
>
> cookies={jakarta.servlet.http.HttpServletRequest.cookie-JSESSIONID=[4A46B00617D6A13EA14E9F3E74A3D75D],
>
> jakarta.servlet.http.HttpServletRequest.cookie-_mkto_trk=[id:287-VKI-861&token:_mch-localhost-c73c7200637fdabf3d894f21c3c7ef29],
>
> jakarta.servlet.http.HttpServletRequest.cookie-org.springframework.web.servlet.i18n.CookieLocaleResolver.LOCALE=[en-US]},
>
> org.apereo.cas.authentication.principal.Service=[
> https://localhost:8543/cas/idp/profile/SAML2/Callback?srid=a4g6f37hb5g945je30da1e82j6bh8i7&entityId=local-saml-test]}]
>
> for service id [local-saml-test] to match registered service
> [localsamltest]>
> 2025-08-06 10:06:48,026 TRACE
> [org.apereo.cas.services.mgmt.AbstractServicesManager] - <No service
> definition was provided>
> 2025-08-06 10:06:48,055 WARN
> [org.apereo.cas.services.web.support.RegisteredServiceResponseHeadersEnforcementFilter]
>
> - <Service [AbstractWebApplicationService(id=local-saml-test,
> originalUrl=local-saml-test, artifactId=null, principal=null,
> source=service, tenant=null, loggedOutAlready=false, format=XML,
> attributes={headers={jakarta.servlet.http.HttpServletRequest.header-host=[localhost:8543],
>
> jakarta.servlet.http.HttpServletRequest.header-user-agent=[Mozilla/5.0
> (Windows NT 10.0; Win64; x64; rv:141.0) Gecko/20100101 Firefox/141.0],
> jakarta.servlet.http.HttpServletRequest.header-accept=[text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8],
>
> jakarta.servlet.http.HttpServletRequest.header-accept-language=[en-US,en;q=0.5],
>
> jakarta.servlet.http.HttpServletRequest.header-accept-encoding=[gzip,
> deflate, br, zstd], jakarta.servlet.http.HttpServletRequest.header-referer=[
> https://localhost:9876/],
> jakarta.servlet.http.HttpServletRequest.header-connection=[keep-alive],
> jakarta.servlet.http.HttpServletRequest.header-cookie=[JSESSIONID=4A46B00617D6A13EA14E9F3E74A3D75D;
>
> _mkto_trk=id:287-VKI-861&token:_mch-localhost-c73c7200637fdabf3d894f21c3c7ef29;
>
> org.springframework.web.servlet.i18n.CookieLocaleResolver.LOCALE=en-US],
> jakarta.servlet.http.HttpServletRequest.header-upgrade-insecure-requests=[1],
> jakarta.servlet.http.HttpServletRequest.header-sec-fetch-dest=[document],
> jakarta.servlet.http.HttpServletRequest.header-sec-fetch-mode=[navigate],
> jakarta.servlet.http.HttpServletRequest.header-sec-fetch-site=[same-site],
> jakarta.servlet.http.HttpServletRequest.header-priority=[u=0, i]},
> RelayState=[saml-sp-relay-state], service=[
> https://localhost:8543/cas/idp/profile/SAML2/Callback?srid=a4g6f37hb5g945je30da1e82j6bh8i7&entityId=local-saml-test],
>
> httpRequest={jakarta.servlet.http.HttpServletRequest.httpMethod=[GET],
> jakarta.servlet.http.HttpServletRequest.requestURL=[
> https://localhost:8543/cas/login],
> jakarta.servlet.http.HttpServletRequest.requestURI=[/cas/login],
> jakarta.servlet.http.HttpServletRequest.requestId=[1],
> jakarta.servlet.http.HttpServletRequest.contextPath=[/cas],
> jakarta.servlet.http.HttpServletRequest.localeName=[kubernetes.docker.internal]},
>
> cookies={jakarta.servlet.http.HttpServletRequest.cookie-JSESSIONID=[4A46B00617D6A13EA14E9F3E74A3D75D],
>
> jakarta.servlet.http.HttpServletRequest.cookie-_mkto_trk=[id:287-VKI-861&token:_mch-localhost-c73c7200637fdabf3d894f21c3c7ef29],
>
> jakarta.servlet.http.HttpServletRequest.cookie-org.springframework.web.servlet.i18n.CookieLocaleResolver.LOCALE=[en-US]},
>
> org.apereo.cas.authentication.principal.Service=[
> https://localhost:8543/cas/idp/profile/SAML2/Callback?srid=a4g6f37hb5g945je30da1e82j6bh8i7&entityId=local-saml-test]})]
>
> is not authorized>
>
>
>
--
- Website: https://apereo.github.io/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/2b5b4249-7f0b-4446-8cbd-aecac3d2c56dn%40apereo.org.
