Differences

This shows you the differences between two versions of the page.

Link to this comparison view

--- docpublic:systemes:ssocas:cas7install [2024/06/02 14:25]
adminjp [Dossier Logs pour CAS]
+++ docpublic:systemes:ssocas:cas7install [2024/06/16 09:06] (current)
adminjp [Registering Applications]
@@ Line 471: / Line 471: @@
 </code>
+et downgrade de springBootVersion du fait du passage de cas version version=7.1.0-SNAPSHOT vers 7.0.4 ci-dessus ,
+sinon erreur de Class Not Found : "org.springframework.boot.actuate.autoconfigure.sbom.SbomEndpointAutoConfiguration caused by ClassNotFoundException"
+<code>
+#springBootVersion=3.3.0
+springBootVersion=3.2.6
+</code>
 ==== support LDAP ====
@@ Line 514: / Line 522: @@
 <code>
-[root@ssocas6 cas-overlay-template]# diff -ur /opt/cas-overlay-template/etc/cas/config/cas.properties.dist /opt/cas-overlay-template/etc/cas/config/cas.properties
---- /opt/cas-overlay-template/etc/cas/config/cas.properties.dist	2021-05-21 15:35:20.596460271 +0200
+[root@cas7d cas-overlay-template]# cat /opt/cas-src/cas-overlay-template/etc/cas/config/cas.properties
-+++ /opt/cas-overlay-template/etc/cas/config/cas.properties	2021-05-21 15:43:55.912705247 +0200
+cas.server.name=https://cas7.domain.fr:443
-@@ -1,6 +1,19 @@
+cas.server.prefix=${cas.server.name}/cas
--cas.server.name=https://cas.example.org:8443
-+cas.server.name=https://ssocas6.domain.fr:443
+logging.config=file:/etc/cas/config/log4j2.xml
- cas.server.prefix=${cas.server.name}/cas
+cas.authn.accept.users=
+### Connexion LDAP
+##cas.authn.ldap\[0\].providerClass=org.ldaptive.provider.unboundid.UnboundIDProvider
+cas.authn.ldap\[0\].type=AUTHENTICATED
+cas.authn.ldap\[0\].ldapUrl=ldaps://ldap.domain.fr
+cas.authn.ldap\[0\].baseDn= dc=domain,dc=fr
+cas.authn.ldap\[0\].subtreeSearch=true
+#cas.authn.ldap\[0\].searchFilter=uid=\{user\}
+cas.authn.ldap\[0\].searchFilter=(&(uid=\{user\})(supannRessourceEtat={ACCOUNT}:*))
+cas.authn.ldap\[0\].principalAttributeList=cn,sn,givenName,displayName,mail,uid
- logging.config=file:/etc/cas/config/log4j2.xml
+### Credential to connect to LDAP
+cas.authn.ldap\[0\].bindDn=CN=binder,ou=dsa,dc=domain,dc=fr
--# cas.authn.accept.users=
+cas.authn.ldap\[0\].bindCredential=!SECRET!
-+cas.authn.accept.users=
-+### Connexion LDAP
+### Registering Applications
-+cas.authn.ldap\[0\].providerClass=org.ldaptive.provider.unboundid.UnboundIDProvider
+cas.serviceRegistry.json.location: file:/etc/cas/services
-+cas.authn.ldap\[0\].type=AUTHENTICATED
-+cas.authn.ldap\[0\].useSsl=true
+# Required: false
-+cas.authn.ldap\[0\].ldapUrl=ldaps://ldap.domain.fr
+# Type: java.lang.Long
-+cas.authn.ldap\[0\].baseDn= dc=int,dc=fr
+# Owner: org.apereo.cas.configuration.model.core.ticket.PrimaryTicketExpirationPolicyProperties
-+cas.authn.ldap\[0\].subtreeSearch=true
+# Module: cas-server-core-tickets
-+cas.authn.ldap\[0\].searchFilter=uid=\{user\}
+# Maximum time in seconds tickets would be live in CAS server.
-+cas.authn.ldap\[0\].principalAttributeList=cn,givenName,mail,uid
+# jehan 8H -> 10H
-+
+cas.ticket.tgt.primary.max-time-to-live-in-seconds: 36000
-+### Credential to connect to LDAP
-+cas.authn.ldap\[0\].bindDn=CN=dsi,ou=dsa,dc=int,dc=fr
-+cas.authn.ldap\[0\].bindCredential=S3cr3T
+# Required: false
+# Type: java.lang.Long
+# Owner: org.apereo.cas.configuration.model.core.ticket.PrimaryTicketExpirationPolicyProperties
+# Module: cas-server-core-tickets
+# Time in seconds after which tickets would be destroyed after a period of inactivity.
+# jehan 2H -> 4H
+cas.ticket.tgt.primary.time-to-kill-in-seconds: 14400
+### Monitor Status
+#management.endpoints.web.base-path=/actuator
+#management.endpoints.web.exposure.include=status
+#management.endpoint.status.enabled=true
+#cas.monitor.endpoints.endpoint.status.access=IP_ADDRESS
+#cas.monitor.endpoints.endpoint.status.required-ip-addresses=127.0.0.1
+### Monitor Heath Info
+#management.endpoints.web.exposure.include=health,info
+#management.endpoint.health.enabled=true
+#management.endpoint.health.show-details=always
+#management.endpoint.info.enabled=true
+#cas.monitor.endpoints.endpoint.health.access=AUTHENTICATED
+#cas.monitor.endpoints.endpoint.info.access=ANONYMOUS
+# Required: false
+# Type: java.lang.Boolean
+# Owner: org.apereo.cas.configuration.model.core.authentication.AuthenticationAttributeReleaseProperties
+# Module: cas-server-support-validation
+# Whether CAS authentication/protocol attributes should be released as part of ticket validation.
+cas.authn.authentication-attribute-release.enabled: true
 </code>
@@ Line 580: / Line 632: @@
 Gradle build permet d'executer certains goals/commands de Gradle (aka gradlew) , commençons par la command clean qui va dans un premier temps recuperer gradle et autres dependances pour notre projet .
-=== clean ===
-<code>
+=== gradlew ===
-[root@ssocas6 cas-overlay-template]# ./gradlew clean
-Downloading https://services.gradle.org/distributions/gradle-7.0-bin.zip
-..........10%...........20%...........30%..........40%...........50%...........60%...........70%..........80%...........90%...........100%
-Welcome to Gradle 7.0!
-Here are the highlights of this release:
- - File system watching enabled by default
- - Support for running with and building Java 16 projects
- - Native support for Apple Silicon processors
- - Dependency catalog feature preview
-For more details see https://docs.gradle.org/7.0/release-notes.html
-Starting a Gradle Daemon (subsequent builds will be faster)
-<-------------> 0% CONFIGURING [33s]
-> root project > Resolve dependencies of classpath > maven-metadata.xml
-> IDLE
-> IDLE
-> root project > Resolve dependencies of classpath > pac4j-http-5.0.1.pom
-> root project > Resolve dependencies of classpath > spring-webmvc-pac4j-5.0.0.pom
-> root project > Resolve dependencies of classpath > maven-metadata.xml
-> root project > Resolve dependencies of classpath > maven-metadata.xml
-> IDLE
-> root project > Resolve dependencies of classpath > oauth2-oidc-sdk-9.5.1.pom
-> IDLE
-> root project > Resolve dependencies of classpath > maven-metadata.xml
-> IDLE
-...
-Deprecated Gradle features were used in this build, making it incompatible with Gradle 8.0.
-Use '--warning-mode all' to show the individual deprecation warnings.
-See https://docs.gradle.org/7.0/userguide/command_line_interface.html#sec:command_line_warnings
-BUILD SUCCESSFUL in 1m 29s
-actionable tasks: 2 executed
-</code>
-=== build ===
+l'option //--no-daemon// permet de terminer le process gradlew, autrement il reste en memoire et la sature rapidement .
 <code>
@@ Line 645: / Line 657: @@
 <code>
-[root@cas7d cas-overlay-template]# cp /opt/cas-src/cas-overlay-template/build/libs/cas.war /opt/tomcat/webapps/
+[root@cas7 cas-overlay-template]# cp /opt/cas-src/cas-overlay-template/build/libs/cas.war /opt/tomcat/webapps/
-[root@cas7d cas-overlay-template]# systemctl start tomcat.service
+[root@cas7 cas-overlay-template]# systemctl start tomcat.service
 [root@cas7 cas-overlay-template]# ls -ltr /opt/tomcat/webapps/
@@ Line 668: / Line 680: @@
 <code>
--May-2021 10:27:29.240 INFO [main] org.apache.catalina.startup.HostConfig.deployDescriptor Deployment of deployment descriptor [/opt/tomcat/conf/Catalina/localhost/manager.xml] has finished in [349] ms
+-Jun-2024 19:06:21.431 INFO [main] org.apache.catalina.startup.HostConfig.deployWAR Deploying web application archive [/opt/tomcat/webapps/cas.war]
--May-2021 10:27:29.242 INFO [main] org.apache.catalina.startup.HostConfig.deployWAR Deploying web application archive [/opt/tomcat/webapps/cas.war]
+-Jun-2024 19:06:29.068 INFO [main] org.apache.jasper.servlet.TldScanner.scanJars At least one JAR was scanned for TLDs yet contained no TLDs. Enable debug logging for this logger for a complete list of JARs that were scanned but no TLDs were found in them. Skipping unneeded JARs during scanning can improve startup time and JSP compilation time.
+-06-06 19:06:30,517 INFO [org.apereo.cas.configuration.CasConfigurationPropertiesValidator] - <Validating CAS property sources and configuration for active profiles [[standalone]]. Please wait...>
+-06-06 19:06:30,529 INFO [org.apereo.cas.configuration.CasConfigurationPropertiesValidator] - <Validated CAS property sources and configuration successfully.>
--May-2021 10:27:38.056 INFO [main] org.apache.jasper.servlet.TldScanner.scanJars At least one JAR was scanned for TLDs yet contained no TLDs. Enable debug logging for this logger for a complete list of JARs that were scanned but no TLDs were found in them. Skipping unneeded JARs during scanning can improve startup time and JSP compilation time.
--05-22 10:27:42,024 WARN [org.springframework.http.converter.json.Jackson2ObjectMapperBuilder] - <For Jackson Kotlin classes support please add "com.fasterxml.jackson.module:jackson-module-kotlin" to the classpath>
-     _    ____  _____ ____  _____ ___     ____    _    ____
+-06-06 19:06:32,509 DEBUG [org.springframework.boot.devtools.restart.Restarter] - <Creating new Restarter for thread Thread[#1,main,5,main]>
-    / \  |  _ \| ____|  _ \| ____/ _ \   / ___|  / \  / ___|
-   / _ \ | |_) |  _| | |_) |  _|| | | | | |     / _ \ \___ \
-  / ___ \|  __/| |___|  _ <| |__| |_| | | |___ / ___ \ ___) |
- /_/   \_\_|   |_____|_| \_\_____\___/   \____/_/   \_\____/
-CAS Version: 6.4.0-SNAPSHOT
+  ____  ____    ___  ____     ___   ___          __   ____  _____
-CAS Branch: master
+   /    T|    \  /  _]|    \   /  _] /   \        /  ] /    T/ ___/
-CAS Commit Id: a03f3bf03f7f1b422794c026481cd2efdf8ae847
+  Y  o  ||  o  )/  [_ |  D  ) /  [_ Y     Y      /  / Y  o  (   \_
-CAS Build Date/Time: 2021-05-22T08:02:28Z
+  |     ||   _/Y    _]|    / Y    _]|  O  |     /  /  |     |\__  T
-Spring Boot Version: 2.4.5
+  |  _  ||  |  |   [_ |    \ |   [_ |     |    /   \_ |  _  |/  \ |
-Spring Version: 5.3.7
+  |  |  ||  |  |     T|  .  Y|     Tl     !    \     ||  |  |\    |
-Java Home: /usr/lib/jvm/java-11-openjdk-11.0.9.11-3.el8_3.x86_64
+  l__j__jl__j  l_____jl__j\_jl_____j \___/      \____jl__j__j \___j
+CAS Version: 7.0.4
+CAS Branch: 7.0.x
+CAS Commit Id: d41ac9d5e157605fc43d97a77582c2062e864874
+CAS Build Date/Time: 2024-04-26T07:43:16.528866Z
+Spring Boot Version: 3.2.1
+Spring Version: 6.1.2
+Java Home: /usr/lib/jvm/java-21-openjdk-21.0.3.0.9-1.el9.alma.1.x86_64
 Java Vendor: Red Hat, Inc.
-Java Version: 11.0.9.1
+Java Version: 21.0.3
-JVM Free Memory: 328 MB
+Servlet Version: 6.0
-JVM Maximum Memory: 910 MB
+JVM Free Memory: 301 MB
-JVM Total Memory: 629 MB
+JVM Maximum Memory: 1 GB
+JVM Total Memory: 740 MB
 OS Architecture: amd64
 OS Name: Linux
-OS Version: 4.18.0
+OS Version: 5.14.0
-OS Date/Time: 2021-05-22T10:27:44.189611
+OS Date/Time: 2024-06-06T19:06:32.626041896
 OS Temp Directory: /opt/tomcat/temp
 ------------------------------------------------------------
-Apache Tomcat Version: Apache Tomcat/9.0.35
+Apache Tomcat Version: Apache Tomcat/10.1.20
 ------------------------------------------------------------
--05-22 10:27:44,260 INFO [org.apereo.cas.configuration.DefaultCasConfigurationPropertiesSourceLocator] - <Configuration files found at [/etc/cas/config] are [[file [/etc/cas/config/cas.properties]]] under profile(s) [[standalone]]>
+-06-06 19:06:32,669 INFO [org.apereo.cas.configuration.DefaultCasConfigurationPropertiesSourceLocator] - <Configuration files found at [/etc/cas/config] are [[file [/etc/cas/config/cas.properties]]] under profile(s) [[standalone]]>
--05-22 10:27:44,407 INFO [org.apereo.cas.web.CasWebApplicationServletInitializer] - <The following profiles are active: standalone>
+-06-06 19:06:32,773 INFO [org.apereo.cas.configuration.CasConfigurationPropertiesValidator] - <Validating CAS property sources and configuration for active profiles [[standalone]]. Please wait...>
--05-22 10:27:51,366 WARN [org.hibernate.validator.internal.properties.javabean.JavaBeanExecutable] - <HV000254: Missing parameter metadata for (int, MeterFilter, String, String), which declares implicit or synthetic parameters. Automatic resolution of generic type information for method parameters may yield incorrect results if multiple parameters have the same erasure. To solve this, compile your code with the '-parameters' flag.>
+-06-06 19:06:32,833 INFO [org.apereo.cas.configuration.CasConfigurationPropertiesValidator] - <Validated CAS property sources and configuration successfully.>
--05-22 10:27:55,997 INFO [org.apereo.cas.config.LdapAuthenticationConfiguration] - <Registering LDAP authentication for [LdapAuthenticationHandler]>
+-06-06 19:06:32,835 INFO [org.apereo.cas.web.CasWebApplicationServletInitializer] - <The following 1 profile is active: "standalone">
--05-22 10:27:56,380 INFO [org.apereo.cas.services.resource.AbstractResourceBasedServiceRegistry] - <Watching service registry directory at [/opt/tomcat/temp/services]>
--05-22 10:27:56,388 INFO [org.apereo.cas.util.io.PathWatcherService] - <Watching directory path at [/opt/tomcat/temp/services]>
--05-22 10:27:58,020 INFO [org.springframework.boot.autoconfigure.security.servlet.UserDetailsServiceAutoConfiguration] - <
-Using generated security password: 18fSECRETdb14
->
--05-22 10:27:58,190 INFO [org.springframework.security.web.DefaultSecurityFilterChain] - <Will secure Ant [pattern='/login/**'] with []>
--05-22 10:27:58,190 INFO [org.springframework.security.web.DefaultSecurityFilterChain] - <Will secure Ant [pattern='/logout/**'] with []>
+-06-06 19:06:37,014 INFO [org.apereo.cas.services.resource.AbstractResourceBasedServiceRegistry] - <Watching service registry directory at [/etc/cas/services]>
--05-22 10:27:58,191 INFO [org.springframework.security.web.DefaultSecurityFilterChain] - <Will secure Ant [pattern='/validate/**'] with []>
+-06-06 19:06:37,019 INFO [org.apereo.cas.util.io.PathWatcherService] - <Watching directory path at [/etc/cas/services]>
--05-22 10:27:58,191 INFO [org.springframework.security.web.DefaultSecurityFilterChain] - <Will secure Ant [pattern='/serviceValidate/**'] with []>
+-06-06 19:06:38,184 INFO [org.apereo.cas.util.CoreTicketUtils] - <Ticket registry encryption/signing is turned off. This MAY NOT be safe in a clustered production environment. Consider using other choices to handle encryption, signing and verification of ticket registry tickets, and verify the chosen ticket registry does support this behavior.>
--05-22 10:27:58,191 INFO [org.springframework.security.web.DefaultSecurityFilterChain] - <Will secure Ant [pattern='/p3/serviceValidate/**'] with []>
+-06-06 19:06:38,241 INFO [org.apereo.cas.config.CasCoreTicketsConfiguration] - <Runtime memory is used as the persistence storage for retrieving and managing tickets. Tickets that are issued during runtime will be LOST when the web server is restarted. This MAY impact SSO functionality.>
--05-22 10:27:58,191 INFO [org.springframework.security.web.DefaultSecurityFilterChain] - <Will secure Ant [pattern='/proxyValidate/**'] with []>
+-06-06 19:06:39,324 INFO [org.apereo.cas.config.LdapAuthenticationConfiguration] - <Registering LDAP authentication for [LdapAuthenticationHandler]>
--05-22 10:27:58,191 INFO [org.springframework.security.web.DefaultSecurityFilterChain] - <Will secure Ant [pattern='/p3/proxyValidate/**'] with []>
+-06-06 19:06:39,585 WARN [org.apereo.cas.util.cipher.BaseStringCipherExecutor] - <Secret key for encryption is not defined for [Ticket-granting Cookie]; CAS will attempt to auto-generate the encryption key>
--05-22 10:27:58,191 INFO [org.springframework.security.web.DefaultSecurityFilterChain] - <Will secure Ant [pattern='/proxy/**'] with []>
+-06-06 19:06:39,594 WARN [org.apereo.cas.util.cipher.BaseStringCipherExecutor] - <Generated encryption key [dhlqwvkSDUy92C0JQLOQojfK0iHxc_gw2M2rnFIUi7o] of size [256] for [Ticket-granting Cookie]. The generated key MUST be added to CAS settings:
--05-22 10:27:58,263 INFO [org.springframework.security.web.access.channel.ChannelProcessingFilter] - <Validated configuration attributes>
--05-22 10:27:58,291 INFO [org.springframework.security.web.DefaultSecurityFilterChain] - <Will secure any request with [org.springframework.security.web.access.channel.ChannelProcessingFilter@eab31b4, org.springframework.security.web.context.request.async.WebAsyncManagerIntegrationFilter@68a8bdb1, org.springframework.security.web.context.SecurityContextPersistenceFilter@1cd7f4a2, org.springframework.security.web.savedrequest.RequestCacheAwareFilter@560e50d4, org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter@6c15605e, org.springframework.security.web.authentication.AnonymousAuthenticationFilter@58b7eb53, org.springframework.security.web.session.SessionManagementFilter@37d269d5, org.springframework.security.web.access.ExceptionTranslationFilter@20d87607, org.springframework.security.web.access.intercept.FilterSecurityInterceptor@48056bdc]>
+-06-06 19:06:43,801 INFO [org.apereo.cas.web.CasWebApplicationServletInitializer] - <Started CasWebApplicationServletInitializer in 13.811 seconds (process running for 31.402)>
--05-22 10:27:59,626 INFO [org.apereo.cas.config.LdapAuthenticationConfiguration] - <Registering LDAP authentication for [LdapAuthenticationHandler]>
+-06-06 19:06:43,839 INFO [org.apereo.cas.services.mgmt.AbstractServicesManager] - <Loaded [0] service(s) from [JsonServiceRegistry].>
--05-22 10:27:59,895 WARN [org.apereo.cas.config.CasCoreTicketsConfiguration] - <Runtime memory is used as the persistence storage for retrieving and managing tickets. Tickets that are issued during runtime will be LOST when the web server is restarted. This MAY impact SSO functionality.>
+-06-06 19:06:43,846 INFO [org.apereo.cas.web.CasWebApplicationReady] - <>
--05-22 10:27:59,899 INFO [org.apereo.cas.util.CoreTicketUtils] - <Ticket registry encryption/signing is turned off. This MAY NOT be safe in a clustered production environment. Consider using other choices to handle encryption, signing and verification of ticket registry tickets, and verify the chosen ticket registry does support this behavior.>
+-06-06 19:06:43,846 INFO [org.apereo.cas.web.CasWebApplicationReady] - <
--05-22 10:28:00,197 WARN [org.apereo.cas.util.cipher.BaseStringCipherExecutor] - <Secret key for encryption is not defined for [Ticket-granting Cookie]; CAS will attempt to auto-generate the encryption key>
--05-22 10:28:00,226 WARN [org.apereo.cas.util.cipher.BaseStringCipherExecutor] - <Generated encryption key [szXKgSECRETFCQ] of size [256] for [Ticket-granting Cookie]. The generated key MUST be added to CAS settings under setting [cas.tgc.crypto.encryption.key].>
--05-22 10:28:00,229 WARN [org.apereo.cas.util.cipher.BaseStringCipherExecutor] - <Secret key for signing is not defined for [Ticket-granting Cookie]. CAS will attempt to auto-generate the signing key>
+ ____     ___   ____  ___    __ __
--05-22 10:28:00,229 WARN [org.apereo.cas.util.cipher.BaseStringCipherExecutor] - <Generated signing key [68DkrB3Sr-mSECRETrqSYA] of size [512] for [Ticket-granting Cookie]. The generated key MUST be added to CAS settings under setting [cas.tgc.crypto.signing.key].>
+|    \   /  _] /    T|   \  |  T  T
--05-22 10:28:00,408 WARN [org.apereo.cas.util.cipher.BaseBinaryCipherExecutor] - <Secret key for signing is not defined under [cas.webflow.crypto.signing.key]. CAS will attempt to auto-generate the signing key>
+|  D  ) /  [_ Y  o  ||    \ |  |  |
--05-22 10:28:00,409 WARN [org.apereo.cas.util.cipher.BaseBinaryCipherExecutor] - <Generated signing key [oDrASECRETqCiyP-3RQxi2VGGwHiw3G7h3pHHPOprtIjSisWhnDx2Q] of size [512]. The generated key MUST be added to CAS settings under setting [cas.webflow.crypto.signing.key].>
+|    / Y    _]|     ||  D  Y|  ~  |
--05-22 10:28:00,409 WARN [org.apereo.cas.util.cipher.BaseBinaryCipherExecutor] - <Secret key for encryption is not defined under [cas.webflow.crypto.encryption.key]. CAS will attempt to auto-generate the encryption key>
+|    \ |   [_ |  _  ||     |l___, |
--05-22 10:28:00,411 WARN [org.apereo.cas.util.cipher.BaseBinaryCipherExecutor] - <Generated encryption key [rcagcSECRETScsw] of size [16]. The generated key MUST be added to CAS settings under setting [cas.webflow.crypto.encryption.key].>
+|  .  Y|     T|  |  ||     ||     !
--05-22 10:28:00,650 INFO [org.apereo.cas.web.CasWebApplicationServletInitializer] - <Started CasWebApplicationServletInitializer in 20.636 seconds (JVM running for 33.242)>
+l__j\_jl_____jl__j__jl_____jl____/
--05-22 10:28:00,671 INFO [org.apereo.cas.web.CasWebApplication] - <>
--05-22 10:28:00,671 INFO [org.apereo.cas.web.CasWebApplication] - <
+CAS is now running at https://cas7d.imtbs-tsp.eu:443/cas
-  ____  _____    _    ______   __
- |  _ \| ____|  / \  |  _ \ \ / /
- | |_) |  _|   / _ \ | | | \ V /
- |  _ <| |___ / ___ \| |_| || |
- |_| \_\_____/_/   \_\____/ |_|
 >
--05-22 10:28:00,671 INFO [org.apereo.cas.web.CasWebApplication] - <>
+-06-06 19:06:43,846 INFO [org.apereo.cas.web.CasWebApplicationReady] - <>
--05-22 10:28:00,671 INFO [org.apereo.cas.web.CasWebApplication] - <Ready to process requests @ [2021-05-22T09:28:00.670Z]>
+-06-06 19:06:43,846 INFO [org.apereo.cas.web.CasWebApplicationReady] - <Ready to process requests @ [2024-06-06T17:06:43.822Z]>
--May-2021 10:28:00.696 INFO [main] org.apache.catalina.startup.HostConfig.deployWAR Deployment of web application archive [/opt/tomcat/webapps/cas.war] has finished in [31,454] ms
+-06-06 19:06:43,846 INFO [org.apereo.cas.configuration.CasConfigurationPropertiesValidator] - <Validating CAS property sources and configuration for active profiles [[standalone]]. Please wait...>
--May-2021 10:28:00.697 INFO [main] org.apache.catalina.startup.HostConfig.deployDirectory Deploying web application directory [/opt/tomcat/webapps/examples]
+-Jun-2024 19:06:43.860 INFO [main] org.apache.catalina.startup.HostConfig.deployWAR Deployment of web application archive [/opt/tomcat/webapps/cas.war] has finished in [22,430] ms
--05-22 10:28:01,033 INFO [org.apereo.cas.services.AbstractServicesManager] - <Loaded [1] service(s) from [JsonServiceRegistry].>
--May-2021 10:28:01.049 INFO [main] org.apache.catalina.startup.HostConfig.deployDirectory Deployment of web application directory [/opt/tomcat/webapps/examples] has finished in [352] ms
--May-2021 10:28:01.050 INFO [main] org.apache.catalina.startup.HostConfig.deployDirectory Deploying web application directory [/opt/tomcat/webapps/docs]
--May-2021 10:28:01.071 INFO [main] org.apache.catalina.startup.HostConfig.deployDirectory Deployment of web application directory [/opt/tomcat/webapps/docs] has finished in [21] ms
--May-2021 10:28:01.071 INFO [main] org.apache.catalina.startup.HostConfig.deployDirectory Deploying web application directory [/opt/tomcat/webapps/ROOT]
--May-2021 10:28:01.088 INFO [main] org.apache.catalina.startup.HostConfig.deployDirectory Deployment of web application directory [/opt/tomcat/webapps/ROOT] has finished in [17] ms
--May-2021 10:28:01.088 INFO [main] org.apache.catalina.startup.HostConfig.deployDirectory Deploying web application directory [/opt/tomcat/webapps/idp]
--May-2021 10:28:05.363 INFO [main] org.apache.jasper.servlet.TldScanner.scanJars At least one JAR was scanned for TLDs yet contained no TLDs. Enable debug logging for this logger for a complete list of JARs that were scanned but no TLDs were found in them. Skipping unneeded JARs during scanning can improve startup time and JSP compilation time.
-Warning: Nashorn engine is planned to be removed from a future JDK release
 </code>
@@ Line 763: / Line 763: @@
 <code>
-[root@cas6 ~]# cat /etc/httpd/conf.d/cas.conf
+[root@cas7 ~]#  cat /etc/httpd/conf.d/cas7.conf
-ProxyRequests off
+#ProxyRequests off
-ProxyPass /cas ajp://127.0.0.1:8009/idp retry=0
+ProxyPass /cas ajp://127.0.0.1:8009/cas
-ProxyPassReverse /cas ajp://127.0.0.1:8009/idp
+ProxyPassReverse /cas ajp://127.0.0.1:8009/cas
 ProxyPass /manager ajp://127.0.0.1:8009/manager
 ProxyPassReverse /manager ajp://127.0.0.1:8009/manager
 </code>
@@ Line 779: / Line 780: @@
 depuis un navigateur accedons a notre service CAS : https://ssocas6.domain.fr/cas/login
+{{:docpublic:systemes:ssocas:cas7-initial-login-view-2024-06-06_19-11-45.png?400|}}
-{{:docpublic:systemes:ssocas:ssocas6-1stlogin-form-2021-05-22.png?600|}}
 une fois le login/password saisie, on aboutit sur une page d'affichage des attributs, ce qui valide le process d'authentifcation et de recuperation d'information depuis notre annuaire ldap.
@@ Line 860: / Line 860: @@
 ==== Registering Applications ====
+  * https://jasigcas.readthedocs.io/en/latest/cas-server-documentation/installation/JSON-Service-Management.html
 les appplications clientes autorisées à utiliser notre serveur CAS doivent etre declarée au préalable . cela peut se faire au travers d'un simple fichier de type json .
-nous déclarons dans cas.prpoerties le chemin d'acces a ce fichier json
+nous déclarons dans cas.properties le chemin d'acces a ce fichier json
 <code>
-[root@ssocas6 cas-overlay-template]# tail -2 etc/cas/config/cas.properties
+[root@cas7 cas-overlay-template]# grep -b1 service etc/cas/config/cas.properties
-### Registering Applications
+-### Registering Applications
-cas.serviceRegistry.json.location: file:/etc/cas/services
+:cas.serviceRegistry.json.location: file:/etc/cas/services
 </code>
-Il est recommandé de nommer les nouveaux fichiers JSON comme ceci: "serviceName-serviceNumericId.json"
+Il est recommandé de nommer les nouveaux fichiers JSON comme ceci: "serviceName-serviceNumericId.json", et de bien reprendre le nom serviceName dans l'attribut "name"
 Pour créer l'ID nous utilisons la commande date +%s
 <code>
-[root@ssocas6 cas-overlay-template]# mkdir /etc/cas/services
+[root@cas7 cas-overlay-template]# mkdir /etc/cas/services
-[root@ssocas6 cas-overlay-template]# cd /etc/cas/services
+[root@cas7 cas-overlay-template]# cd /etc/cas/services
-[root@ssocas6 services]# touch disi_wikis-`date +%s`.json
+[root@cas7 services]# touch disi_star_domain-`date +%s`.json
-[root@ssocas6 services]# vim disi_wikis-1621678622.json
+[root@cas7 services]# vim disi_star_domain-1718526946.json
 </code>
-on peux ensuite ajouter d'autres services (ici un 3eme cf logs CAS [1]) , le serveur CAS lit regulierement le directory /etc/cas/services pour les charger dynamiquement sans necessité de restart de tomcat/cas .
+le contenu de la définition de services a autoriser, dans cet exemple RegEx sur tout un domain
+<code>
+[root@cas7 services]# cat disi_star_domain-1718526946.json
+{
+"@class" : "org.apereo.cas.services.CasRegisteredService",
+"serviceId" : "https://.*.domain.fr/.*",
+"name" : "disi_star_domain",
+"id" : 1718526946,
+"evaluationOrder" : 40616,
+"matchingStrategy": {
+   "@class": "org.apereo.cas.services.FullRegexRegisteredServiceMatchingStrategy"
+}
+"proxyPolicy" : {
+    "@class" : "org.apereo.cas.services.RegexMatchingRegisteredServiceProxyPolicy",
+    "pattern" : "https?:\/\/.*.domain.fr\/.*"
+  }
+  "attributeReleasePolicy" : {
+   "@class" : "org.apereo.cas.services.ReturnAllAttributeReleasePolicy"
+ }
+}
+</code>
+on peut ensuite ajouter d'autres services (ici un 3eme cf logs CAS [1]) , le serveur CAS lit regulierement le directory /etc/cas/services pour les charger dynamiquement sans necessité de restart de tomcat/cas .
 <code>
@@ Line 888: / Line 916: @@
 [root@ssocas6 services]#cat dsi_ws_domain1-fr-1622207781.json
 {
-"@class" : "org.apereo.cas.services.RegexRegisteredService",
+"@class" : "org.apereo.cas.services.CasRegisteredService",
 "serviceId" : "^https://.*.domain1.fr/.*",
 "name" : "Dsi_ws-tem-tsp-eu",
@@ Line 900: / Line 928: @@
 [1]
 <code>
--05-28 14:18:03,506 INFO [org.apereo.cas.services.AbstractServicesManager] - <Loaded [3] service(s) from [JsonServiceRegistry].>
+-06-16 10:56:43,076 INFO [org.apereo.cas.services.mgmt.AbstractServicesManager] - <Loaded [2] service(s) from [JsonServiceRegistry].>
 </code>
@@ Line 962: / Line 991: @@
   * https://fawnoos.com/2020/05/17/cas62x-reloadable-html-views/
   * https://fawnoos.com/2021/02/16/cas63-ui-themes/
+  * https://apereo.github.io/cas/7.0.x/ux/User-Interface-Customization.html
-depuis 5.X on est passé de JSP a tymeleaf , on peux visualiser le resultat directmeent en html sans avoir besoin d'un serveur pour interpreter .
+depuis 5.X on est passé de JSP a tymeleaf , on peut visualiser le resultat directement en html sans avoir besoin d'un serveur pour interpreter .
 pour personaliser des pages, il faut d'abord les extraires de l'overlay distribué afin de les mettres dans notre environement de personalisations locales
-pour ce faire nous allons utiliser la tache gradle listTemplateViews afin de lister l'ensembles des fichiers (css, html, png ..)  qui compose la view du formulaire :
+pour ce faire nous allons utiliser la tache //gradle listTemplateViews// afin de lister l'ensemble des fichiers (css, html, png ..)  qui composent la view du formulaire :
 <code>
-[root@ssocas6 cas-overlay-template]# ./gradlew listTemplateViews | more
+[root@cas7 cas-overlay-template]# ./gradlew listTemplateViews | more
-Starting a Gradle Daemon (subsequent builds will be faster)
+Starting a Gradle Daemon, 1 busy Daemon could not be reused, use --status for details
-> Task :bootBuildInfo
+Configuration on demand is an incubating feature.
-> Task :generateLombokConfig UP-TO-DATE
+> Task :generateEffectiveLombokConfig UP-TO-DATE
-> Task :compileJava NO-SOURCE
+> Task :compileJava UP-TO-DATE
+> Task :validateConfiguration NO-SOURCE
 > Task :processResources UP-TO-DATE
-> Task :classes
+> Task :classes UP-TO-DATE
 > Task :extractCasBootWarOverlay UP-TO-DATE
-> Task :bootWar
+> Task :resolveMainClassName UP-TO-DATE
+> Task :bootWar UP-TO-DATE
 > Task :war SKIPPED
-> Task :assemble
+> Task :assemble UP-TO-DATE
+> Task :generateTestEffectiveLombokConfig UP-TO-DATE
 > Task :compileTestJava NO-SOURCE
 > Task :processTestResources NO-SOURCE
@@ Line 987: / Line 1020: @@
 > Task :test NO-SOURCE
 > Task :check UP-TO-DATE
-> Task :build
+> Task :build UP-TO-DATE
-> Task :explodeWarOnly
+> Task :unzipWAR
-Exploded WAR into /opt/test-6.3-cas-overlay-template/cas-overlay-template/build/cas
+Unzipped WAR into /opt/cas-src/cas-overlay-template/build/app
-> Task :explodeWar
+> Task :unzip
-Exploded WAR resources into /opt/test-6.3-cas-overlay-template/cas-overlay-template/build/cas-resources
+Exploded WAR resources into /opt/cas-src/cas-overlay-template/build/cas-resources
 > Task :listTemplateViews
-/templates/casAcceptableUsagePolicyView.html
-/templates/casAccepttoRegistrationView.html
+BUILD SUCCESSFUL in 12s
-/templates/casAccountDisabledView.html
+actionable tasks: 3 executed, 7 up-to-date
-/templates/casAccountLockedView.html
+[root@cas7d cas-overlay-template]# ls /opt/cas-src/cas-overlay-template/build/cas-resources
-/templates/casAdminLoginView.html
+application.properties        git.properties          messages_de.properties  messages_it.properties  messages.properties        messages_sl.properties  messages_vi.properties     services
-/templates/casAuthenticationBlockedView.html
+application.yml               log4j2.xml              messages_es.properties  messages_ja.properties  messages_pt_BR.properties  messages_sv.properties  messages_zh_CN.properties  spring.properties
-/templates/casAuthyLoginView.html
+bootstrap.properties          messages_ar.properties  messages_fa.properties  messages_mk.properties  messages_pt_PT.properties  messages_tr.properties  messages_zh_TW.properties  static
-/templates/casBadHoursView.html
+bootstrap.yml                 messages_ca.properties  messages_fr.properties  messages_nl.properties  messages_ru.properties     messages_uk.properties  META-INF                   templates
-/templates/casBadWorkstationView.html
+cas-theme-default.properties  messages_cs.properties  messages_hr.properties  messages_pl.properties  messages_sk.properties     messages_ur.properties  org                        truststore.jks
-/templates/casCompositeMfaProviderSelectionView.html
-/templates/casConfirmLogoutView.html
-/templates/casConfirmView.html
-/templates/casConsentView.html
-/templates/casDelegatedAuthnErrorView.html
+</code>
-/templates/casDuoLoginView.html
-/templates/casExpiredPassView.html
-/templates/casForgotUsernameSendInfoView.html
+List des ressources / fichier modifiables
-/templates/casForgotUsernameSentInfoView.html
-/templates/casGenericSuccessView.html
+<code>
-/templates/casGoogleAuthenticatorConfirmRegistrationView.html
+[root@cas7 cas-overlay-template]# ./gradlew listTemplateViews
-/templates/casGoogleAuthenticatorLoginView.html
+Configuration on demand is an incubating feature.
-/templates/casGoogleAuthenticatorRegistrationView.html
-/templates/casGuaDisplayUserGraphicsView.html
+> Task :listTemplateViews
-/templates/casGuaGetUserIdView.html
+/templates/acct-mgmt/casAccountSignupView.html
-/templates/casInterruptView.html
+/templates/acct-mgmt/casAccountSignupViewComplete.html
-/templates/casLoginMessageView.html
+/templates/acct-mgmt/casAccountSignupViewCompleted.html
-/templates/casLoginView.html
+/templates/acct-mgmt/casAccountSignupViewSentInfo.html
-/templates/casLogoutView.html
+/templates/acct/casMyAccountProfile.html
-/templates/casMfaDeniedView.html
+/templates/adaptive-authn/casRiskAuthenticationBlockedView.html
-/templates/casMfaRegisterDeviceView.html
+/templates/adaptive-authn/casRiskAuthenticationVerifiedView.html
-/templates/casMfaUnavailableView.html
+/templates/admin/casAdminLoginView.html
-/templates/casMustChangePassView.html
+/templates/aup/casAcceptableUsagePolicyView.html
-/templates/casPac4jStopWebflow.html
+/templates/consent/casConsentView.html
-/templates/casPasswordUpdateSuccessView.html
+/templates/delegated-authn/casDelegatedAuthnErrorView.html
-/templates/casPasswordlessDisplayView.html
+/templates/delegated-authn/casDelegatedAuthnSelectionView.html
-/templates/casPasswordlessGetUserIdView.html
+/templates/delegated-authn/casDelegatedAuthnStopWebflow.html
-/templates/casPropagateLogoutView.html
+/templates/delegated-authn/casDynamicDiscoveryView.html
-/templates/casRadiusLoginView.html
-/templates/casResetPasswordErrorView.html
-/templates/casResetPasswordSendInstructionsView.html
-/templates/casResetPasswordSentInstructionsView.html
-/templates/casResetPasswordVerifyQuestionsView.html
-/templates/casRiskAuthenticationBlockedView.html
-/templates/casSamlIdPDiscoveryView.html
-/templates/casServiceErrorView.html
-/templates/casSimpleMfaLoginView.html
-/templates/casSurrogateAuthnListView.html
-/templates/casSwivelLoginView.html
-/templates/casU2fLoginView.html
-/templates/casU2fRegistrationView.html
-/templates/casWebAuthnLoginView.html
-/templates/casWebAuthnRegistrationView.html
-/templates/casWsFedStopWebflow.html
-/templates/casYubiKeyLoginView.html
-/templates/casYubiKeyRegistrationView.html
 /templates/error.html
+/templates/error/400.html
 /templates/error/401.html
 /templates/error/403.html
@@ Line 1057: / Line 1073: @@
 /templates/error/405.html
 /templates/error/423.html
-/templates/fragments/accepttoQRCode.html
+/templates/error/casServiceErrorView.html
+/templates/error/casUnauthorizedServiceRedirectView.html
+/templates/error/casWebflowConfigErrorView.html
+/templates/forgot-username/casForgotUsernameSendInfoView.html
+/templates/forgot-username/casForgotUsernameSentInfoView.html
+/templates/fragments/accountprofileapplications.html
+/templates/fragments/accountprofileattributes.html
+/templates/fragments/accountprofileauditlog.html
+/templates/fragments/accountprofileconsent.html
+/templates/fragments/accountprofilemfadevices.html
+/templates/fragments/accountprofilenavigation.html
+/templates/fragments/accountprofileoverview.html
+/templates/fragments/accountprofilesecurityquestions.html
+/templates/fragments/accountprofilesessions.html
+/templates/fragments/accountprofiletrusteddevices.html
 /templates/fragments/footer.html
+/templates/fragments/googleanalytics.html
 /templates/fragments/header.html
+/templates/fragments/includes.html
 /templates/fragments/loginProviders.html
+/templates/fragments/logindrawer.html
 /templates/fragments/loginform.html
 /templates/fragments/loginsidebar.html
@@ Line 1070: / Line 1103: @@
 /templates/fragments/serviceui.html
 /templates/fragments/submitbutton.html
+/templates/fragments/unlockaccount.html
 /templates/fragments/webAuthnLogin.html
+/templates/gauth/casGoogleAuthenticatorConfirmRegistrationView.html
+/templates/gauth/casGoogleAuthenticatorLoginView.html
+/templates/gauth/casGoogleAuthenticatorRegistrationView.html
+/templates/gua/casGuaDisplayUserGraphicsView.html
+/templates/gua/casGuaGetUserIdView.html
+/templates/interrupt/casInterruptView.html
+/templates/inwebo/casInweboCheckResultView.html
+/templates/inwebo/casInweboErrorView.html
+/templates/inwebo/casInweboMAAuthnView.html
+/templates/inwebo/casInweboSelectAuthnView.html
+/templates/inwebo/casInweboVAAuthnView.html
 /templates/layout.html
-/templates/protocol/2.0/casProxyFailureView.html
+/templates/login-error/casAccountDisabledView.html
-/templates/protocol/2.0/casProxySuccessView.html
+/templates/login-error/casAccountLockedView.html
-/templates/protocol/2.0/casServiceValidationFailure.html
+/templates/login-error/casAccountUnlockedView.html
-/templates/protocol/2.0/casServiceValidationSuccess.html
+/templates/login-error/casAuthenticationBlockedView.html
-/templates/protocol/3.0/casServiceValidationFailure.html
+/templates/login-error/casBadHoursView.html
-/templates/protocol/3.0/casServiceValidationSuccess.html
+/templates/login-error/casBadWorkstationView.html
+/templates/login-error/casExpiredPassView.html
+/templates/login-error/casMustChangePassView.html
+/templates/login/casConfirmView.html
+/templates/login/casGenericSuccessView.html
+/templates/login/casLoginMessageView.html
+/templates/login/casLoginView.html
+/templates/logout/casConfirmLogoutView.html
+/templates/logout/casLogoutView.html
+/templates/logout/casPropagateLogoutView.html
+/templates/mfa-trusted-devices/casMfaRegisterDeviceView.html
+/templates/mfa/casCompositeMfaProviderSelectionView.html
+/templates/mfa/casMfaDeniedView.html
+/templates/mfa/casMfaUnavailableView.html
+/templates/password-reset/casPasswordUpdateSuccessView.html
+/templates/password-reset/casResetPasswordErrorView.html
+/templates/password-reset/casResetPasswordSendInstructionsView.html
+/templates/password-reset/casResetPasswordSentInstructionsView.html
+/templates/password-reset/casResetPasswordVerifyQuestionsView.html
+/templates/password-reset/casWeakPasswordDetectedView.html
+/templates/passwordless/casPasswordlessDisplayView.html
+/templates/passwordless/casPasswordlessGetUserIdView.html
 /templates/protocol/casPostResponseView.html
 /templates/protocol/oauth/confirm.html
@@ Line 1084: / Line 1150: @@
 /templates/protocol/oauth/sessionStaleMismatchError.html
 /templates/protocol/oidc/confirm.html
-/templates/protocol/openid/casOpenIdAssociationSuccessView.html
+/templates/radius/casRadiusLoginView.html
-/templates/protocol/openid/casOpenIdServiceFailureView.html
+/templates/saml2-discovery/casSamlIdPDiscoveryView.html
-/templates/protocol/openid/casOpenIdServiceSuccessView.html
+/templates/saml2-idp/casSamlIdPErrorView.html
-/templates/protocol/openid/user.html
+/templates/simple-mfa/casSimpleMfaLoginView.html
+/templates/simple-mfa/casSimpleMfaSelectEmailsView.html
+/templates/storage/casSessionStorageReadView.html
+/templates/storage/casSessionStorageWriteView.html
+/templates/surrogate/casSurrogateAuthnListView.html
+/templates/surrogate/casSurrogateAuthnWildcardView.html
+/templates/webauthn/casWebAuthnLoginView.html
+/templates/webauthn/casWebAuthnRegistrationView.html
+/templates/wsfed/casWsFedStopWebflow.html
+/templates/yubikey/casYubiKeyLoginView.html
+/templates/yubikey/casYubiKeyRegistrationView.html
+BUILD SUCCESSFUL in 3s
+actionable tasks: 1 executed, 9 up-to-date
 </code>
@@ Line 1093: / Line 1172: @@
 <code>
-[root@ssocas6 cas-overlay-template]#  ./gradlew getResource -PresourceName=casLoginView.html
+[root@cas7 cas-overlay-template]# ./gradlew getResource -PresourceName=casLoginView.html --no-daemon
+To honour the JVM settings for this build a single-use Daemon process will be forked. For more on this, please refer to https://docs.gradle.org/8.8/userguide/gradle_daemon.html#sec:disabling_the_daemon in the Gradle documentation.
+Daemon will be stopped at the end of the build
+Configuration on demand is an incubating feature.
+> Task :unzipWAR
+Unzipped WAR into /opt/cas-src/cas-overlay-template/build/app
 > Task :getResource
-Copied file /opt/test-6.3-cas-overlay-template/cas-overlay-template/build/cas-resources/templates/casLoginView.html to src/main/resources/templates/casLoginView.html
+Copied file /opt/cas-src/cas-overlay-template/build/cas-resources/templates/login/casLoginView.html to /opt/cas-src/cas-overlay-template/src/main/resources/templates/login/casLoginView.html
-</code>
+BUILD SUCCESSFUL in 13s
+actionable tasks: 5 executed, 5 up-to-date
+[root@cas7 cas-overlay-template]# ls -l /opt/cas-src/cas-overlay-template/src/main/resources/templates/login/
+-rw-r--r-- 1 root root 1955 Jun  6 19:34 casLoginView.html
 on va egalement prendre header.html (extrait vers src/main/resources/templates/fragments/header.html) pour y changer le logo
 <code>
-[root@ssocas6 cas-overlay-template]# grep logo src/main/resources/templates/fragments/header.html
+[root@cas7 cas-overlay-template]# ./gradlew getResource -PresourceName=header.html --no-daemon
-                        <img class="cas-logo"
+To honour the JVM settings for this build a single-use Daemon process will be forked. For more on this, please refer to https://docs.gradle.org/8.8/userguide/gradle_daemon.html#sec:disabling_the_daemon in the Gradle documentation.
-                             th:src="@{${#strings.defaultString(#themes.code('cas.logo.file'), '/images/our-logo.png')}}" />
+Daemon will be stopped at the end of the build
+Configuration on demand is an incubating feature.
+> Task :getResource
+Copied file /opt/cas-src/cas-overlay-template/build/cas-resources/templates/fragments/header.html to /opt/cas-src/cas-overlay-template/src/main/resources/templates/fragments/header.html
+BUILD SUCCESSFUL in 9s
+actionable tasks: 1 executed, 9 up-to-date
+[root@cas7d cas-overlay-template]# grep logo /opt/cas-src/cas-overlay-template/src/main/resources/templates/fragments/header.html
+                            <img id="cas-logo" class="cas-logo"
+                                 th:src="@{${#strings.defaultString(#themes.code('cas.logo.file'), '/images/cas-logo.png')}}"
 </code>
-on peux aussi extraire le cas.logo.png afin de disposer de l'arborescence locale depo des images et y copier notre fichier image / logo
+on peut aussi extraire le cas.logo.png afin de disposer de l'arborescence locale depo des images et y copier notre fichier image / logo
 <code>
-[root@ssocas6 cas-overlay-template]# cp /root/our-logo.png src/main/resources/static/images/
+[root@cas7 cas-overlay-template]# ./gradlew getResource -PresourceName=cas-logo.png --no-daemon
+> Task :getResource
+Copied file /opt/cas-src/cas-overlay-template/build/cas-resources/static/images/cas-logo.png to /opt/cas-src/cas-overlay-template/src/main/resources/static/images/cas-logo.png
 </code>
+il est possible de recuperer le logo depuis une autre version/machine et de le recopier dans les sources de cette version sous src/main/resources/static/images
+<code>
+[root@cas6 resources]# scp static/images/logo_IMTBS-TSP_198x80.png root@cas7d.int-evry.fr:/opt/cas-src/cas-overlay-template/src/main/resources/static/images
+root@cas7.domain.fr's password:
+logo_IMTBS-TSP_198x80.png
+</code>
+restera a appeler ce fichier dans le cas.css
+==== CSS ====
+pour les gouts et les couleurs, extraire et modifier //cas.css//
+<code>
+[root@cas7 cas-overlay-template]# ./gradlew getResource -PresourceName=cas.css --no-daemon
+To honour the JVM settings for this build a single-use Daemon process will be forked. For more on this, please refer to https://docs.gradle.org/8.8/userguide/gradle_daemon.html#sec:disabling_the_daemon in the Gradle documentation.
+Daemon will be stopped at the end of the build
+Configuration on demand is an incubating feature.
+> Task :unzipWAR
+Unzipped WAR into /opt/cas-src/cas-overlay-template/build/app
+> Task :getResource
+Copied file /opt/cas-src/cas-overlay-template/build/cas-resources/static/css/cas.css to /opt/cas-src/cas-overlay-template/src/main/resources/static/css/cas.css
+BUILD SUCCESSFUL in 13s
+actionable tasks: 5 executed, 5 up-to-date
+</code>
+on change par exemple le logo
+<code>
+[root@cas7 resources]# diff templates/fragments/header.html.dist templates/fragments/header.html
+c35
+<                                  th:src="@{${#strings.defaultString(#themes.code('cas.logo.file'), '/images/cas-logo.png')}}"
+---
+>                                  th:src="@{${#strings.defaultString(#themes.code('cas.logo.file'), '/images/logo_IMTBS-TSP_198x80.png')}}"
+</code>
 enfin on redeploie le tout (il est possible de faire usage ./gradlew bootRun pour changer les views a chaud)
@@ Line 1131: / Line 1281: @@
-=== lie vers l'URL de changement de password ===
+==== lien vers l'URL de changement de password ====
 il est definit via le password Manamegement link => fragment pmlink a extraire pour trouver le bon lienvers le messages.propeties a modifier
 <code>
-#./gradlew getResource -PresourceName=pmlinks
+[root@cas7 cas-overlay-template]# ./gradlew getResource -PresourceName=pmlinks --no-daemon
 > Task :getResource
-Copied file /opt/test-6.3-cas-overlay-template/cas-overlay-template/build/cas-resources/templates/fragments/pmlinks.html to src/main/resources/templates/fragments/pmlinks.html
+Copied file /opt/cas-src/cas-overlay-template/build/cas-resources/templates/fragments/pmlinks.html to /opt/cas-src/cas-overlay-template/src/main/resources/templates/fragments/pmlinks.html
-[root@ssocas6d cas-overlay-template]# grep pwd.example.org  src/main/resources/templates/fragments/pmlinks.html
-            <span th:utext="#{screen.pm.button.forgotpwd('https://pwd.example.org')}">Forgot your password?</span>
 </code>
@@ Line 1151: / Line 1297: @@
 [root@ssocas6dev cas-overlay-template]# grep screen.pm.button.forgotpwd src/main/resources/messages_fr.properties
 screen.pm.button.forgotpwd=<a href="https://credreset.domain.fr/">Mot de passe oublié ?</a>
-</code>
-=== CSS ===
-pour les gouts et les couleurs, cas.css
-<code>
-./gradlew getResource -PresourceName=cas.css
-> Task :getResource
-Copied file /opt/test-6.3-cas-overlay-template/cas-overlay-template/build/cas-resources/static/css/cas.css to src/main/resources/static/css/cas.css
 </code>

docpublic/systemes/ssocas/cas7install.1717338319.txt.gz · Last modified: 2024/06/02 14:25 by adminjp

Show page Old revisions

[unknown link type]Back to top