Application Not Authorized to Use CAS The application you attempted to authenticate to is not authorized to use CAS

cas
10,196

I solved issue myself, The issue was with the serviceId not mapped correctly in the client table of the CAS database.

It took two weeks to understand the complete CAS system and resolve the issue. But Someone having the same issue can directly follow the below steps (Assuming CAS 5.1 version deployed on tomcat +linux)

  • Check your .json files placed under /etc/cas/services
  • Check your .jwks files places under /etc/cas/jwks folder
  • Check the clientId and ClientSecret matches in .json , .jwks and in CAS Database- Client table
  • Check the serviceID mapped in .json,.jwks and in your CAS Database,client table

All the best.

Share:
10,196

Related videos on Youtube

Rama
Author by

Rama

Updated on June 04, 2022

Comments

  • Rama
    Rama about 2 years

    We are using single sign on solution set up using CAS server( deployed on tomcat). The login was working seamless few days back and all of a sudden its says "

    Problem Application Not Authorized to Use CAS The application you attempted to authenticate to is not authorized to use CAS

    After user login, the user is successfully authenticated in the backend (in the logs we can see its authenticated), but after login the user will redirect to /oidc/token and then to /profile. Now its failing in the /profile redirection.

    What I tried We tried checking the catalina.log and it says used authenticated successfully. We have checked the regexregisteredservice.json file located in /etc/cas/config and there is no change.

    The same is working in UAT environement.

    Assumptions Few days back we have updated our SSL certificate in the website. Does it effect the CAS services ?

    This is the regexregisteredservice.json file sample

    { @class: org.apereo.cas.services.RegexRegisteredService serviceId: https://host:port/oauth2.0/callbackAuthorize.* name: RegexRegisteredService id: 2588160372902752768 description: OAuth Authentication Callback Request URL proxyPolicy: {

    Expected Result:

    After login user will redirect to /oidc/token and then to /profile

    Its wokring in UAT but the problem in production(clustered version, deployed on tomcat)

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Fatal error: session_start() after upgrading to Codeigniter 3
Apache Maven Error : Could not transfer artifact org.apache.maven.plugins:maven-clean-plugin:pom: 2.5 to central
CAS Policy error in ASP.NET web Application
JASIG CAS: single sign out not working
CAS AD LDAP 32 error
Does RAM latency/timing affect motherboard compatibility?
How do I set up mod_auth_cas for a VirtualHost?
How do accept multiple authentication options in Apache?
CAS service ticket validate failed
Spring Security and CAS Integration