[cas-dev] CASifying Sun Identity Manager Help Needed

Michael A Jones M.A.Jones at hull.ac.uk
Fri Nov 28 06:54:14 EST 2008 

Hi there,

 

I am trying to setup SSO to Sun Identity Manager 8.0 through CAS using
instructions posted in the CAS Wiki by the University of California
merced. I successfully got IDM to recognise the custom compiled java
class to create a new CAS resource and associated this with my IDM
users. Then associated this with a new login group, which is set to be
used in place of the default user login. 

I then made the various changes needed in the IDM web.xml and
userLogout.jsp and restarted my tomcat webserver. I then began the
process of testing and below is the URL I use to login to CAS:

 

https://mycas-server/cas/login?service=http://my-IDM-Server:8081/idm/use
r/login.jsp

 

I login with one of my casified IDM users and a ticket is generated ok,
but then when the system redirects  back to the IDM CASified login page
I am getting an HTTP 404 not found page error in my browser, being
generated by my IDM web server. I think the problem is something to do
with the IDM web.xml entry, as in my webserver catalina logs it is
reporting an error with parsing my IDM web.xml as follows:

 

Invalid <url-pattern> http:// my-IDM-Server:8081/idm/user/login.jsp in
filter mapping

 

Below is the xml code for my IDM web.xml:

 

<filter>

    <filter-name>CAS Filter</filter-name>

 
<filter-class>edu.yale.its.tp.cas.client.filter.CASFilter</filter-class>

    <init-param>

 
<param-name>edu.yale.its.tp.cas.client.filter.loginUrl</param-name>

       <param-value>https://mycas-server/cas/login</param-value>

    </init-param>

    <init-param>

 
<param-name>edu.yale.its.tp.cas.client.filter.validateUrl</param-name>

       <param-value>https:// mycas-server
/cas/serviceValidate</param-value>

    </init-param>

    <init-param>

 
<param-name>edu.yale.its.tp.cas.client.filter.serverName</param-name>

       <param-value> my-IDM-Server </param-value>

    </init-param>

 

    <!-- wrap request such that getRemoteUser() returns username -->

    <init-param>

 
<param-name>edu.yale.its.tp.cas.client.filter.wrapRequest</param-name>

      <param-value>true</param-value>

    </init-param>

  </filter>

 

  <filter-mapping>

    <filter-name>CAS Filter</filter-name>

    <url-pattern>http://
my-IDM-Server:8081/idm/user/login.jsp</url-pattern>

  </filter-mapping>

 

Could anyone who has managed to get this working or the authors of this
method give some advice. 

 

Regards

 

Mike Jones

 

Identity Management Systems Administrator

e-sig

University of Hull

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://tp.its.yale.edu/pipermail/cas-dev/attachments/20081128/09b92e37/attachment.html 
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: not available
Url: http://tp.its.yale.edu/pipermail/cas-dev/attachments/20081128/09b92e37/attachment.pl

More information about the cas-dev mailing list