An use case with CAS

Luca Scotto lucascotto at gmail.com
Tue Aug 1 09:31:13 EDT 2006 

Hi all,
I'm tring to set up CAS with LDAP (Ok all well) and X509 (:-( don't
work). Today i'm exploring all way.
I'm working on
(http://www.ja-sig.org/products/cas/server/certs/index.html) doc ... but
no certificates dialog appear going to a cas/login page.

clientAuth=want,


My goal is to setup:
CAS with MODCAS (ok)
CAS with Yale Tomcat Client (ok)
CAS with LDAP (ok)
CAS with X509 (fail)

I want that a people, who have a rigth smartcard, get ticket if he is
on my ldap.
If not CAS ask for a classc NameID/Pass.
That's all.

Is this possible with CAS?


I have found many problems becouse the documentation lacks.

How can i found where is the problem?
Tomcat log don't give me to much info.

This is my catalina.log
Any idea?

Thanks

-----------------------------------------------------------------------------
2006-08-01 13:12:39,088 INFO
[org.jasig.cas.adaptors.x509.authentication.principal.X509CertificateCredentialsToIdentifierPrincipalResolver]
- <No identifier set.  Using default: $OU $CN>
2006-08-01 13:12:39,131 INFO
[org.jasig.cas.authentication.handler.support.SimpleTestUsernamePasswordAuthenticationHandler]
- <No PasswordEncoder set.  Using default:
org.jasig.cas.authentication.handler.PlainTextPasswordEncoder>
2006-08-01 13:12:39,131 INFO
[org.jasig.cas.authentication.handler.support.SimpleTestUsernamePasswordAuthenticationHandler]
- <No Class to Support set.  Using default:
org.jasig.cas.authentication.principal.UsernamePasswordCredentials>
2006-08-01 13:12:39,131 WARN
[org.jasig.cas.authentication.handler.support.SimpleTestUsernamePasswordAuthenticationHandler]
- <org.jasig.cas.authentication.handler.support.SimpleTestUsernamePasswordAuthenticationHandler
is only to be used in a testing environment.  NEVER enable this in a
production environment.>
2006-08-01 13:12:39,147 INFO
[org.jasig.cas.adaptors.x509.authentication.handler.support.X509CredentialsAuthenticationHandler]
- <Using default Subject DN Pattern: .*>
2006-08-01 13:12:40,110 INFO
[org.jasig.cas.web.ServiceValidateController] - <No successView
specified.  Using default of casServiceSuccessView>
2006-08-01 13:12:40,110 INFO
[org.jasig.cas.web.ServiceValidateController] - <No failureView
specified.  Using default of casServiceFailureView>
2006-08-01 13:12:40,113 INFO
[org.jasig.cas.ticket.proxy.support.Cas20ProxyHandler] - <No
UniqueTicketIdGenerator specified for
org.jasig.cas.ticket.proxy.support.Cas20ProxyHandler.  Using
org.jasig.cas.util.DefaultUniqueTicketIdGenerator>
2006-08-01 13:12:40,113 INFO
[org.jasig.cas.web.ServiceValidateController] - <No proxyHandler
specified.  Defaulting to
org.jasig.cas.ticket.proxy.support.Cas20ProxyHandler>
2006-08-01 13:12:40,117 INFO
[org.jasig.cas.web.ServiceValidateController] - <No authentication
specification class set.  Defaulting to
org.jasig.cas.validation.Cas20ProtocolValidationSpecification>
2006-08-01 13:12:40,117 INFO
[org.jasig.cas.web.ServiceValidateController] - <No successView
specified.  Using default of casServiceSuccessView>
2006-08-01 13:12:40,117 INFO
[org.jasig.cas.web.ServiceValidateController] - <No failureView
specified.  Using default of casServiceFailureView>
2006-08-01 13:12:40,117 INFO
[org.jasig.cas.ticket.proxy.support.Cas20ProxyHandler] - <No
UniqueTicketIdGenerator specified for
org.jasig.cas.ticket.proxy.support.Cas20ProxyHandler.  Using
org.jasig.cas.util.DefaultUniqueTicketIdGenerator>
2006-08-01 13:12:40,118 INFO
[org.jasig.cas.web.ServiceValidateController] - <No proxyHandler
specified.  Defaulting to
org.jasig.cas.ticket.proxy.support.Cas20ProxyHandler>
2006-08-01 13:12:40,216 INFO
[org.jasig.cas.web.flow.AuthenticationViaFormAction] -
<FormObjectClass not set.  Using default class of
org.jasig.cas.authentication.principal.UsernamePasswordCredentials
with formObjectName credentials and validator
org.jasig.cas.validation.UsernamePasswordCredentialsValidator.>
[cut]
INFO: Server startup in 6266 ms
2006-08-01 13:12:59,288 INFO
[org.jasig.cas.ticket.registry.support.DefaultTicketRegistryCleaner] -
<Starting cleaning of expired tickets from ticket registry at [Tue Aug
01 13:12:59 CEST 2006]>
2006-08-01 13:12:59,289 INFO
[org.jasig.cas.ticket.registry.support.DefaultTicketRegistryCleaner] -
<0 found to be removed.  Removing now.>
2006-08-01 13:12:59,289 INFO
[org.jasig.cas.ticket.registry.support.DefaultTicketRegistryCleaner] -
<Finished cleaning of expired tickets from ticket registry at [Tue Aug
01 13:12:59 CEST 2006]>
2006-08-01 13:13:16,783 INFO
[org.jasig.cas.web.flow.AutomaticCookiePathSetterAction] - <Setting
ContextPath for cookies to: /cas>
2006-08-01 13:13:16,801 WARN
[org.springframework.webflow.execution.repository.conversation.impl.ConversationLockFactory]
- <Unable to enable conversation locking. Switch to Java 5 or above,
or put the 'util.concurrent' package on the classpath to enable
locking in your environment.>
2006-08-01 13:13:18,570 WARN
[org.springframework.webflow.execution.repository.conversation.impl.ConversationLockFactory]
- <Unable to enable conversation locking. Switch to Java 5 or above,
or put the 'util.concurrent' package on the classpath to enable
locking in your environment.>
----------------------------------------------------------------------------------------

More information about the cas mailing list