gateway problem

Scott Battaglia scott.battaglia at gmail.com
Sun Apr 1 19:11:54 EDT 2007 

As Arnaud said, you need to be running CAS over HTTPS in order to receive
the SSO cookie (or configure CAS to send cookies back over http).

-Scott

On 4/1/07, Arnaud Lesueur <arnaud.lesueur at gmail.com> wrote:
>
> Hi,
>
> Are you sure you have a valid SSO Cookie ?
>
> By default, CAS 3 is configured to set SSO Cookie only over HTTPS and you
> are working in HTTP here.
> To change this, you will have to modify the configuration of the ticketGrantingTicketCookieGenerator
> bean in WEB-INF/cas-servlet.xml. You should set cookieSecure="false"
> instead of cookieSecure="true".
>
>
> --
> Arnaud Lesueur
>
>
> On 4/1/07, jmdavid at capella.coop <jmdavid at capella.coop> wrote:
> >
> > I  have a problem with gateway mode:
> > -I first send a request to http://mycasserver:8080/cas/login?gateway=true&service=http%3A%2F%2Flocalhost%2Ftest
> >
> > -I'm redirected to http://locahost/test *WITHOUT* a ticket, that's fine,
> > I'm not authenticated yet
> > -I send a new request to CAS without gateway
> > http://mycasserver:8080/cas/login?service=http%3A%2F%2Flocalhost%2Ftest
> > -I'm redirected to CAS login, I enter username and password and click ok
> > -I'm redirected to my dummy app *WITH* a ticket  http://locahost/test?ticket=ST.
> > ..
> > -I validate the ticket  http://mycasserver:8080/cas/serviceValidate?service=http%3A%2F%2Flocalhost%2Ftest&ticket=ST.
> > ..
> > -CAS returns username
> >
> > Then, I want to authenticate for a second application, I have a SSO
> > ticket already, so I expect not having to login again:
> >
> > -I send a request to
> > http://mycasserver:8080/cas/login?gateway=true&service=http%3A%2F%2Flocalhost%2Fother_test
> > -I'm redirected to  http://locahost/other_test *WITHOUT* a ticket
> >
> > What's the problem?  I'm not supposed to receive a valid ticket if I
> > already connected to CAS?
> >
> > Thank you for any help or clarification.
> >
> > _______________________________________________
> > Yale CAS mailing list
> > cas at tp.its.yale.edu
> > http://tp.its.yale.edu/mailman/listinfo/cas
> >
>
>
> _______________________________________________
> Yale CAS mailing list
> cas at tp.its.yale.edu
> http://tp.its.yale.edu/mailman/listinfo/cas
>
>


-- 
-Scott Battaglia

LinkedIn: http://www.linkedin.com/in/scottbattaglia
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://tp.its.yale.edu/pipermail/cas/attachments/20070401/c47829f4/attachment.html

More information about the cas mailing list