SAML 2.0 (Google Accounts Integration) issues
Jonathan Süssemilch Poulain
jonathan.sussemilch.poulain at liu.se
Tue Nov 6 07:52:56 EST 2007
Scott,
I might be able to get a recommendation from Google, we got some kind
of support along with Apps for domain account. But I'll try to increase
the buffer size anyways to see if that helps. I'll get back when I've
got an update.
Jonathan
On Mon, 05 Nov 2007 14:12:10 -0500
Scott Battaglia <scott.battaglia at gmail.com> wrote:
> I just looked and it appears that Google's example uses 5000 bytes.
> Would you mind trying something like 6 or 7 K and letting me know if
> that works without issue. I can't find a way to contact Google to
> see what their recommendation is.
>
> Thanks
> -Scott
>
> On 11/5/07, Scott Battaglia <scott.battaglia at gmail.com> wrote:
> >
> > Jonathan,
> >
> > I don't know if increasing the size of the buffer is the way to
> > go. The person who I suggested that too never responded. I've
> > opened a JIRA issue for it and I will double check against the
> > sample Google code to make sure we're not any smaller.
> >
> > If you can re-create the error and see what the size of the message
> > is that is causing the problem that would be helpful.
> >
> > Thanks
> > -Scott
> >
> > On 11/5/07, Jonathan Süssemilch Poulain <
> > jonathan.sussemilch.poulain at liu.se> wrote:
> > >
> > > Hi,
> > >
> > > I've just set up CAS 3.1.1 server running on Tomcat 5.5 (debian)
> > > and Sun JDK 1.6 update 3 as a single sign-on solution for a
> > > rather large Google Apps domain with about 30k+ users. During the
> > > test phase everything worked fine, when going live however I
> > > noticed some errors starting to show up in my log-files.
> > >
> > > 2007-11-05 13:49:31,385 ERROR
> > > [org.apache.catalina.core.ContainerBase.[Catalina].[localhost].[/e-go].[cas]]
> > >
> > > - <Servlet.service() for servlet cas threw exception>
> > > java.lang.RuntimeException: buffer not large enough. at
> > > org.jasig.cas.authentication.principal.GoogleAccountsService.inflate(
> > > GoogleAccountsService.java :249)
> > > at
> > >
> > > org.jasig.cas.authentication.principal.GoogleAccountsService.decodeAuthnRequestXML
> > > (GoogleAccountsService.java:197)
> > > at
> > >
> > > org.jasig.cas.authentication.principal.GoogleAccountsService.createServiceFrom
> > > (GoogleAccountsService.java :108)
> > > at
> > > org.jasig.cas.web.support.GoogleAccountsArgumentExtractor.extractService
> > > (GoogleAccountsArgumentExtractor.java:34)
> > > at
> > > org.jasig.cas.web.support.WebUtils.getService(WebUtils.java:52)
> > > at org.jasig.cas.web.support.WebUtils.getService
> > > (WebUtils.java:67) at
> > > org.jasig.cas.web.flow.InitialFlowSetupAction.doExecute( InitialFlowSetupAction.java:70)
> > > at org.springframework.webflow.action.AbstractAction.execute(
> > > AbstractAction.java:203)
> > > at
> > > org.springframework.webflow.engine.AnnotatedAction.execute (
> > > AnnotatedAction.java:142)
> > > at
> > > org.springframework.webflow.engine.ActionExecutor.execute(
> > > ActionExecutor.java:61)
> > > at
> > > org.springframework.webflow.engine.ActionState.doEnter(ActionState.java
> > > :180)
> > > at org.springframework.webflow.engine.State.enter
> > > (State.java:200) at
> > > org.springframework.webflow.engine.Flow.start(Flow.java:557) at
> > > org.springframework.webflow.engine.impl.RequestControlContextImpl.start( RequestControlContextImpl.java:196)
> > > at
> > > org.springframework.webflow.engine.impl.FlowExecutionImpl.start (
> > > FlowExecutionImpl.java:189)
> > > at
> > > org.springframework.webflow.executor.FlowExecutorImpl.launch(
> > > FlowExecutorImpl.java:206)
> > > at
> > >
> > > org.springframework.webflow.executor.support.FlowRequestHandler.handleFlowRequest
> > > (FlowRequestHandler.java :131)
> > > at
> > >
> > > org.springframework.webflow.executor.mvc.FlowController.handleRequestInternal
> > > (FlowController.java:172)
> > > at
> > > org.springframework.web.servlet.mvc.AbstractController.handleRequest(
> > > AbstractController.java:153)
> > > at
> > >
> > > org.springframework.web.servlet.mvc.SimpleControllerHandlerAdapter.handle
> > > (SimpleControllerHandlerAdapter.java:48)
> > > at
> > > org.springframework.web.servlet.DispatcherServlet.doDispatch(
> > > DispatcherServlet.java:857)
> > > at
> > > org.springframework.web.servlet.DispatcherServlet.doService(
> > > DispatcherServlet.java:792)
> > > at
> > > org.springframework.web.servlet.FrameworkServlet.processRequest(
> > > FrameworkServlet.java:475)
> > > at
> > > org.springframework.web.servlet.FrameworkServlet.doGet (
> > > FrameworkServlet.java:430)
> > > at javax.servlet.http.HttpServlet.service(HttpServlet.java:689) at
> > > javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at
> > > org.jasig.cas.web.init.SafeDispatcherServlet.service(
> > > SafeDispatcherServlet.java:115)
> > > at
> > > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(
> > > ApplicationFilterChain.java:252)
> > > at
> > > org.apache.catalina.core.ApplicationFilterChain.doFilter(
> > > ApplicationFilterChain.java :173)
> > > at
> > > org.apache.catalina.core.StandardWrapperValve.invoke(
> > > StandardWrapperValve.java:213)
> > > at
> > > org.apache.catalina.core.StandardContextValve.invoke(
> > > StandardContextValve.java:178)
> > > at
> > > org.apache.catalina.core.StandardHostValve.invoke (
> > > StandardHostValve.java:126)
> > > at
> > > org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java
> > > :105)
> > > at
> > > org.apache.catalina.valves.FastCommonAccessLogValve.invoke(
> > > FastCommonAccessLogValve.java:495)
> > > at
> > > org.apache.catalina.core.StandardEngineValve.invoke(
> > > StandardEngineValve.java:107)
> > > at
> > > org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java
> > > :148)
> > > at
> > > org.apache.coyote.http11.Http11Processor.process
> > > (Http11Processor.java :869)
> > > at
> > >
> > > org.apache.coyote.http11.Http11BaseProtocol$Http11ConnectionHandler.processConnection
> > > (Http11BaseProtocol.java:664)
> > > at
> > > org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket(
> > > PoolTcpEndpoint.java :527)
> > > at
> > > org.apache.tomcat.util.net.LeaderFollowerWorkerThread.runIt(
> > > LeaderFollowerWorkerThread.java:80)
> > > at
> > > org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(
> > > ThreadPool.java:684)
> > > at java.lang.Thread.run (Thread.java:619)
> > > ----------------------------------------
> > >
> > > Is changing the source as proposed in an earlier post regarding
> > > this issue the way to go? If so, how do I find a reasonable value
> > > for the buffer size?
> > >
> > > /Jonathan
> > >
> > > _______________________________________________
> > > Yale CAS mailing list
> > > cas at tp.its.yale.edu
> > > http://tp.its.yale.edu/mailman/listinfo/cas
> > >
> >
> >
> >
> > --
> > -Scott Battaglia
> >
> > LinkedIn: http://www.linkedin.com/in/scottbattaglia
>
>
>
>
More information about the cas
mailing list