cannot get NTLM to work with a proxying application

Frank Taffelt frank.taffelt at interface-business.de
Mon Sep 24 04:39:44 EDT 2007 

hmmm, got it working. I changed the url mapping in web.xml for my 
webapplication (mounted as root "/"):


before - not working :
proxyCallbackUrl: /daisy/CasProxyServlet
CASFilter:        /daisy/*

after my changes:
proxyCallbackUrl: /CasProxyServlet
CASFilter:        /daisy/*

i removed the ProxyServlet URL from CAS filtered URL Space. After a 
quick look in the CASFilter source, it seems that the CASFilter excludes 
the proxyCallbackUrl from intercepting even if the proxyCallbackUrl is 
in the URL space. I must say - i'm not sure whats going on .

Any suggestions?

Frank


Frank Taffelt wrote:
> here is what i think are the relevant logging entries from my CAS 
> server, a little bit long but the last few lines seems strange to me:
> 
> 2007-08-22 13:46:49,529 DEBUG
> [org.jasig.cas.web.flow.InitialFlowSetupAction] - Action
> 'InitialFlowSetupAction' beginning execution
> 2007-08-22 13:46:49,529 INFO
> [org.jasig.cas.web.flow.InitialFlowSetupAction] - Setting ContextPath
> for cookies to: /cas
> 2007-08-22 13:46:49,545 DEBUG
> [org.jasig.cas.web.flow.InitialFlowSetupAction] - Placing service in
> FlowScope: http://www-int/daisy/test/ext/test/xxxxx
> 2007-08-22 13:46:49,545 DEBUG
> [org.jasig.cas.web.flow.InitialFlowSetupAction] - Action
> 'InitialFlowSetupAction' completed execution; result is 'success'
> 2007-08-22 13:46:49,560 DEBUG
> [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Action
> 'AuthenticationViaFormAction' beginning execution
> 2007-08-22 13:46:49,560 DEBUG
> [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Executing setupForm
> 2007-08-22 13:46:49,560 DEBUG
> [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Creating new form
> object with name 'credentials'
> 2007-08-22 13:46:49,560 DEBUG
> [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Creating new
> instance of form object class [class
> org.jasig.cas.authentication.principal.UsernamePasswordCredentials]
> 2007-08-22 13:46:49,560 DEBUG
> [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Putting form
> object of type [class
> org.jasig.cas.authentication.principal.UsernamePasswordCredentials] in
> scope Flow with name 'credentials'
> 2007-08-22 13:46:49,560 DEBUG
> [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Creating new form
> errors for object with name 'credentials'
> 2007-08-22 13:46:49,576 DEBUG
> [org.jasig.cas.web.flow.AuthenticationViaFormAction] - No property
> editor registrar set, no custom editors to register
> 2007-08-22 13:46:49,576 DEBUG
> [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Putting form
> errors instance in scope Flash
> 2007-08-22 13:46:49,576 DEBUG
> [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Action
> 'AuthenticationViaFormAction' completed execution; result is 'success'
> 2007-08-22 13:46:49,576 DEBUG
> [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Action
> 'AuthenticationViaFormAction' beginning execution
> 2007-08-22 13:46:49,576 DEBUG
> [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Action
> 'AuthenticationViaFormAction' completed execution; result is 'success'
> 2007-08-22 13:46:57,576 DEBUG
> [org.jasig.cas.web.flow.InitialFlowSetupAction] - Action
> 'InitialFlowSetupAction' beginning execution
> 2007-08-22 13:46:57,576 DEBUG
> [org.jasig.cas.web.flow.InitialFlowSetupAction] - Placing service in
> FlowScope: http://www-int/daisy/test/ext/test/xxxxx
> 2007-08-22 13:46:57,576 DEBUG
> [org.jasig.cas.web.flow.InitialFlowSetupAction] - Action
> 'InitialFlowSetupAction' completed execution; result is 'success'
> 2007-08-22 13:46:57,654 INFO
> [org.jasig.cas.authentication.AuthenticationManagerImpl] -
> AuthenticationHandler:
> org.jasig.cas.support.spnego.authentication.handler.support.NtlmAuthenticationHandler 
> 
> failed to authenticate the user which provided the following
> credentials: Principal is null
> 2007-08-22 13:46:57,654 DEBUG
> [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Action
> 'AuthenticationViaFormAction' beginning execution
> 2007-08-22 13:46:57,654 DEBUG
> [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Executing setupForm
> 2007-08-22 13:46:57,654 DEBUG
> [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Creating new form
> object with name 'credentials'
> 2007-08-22 13:46:57,654 DEBUG
> [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Creating new
> instance of form object class [class
> org.jasig.cas.authentication.principal.UsernamePasswordCredentials]
> 2007-08-22 13:46:57,654 DEBUG
> [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Putting form
> object of type [class
> org.jasig.cas.authentication.principal.UsernamePasswordCredentials] in
> scope Flow with name 'credentials'
> 2007-08-22 13:46:57,654 DEBUG
> [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Creating new form
> errors for object with name 'credentials'
> 2007-08-22 13:46:57,654 DEBUG
> [org.jasig.cas.web.flow.AuthenticationViaFormAction] - No property
> editor registrar set, no custom editors to register
> 2007-08-22 13:46:57,654 DEBUG
> [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Putting form
> errors instance in scope Flash
> 2007-08-22 13:46:57,654 DEBUG
> [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Action
> 'AuthenticationViaFormAction' completed execution; result is 'success'
> 2007-08-22 13:46:57,654 DEBUG
> [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Action
> 'AuthenticationViaFormAction' beginning execution
> 2007-08-22 13:46:57,654 DEBUG
> [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Action
> 'AuthenticationViaFormAction' completed execution; result is 'success'
> 2007-08-22 13:46:57,685 DEBUG
> [org.jasig.cas.web.flow.InitialFlowSetupAction] - Action
> 'InitialFlowSetupAction' beginning execution
> 2007-08-22 13:46:57,685 DEBUG
> [org.jasig.cas.web.flow.InitialFlowSetupAction] - Placing service in
> FlowScope: http://www-int/daisy/test/ext/test/xxxxx
> 2007-08-22 13:46:57,685 DEBUG
> [org.jasig.cas.web.flow.InitialFlowSetupAction] - Action
> 'InitialFlowSetupAction' completed execution; result is 'success'
> 2007-08-22 13:46:57,701 INFO
> [org.jasig.cas.authentication.AuthenticationManagerImpl] -
> AuthenticationHandler:
> org.jasig.cas.support.spnego.authentication.handler.support.NtlmAuthenticationHandler 
> 
> successfully authenticated the user which provided the following
> credentials: frank
> 2007-08-22 13:46:57,717 DEBUG
> [org.jasig.cas.web.flow.SendTicketGrantingTicketAction] - Action
> 'SendTicketGrantingTicketAction' beginning execution
> 2007-08-22 13:46:57,717 DEBUG
> [org.jasig.cas.web.flow.SendTicketGrantingTicketAction] - Action
> 'SendTicketGrantingTicketAction' completed execution; result is 'success'
> 2007-08-22 13:46:57,717 DEBUG
> [org.jasig.cas.web.flow.GenerateServiceTicketAction] - Action
> 'GenerateServiceTicketAction' beginning execution
> 2007-08-22 13:46:57,717 INFO
> [org.jasig.cas.CentralAuthenticationServiceImpl] - Granted service
> ticket [ST-1-I1NGmvMuaFtekL1ZOxYNHni2Rr05LBaDjPI-20] for service
> [http://www-int/daisy/test/ext/test/xxxxx] for user [frank]
> 2007-08-22 13:46:57,717 DEBUG
> [org.jasig.cas.web.flow.GenerateServiceTicketAction] - Action
> 'GenerateServiceTicketAction' completed execution; result is 'success'
> 2007-08-22 13:46:58,076 DEBUG
> [org.jasig.cas.web.flow.InitialFlowSetupAction] - Action
> 'InitialFlowSetupAction' beginning execution
> 2007-08-22 13:46:58,076 DEBUG
> [org.jasig.cas.web.flow.InitialFlowSetupAction] - Placing service in
> FlowScope: https://www-int/daisy/CasProxyServlet
> 2007-08-22 13:46:58,076 DEBUG
> [org.jasig.cas.web.flow.InitialFlowSetupAction] - Action
> 'InitialFlowSetupAction' completed execution; result is 'success'
> 2007-08-22 13:46:58,076 ERROR
> [org.jasig.cas.support.spnego.authentication.handler.support.NtlmAuthenticationHandler] 
> 
> - java.lang.RuntimeException: Null setup prohibited.
> java.lang.RuntimeException: Null setup prohibited.
> 	at
> jcifs.smb.SmbComSessionSetupAndX.writeParameterWordsWireFormat(SmbComSessionSetupAndX.java:63)
> 
> 
> Frank
> _______________________________________________
> Yale CAS mailing list
> cas at tp.its.yale.edu
> http://tp.its.yale.edu/mailman/listinfo/cas
> 

-- 
Mit freundlichen Grüßen
Frank Taffelt

-----------------------------------------------
     intelligenter Finden: www.intergator.de
-----------------------------------------------

interface projects GmbH   Tel.: 0351-3 18 09-37
Tolkewitzer Str. 49       Fax:  0351-3 36 11 87
01277 DRESDEN

More information about the cas mailing list