About the cas proxy configuration
Scott Battaglia
scott.battaglia at gmail.com
Wed Apr 30 08:02:51 EDT 2008
You should check your CAS server logs to see if the proxy callback failed.
That's the only reason you wouldn't receive the pgtIou and pgt (well, as
long as there's no bug in the code ;-)).
-Scott
On Wed, Apr 30, 2008 at 4:13 AM, Allen Chen <chqh at scut.edu.cn> wrote:
> I add a parameter proxyCallbackUrl for the CAS Validation Filter in the
> web.xml as follows:
> <filter>
> <filter-name>CAS Validation Filter</filter-name>
> <filter-class>
> org.jasig.cas.client.validation.Cas20ProxyReceivingTicketValidationFilter
> </filter-class>
> <init-param>
> <param-name>casServerUrlPrefix</param-name>
> <param-value>
> https://allenpc:8443/cas
> </param-value>
> </init-param>
> <init-param>
> <param-name>proxyCallbackUrl</param-name>
> <param-value>
> https://allenpc:8483/um/proxyCallback
> </param-value>
> </init-param>
> <init-param>
> <param-name>proxyReceptorUrl</param-name>
> <param-value>
> /proxyCallback
> </param-value>
> </init-param>
> </filter>
>
> then I login my application and found in the log that there is more than
> one request received from cas, one of them contain the pgtId and pgtIou:
> DEBUG AuthenticationFilter: - no ticket and no assertion found
> DEBUG CommonUtils: - serviceUrl generated: http://allenpc:5000/um/
> DEBUG AuthenticationFilter: - redirecting to "
> https://allenpc:8443/cas/login?service=http%3A%2F%2Fallenpc%3A5000%2Fum%2F
> "
> DEBUG AuthenticationFilter: - removing gateway attribute from session
>
> DEBUG Cas20ProxyReceivingTicketValidationFilter: - proxy receptorUrl:/proxyCallback request uri:/um/
> DEBUG Cas20ProxyReceivingTicketValidationFilter: - get Pgt:null null
>
> DEBUG Cas20ProxyReceivingTicketValidationFilter: - Attempting to validate ticket: ST-5-7PFf2IQWQeeoJtgL9Kob-cas
> DEBUG CommonUtils: - serviceUrl generated: http://allenpc:5000/um/
> DEBUG Cas20ServiceTicketValidator: - contruct url:
> https://allenpc:8443/cas/serviceValidate?service=http%3A%2F%2Fallenpc%
>
> 3A5000%2Fum%2F&ticket=ST-5-7PFf2IQWQeeoJtgL9Kob-cas&pgtUrl=https%3A%2F%2Fallenpc%3A8483%2Fum%2FproxyCallback
> DEBUG AuthenticationFilter: - no ticket and no assertion found
> DEBUG CommonUtils: - serviceUrl generated:
> http://allenpc:5000/um/proxyCallback
> DEBUG AuthenticationFilter: - redirecting to "
> https://allenpc:8443/cas/login?service=http%3A%2F%2Fallenpc%3A5000%2Fum%2F
> proxyCallback"
> DEBUG AuthenticationFilter: - no ticket and no assertion found
> DEBUG CommonUtils: - serviceUrl generated:
> http://allenpc:5000/um/proxyCallback?pgtIou=PGTIOU-3-pNyOpweaQQusHIedPPip-cas
> &pgtId=TGT-5-nbSLmFpoo7QKtYNMgOCxYTOmTJ2EX9myP3csIV5ekuZaO2fJxO-cas
> DEBUG AuthenticationFilter: - redirecting to "
> https://allenpc:8443/cas/login?service=http%3A%2F%2Fallenpc%3A5000%2Fum%2F
>
> proxyCallback%3FpgtIou%3DPGTIOU-3-pNyOpweaQQusHIedPPip-cas%26pgtId%3DTGT-5-nbSLmFpoo7QKtYNMgOCxYTOmTJ2EX9myP3csIV5ekuZaO
> 2fJxO-cas"
>
>
> so my question is how can I get the two parameter pgtIou and pgtId so that
> my application can get a proxy ticket. Do I have to make a filter before the
> AuthenticationFilter to get these two parameter? Or there is some way to
> config so that I can save my work?
> ------------------------------
> Allen Chen
> 2008-04-30
>
> _______________________________________________
> Yale CAS mailing list
> cas at tp.its.yale.edu
> http://tp.its.yale.edu/mailman/listinfo/cas
>
>
--
-Scott Battaglia
PGP Public Key Id: 0x383733AA
LinkedIn: http://www.linkedin.com/in/scottbattaglia
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://tp.its.yale.edu/pipermail/cas/attachments/20080430/f7f90dfc/attachment.html
More information about the cas
mailing list