I have configured 2 tomcats server on the same machine called cn1983.
A tomcat 4.1.29 for hosting my web application protected by acegi/CAS.
A tomcat 5.0.28 for hosting CAS.war.
tomcat 4 uses port 8443 for SSL.
tomcat 5 uses port 7443 for SSL.
The initial request to my webapp: https://cn1983:8443/CreditsWebApp/html/authentication/debug.jsp
It is saved to the session by acegi filter and I'm redirected to my cas server:
https://cn1983:7443/cas/login?service=https%3A%2F%2Fcn1983%3A8443%2FCreditsWebApp%2Fj_acegi_cas_security_check
When I enter the user credentials and submit the form, CAS sends a ticket to my web app:
https://cn1983:8443/CreditsWebApp/j_acegi_cas_security_check?ticket=ST-9-kr1pWcjX1NCyGwp25hWKAJv0GrjWZcnlHPA-20
BUT when I look at the log, acegi print the following URL:
https://cn1983:7443/CreditsWebApp/j_acegi_cas_security_check?ticket=ST-9-kr1pWcjX1NCyGwp25hWKAJv0GrjWZcnlHPA-20
=> The server port is the one from CAS server!!!!
Dunno how, but acegi sees the request with the server and port of CAS server instead of web app server.
Acegi determines the request URL from this code in FilterInvocation.java:
public String getFullRequestUrl() {
return getHttpRequest().getScheme() + "://"
+ getHttpRequest().getServerName
() + ":"
+ getHttpRequest().getServerPort() + getHttpRequest().getContextPath()
+ getRequestUrl();
}
Please help, we must go in production next week, and this is really blocking.
The trace of my webapp:
13:55:40,705 DEBUG PathBasedFilterInvocationDefinitionMap:113 - Converted URL to lowercase, from: '/html/authentication/debug.jsp'; to: '/html/authentication/debug.jsp'
13:55:40,705 DEBUG PathBasedFilterInvocationDefinitionMap:126 - Candidate is: '/html/authentication/debug.jsp'; pattern is /**; matched=true
13:55:40,705 DEBUG FilterChainProxy:297 - /html/authentication/debug.jsp at position 1 of 6 in additional filter chain; firing Filter: '[EMAIL PROTECTED]'
13:55:40,705 DEBUG RegExpBasedFilterInvocationDefinitionMap:129 - Converted URL to lowercase, from: '/html/authentication/debug.jsp'; to: '/html/authentication/debug.jsp'
13:55:40,705 DEBUG RegExpBasedFilterInvocationDefinitionMap:141 - Candidate is: '/html/authentication/debug.jsp'; pattern is \A/j_acegi_cas_security_check.*\Z; matched=false
13:55:40,705 DEBUG RegExpBasedFilterInvocationDefinitionMap:141 - Candidate is: '/html/authentication/debug.jsp'; pattern is \A.*\Z; matched=true
13:55:40,705 DEBUG ChannelProcessingFilter:157 - Request: https://cn1983:8443/CreditsWebApp/html/authentication/debug.jsp ; ConfigAttributes: [REQUIRES_SECURE_CHANNEL]
13:55:40,705 DEBUG FilterChainProxy:297 - /html/authentication/debug.jsp at position 2 of 6 in additional filter chain; firing Filter: '[EMAIL PROTECTED]'
13:55:40,705 DEBUG HttpSessionContextIntegrationFilter:203 - No HttpSession currently exists - new SecurityContext instance associated with SecurityContextHolder
13:55:40,705 DEBUG FilterChainProxy:297 - /html/authentication/debug.jsp at position 3 of 6 in additional filter chain; firing Filter: '[EMAIL PROTECTED]'
13:55:40,721 DEBUG FilterChainProxy:297 - /html/authentication/debug.jsp at position 4 of 6 in additional filter chain; firing Filter: ' [EMAIL PROTECTED]'
13:55:40,721 DEBUG AnonymousProcessingFilter:122 - Populated SecurityContextHolder with anonymous token: '[EMAIL PROTECTED] : Username: anonymousUser; Password: [PROTECTED]; Authenticated: true; Details: [EMAIL PROTECTED]: RemoteIpAddress: 10.1.1.204; SessionId: 1D4F0ABF3657B9847BC6FEE0C5B9551C; Granted Authorities: ICP_ANONYMOUS'
13:55:40,721 DEBUG FilterChainProxy:297 - /html/authentication/debug.jsp at position 5 of 6 in additional filter chain; firing Filter: '[EMAIL PROTECTED]'
13:55:40,721 DEBUG FilterChainProxy:297 - /html/authentication/debug.jsp at position 6 of 6 in additional filter chain; firing Filter: ' [EMAIL PROTECTED]'
13:55:40,721 DEBUG PathBasedFilterInvocationDefinitionMap:113 - Converted URL to lowercase, from: '/html/authentication/debug.jsp'; to: '/html/authentication/debug.jsp'
13:55:40,721 DEBUG PathBasedFilterInvocationDefinitionMap:126 - Candidate is: '/html/authentication/debug.jsp'; pattern is /html/authentication/casfailed.jsp; matched=false
13:55:40,721 DEBUG PathBasedFilterInvocationDefinitionMap:126 - Candidate is: '/html/authentication/debug.jsp'; pattern is /**; matched=true
13:55:40,721 DEBUG AbstractSecurityInterceptor:301 - Secure object: FilterInvocation: URL: /html/authentication/debug.jsp; ConfigAttributes: [ICP_BO_CONSULT, ICP_BO_UPDATE]
13:55:40,721 DEBUG AbstractSecurityInterceptor:340 - Previously Authenticated: [EMAIL PROTECTED]: Username: anonymousUser; Password: [PROTECTED]; Authenticated: true; Details: [EMAIL PROTECTED]: RemoteIpAddress: 10.1.1.204; SessionId: 1D4F0ABF3657B9847BC6FEE0C5B9551C; Granted Authorities: ICP_ANONYMOUS
13:55:40,721 DEBUG ExceptionTranslationFilter:159 - Access is denied (user is anonymous); redirecting to authentication entry point
org.acegisecurity.AccessDeniedException: Access is denied
at org.acegisecurity.vote.AffirmativeBased.decide(AffirmativeBased.java:83)
at org.acegisecurity.intercept.AbstractSecurityInterceptor.beforeInvocation (AbstractSecurityInterceptor.java:347)
at org.acegisecurity.intercept.web.FilterSecurityInterceptor.invoke(FilterSecurityInterceptor.java:113)
at org.acegisecurity.intercept.web.FilterSecurityInterceptor.doFilter (FilterSecurityInterceptor.java:79)
at org.acegisecurity.util.FilterChainProxy$VirtualFilterChain.
13:55:40,736 DEBUG ExceptionTranslationFilter:255 - Authentication entry point being called; target URL added to Session: https://cn1983:8443/CreditsWebApp/html/authentication/debug.jsp
13:55:40,736 DEBUG HttpSessionContextIntegrationFilter:285 - SecurityContextHolder set to new context, as request processing completed
13:56:46,611 DEBUG PathBasedFilterInvocationDefinitionMap:113 - Converted URL to lowercase, from: '/j_acegi_cas_security_check'; to: '/j_acegi_cas_security_check'
13:56:46,611 DEBUG PathBasedFilterInvocationDefinitionMap:126 - Candidate is: '/j_acegi_cas_security_check'; pattern is /**; matched=true
13:56:46,611 DEBUG FilterChainProxy:297 - /j_acegi_cas_security_check?ticket=ST-9-kr1pWcjX1NCyGwp25hWKAJv0GrjWZcnlHPA-20 at position 1 of 6 in additional filter chain; firing Filter: '[EMAIL PROTECTED] '
13:56:46,611 DEBUG RegExpBasedFilterInvocationDefinitionMap:129 - Converted URL to lowercase, from: '/j_acegi_cas_security_check?ticket=st-9-kr1pwcjx1ncygwp25hwkajv0grjwzcnlhpa-20'; to: '/j_acegi_cas_security_check?ticket=st-9-kr1pwcjx1ncygwp25hwkajv0grjwzcnlhpa-20'
13:56:46,611 DEBUG RegExpBasedFilterInvocationDefinitionMap:141 - Candidate is: '/j_acegi_cas_security_check?ticket=st-9-kr1pwcjx1ncygwp25hwkajv0grjwzcnlhpa-20'; pattern is \A/j_acegi_cas_security_check.*\Z; matched=true
13:56:46,611 DEBUG ChannelProcessingFilter:157 - Request: https://cn1983:7443/CreditsWebApp/j_acegi_cas_security_check?ticket=ST-9-kr1pWcjX1NCyGwp25hWKAJv0GrjWZcnlHPA-20 ; ConfigAttributes: [REQUIRES_SECURE_CHANNEL]
13:56:46,627 DEBUG FilterChainProxy:297 - /j_acegi_cas_security_check?ticket=ST-9-kr1pWcjX1NCyGwp25hWKAJv0GrjWZcnlHPA-20 at position 2 of 6 in additional filter chain; firing Filter: ' [EMAIL PROTECTED]'
13:56:46,627 DEBUG HttpSessionContextIntegrationFilter:195 - HttpSession returned null object for ACEGI_SECURITY_CONTEXT - new SecurityContext instance associated with SecurityContextHolder
13:56:46,627 DEBUG FilterChainProxy:297 - /j_acegi_cas_security_check?ticket=ST-9-kr1pWcjX1NCyGwp25hWKAJv0GrjWZcnlHPA-20 at position 3 of 6 in additional filter chain; firing Filter: '[EMAIL PROTECTED] '
13:56:46,627 DEBUG AbstractProcessingFilter:220 - Request is to process authentication
13:56:46,627 DEBUG ProviderManager:202 - Authentication attempt using org.acegisecurity.providers.cas.CasAuthenticationProvider
13:56:46,674 DEBUG AcceptAnyCasProxy:51 - Always accepting proxy list: []
13:56:46,783 DEBUG AdvancedCasProcessingFilter:28 - Authentication success: [EMAIL PROTECTED]: Username: u150161; Password: [PROTECTED]; Authenticated: true; Details: null; Granted Authorities: ICP_BO_CONSULT, ICP_BO_UPDATE; Credentials (Service/Proxy Ticket): ST-9-kr1pWcjX1NCyGwp25hWKAJv0GrjWZcnlHPA-20; Proxy-Granting Ticket IOU: ; Proxy List: []
13:56:46,783 DEBUG AdvancedCasProcessingFilter:34 - Updated SecurityContextHolder to contain the following Authentication: '[EMAIL PROTECTED]: Username: u150161; Password: [PROTECTED]; Authenticated: true; Details: null; Granted Authorities: ICP_BO_CONSULT, ICP_BO_UPDATE; Credentials (Service/Proxy Ticket): ST-9-kr1pWcjX1NCyGwp25hWKAJv0GrjWZcnlHPA-20; Proxy-Granting Ticket IOU: ; Proxy List: []'
13:56:46,783 DEBUG AdvancedCasProcessingFilter:59 - Redirecting to target URL from HTTP Session (or default): https://cn1983:8443/CreditsWebApp/html/authentication/debug.jsp
13:56:46,783 DEBUG HttpSessionContextIntegrationFilter:276 - SecurityContext stored to HttpSession: '[EMAIL PROTECTED]: Authentication: [EMAIL PROTECTED] : Username: u150161; Password: [PROTECTED]; Authenticated: true; Details: null; Granted Authorities: ICP_BO_CONSULT, ICP_BO_UPDATE; Credentials (Service/Proxy Ticket): ST-9-kr1pWcjX1NCyGwp25hWKAJv0GrjWZcnlHPA-20; Proxy-Granting Ticket IOU: ; Proxy List: []'
13:56:46,783 DEBUG HttpSessionContextIntegrationFilter:285 - SecurityContextHolder set to new context, as request processing completed
13:56:46,783 DEBUG PathBasedFilterInvocationDefinitionMap:113 - Converted URL to lowercase, from: '/html/authentication/debug.jsp'; to: '/html/authentication/debug.jsp'
13:56:46,783 DEBUG PathBasedFilterInvocationDefinitionMap:126 - Candidate is: '/html/authentication/debug.jsp'; pattern is /**; matched=true
13:56:46,799 DEBUG FilterChainProxy:297 - /html/authentication/debug.jsp at position 1 of 6 in additional filter chain; firing Filter: ' [EMAIL PROTECTED]'
13:56:46,799 DEBUG RegExpBasedFilterInvocationDefinitionMap:129 - Converted URL to lowercase, from: '/html/authentication/debug.jsp'; to: '/html/authentication/debug.jsp'
13:56:46,799 DEBUG RegExpBasedFilterInvocationDefinitionMap:141 - Candidate is: '/html/authentication/debug.jsp'; pattern is \A/j_acegi_cas_security_check.*\Z; matched=false
13:56:46,799 DEBUG RegExpBasedFilterInvocationDefinitionMap:141 - Candidate is: '/html/authentication/debug.jsp'; pattern is \A.*\Z; matched=true
13:56:46,799 DEBUG ChannelProcessingFilter:157 - Request: https://cn1983:7443/CreditsWebApp/html/authentication/debug.jsp ; ConfigAttributes: [REQUIRES_SECURE_CHANNEL]
13:56:46,799 DEBUG FilterChainProxy:297 - /html/authentication/debug.jsp at position 2 of 6 in additional filter chain; firing Filter: '[EMAIL PROTECTED]'
13:56:46,799 DEBUG HttpSessionContextIntegrationFilter:177 - Obtained from ACEGI_SECURITY_CONTEXT a valid SecurityContext and set to SecurityContextHolder: ' [EMAIL PROTECTED]: Authentication: [EMAIL PROTECTED]: Username: u150161; Password: [PROTECTED]; Authenticated: true; Details: null; Granted Authorities: ICP_BO_CONSULT, ICP_BO_UPDATE; Credentials (Service/Proxy Ticket): ST-9-kr1pWcjX1NCyGwp25hWKAJv0GrjWZcnlHPA-20; Proxy-Granting Ticket IOU: ; Proxy List: []'
13:56:46,799 DEBUG FilterChainProxy:297 - /html/authentication/debug.jsp at position 3 of 6 in additional filter chain; firing Filter: '[EMAIL PROTECTED]'
13:56:46,799 DEBUG FilterChainProxy:297 - /html/authentication/debug.jsp at position 4 of 6 in additional filter chain; firing Filter: ' [EMAIL PROTECTED]'
13:56:46,799 DEBUG AnonymousProcessingFilter:129 - SecurityContextHolder not populated with anonymous token, as it already contained: '[EMAIL PROTECTED] : Username: u150161; Password: [PROTECTED]; Authenticated: true; Details: null; Granted Authorities: ICP_BO_CONSULT, ICP_BO_UPDATE; Credentials (Service/Proxy Ticket): ST-9-kr1pWcjX1NCyGwp25hWKAJv0GrjWZcnlHPA-20; Proxy-Granting Ticket IOU: ; Proxy List: []'
13:56:46,799 DEBUG FilterChainProxy:297 - /html/authentication/debug.jsp at position 5 of 6 in additional filter chain; firing Filter: '[EMAIL PROTECTED]'
13:56:46,799 DEBUG FilterChainProxy:297 - /html/authentication/debug.jsp at position 6 of 6 in additional filter chain; firing Filter: ' [EMAIL PROTECTED]'
13:56:46,799 DEBUG PathBasedFilterInvocationDefinitionMap:113 - Converted URL to lowercase, from: '/html/authentication/debug.jsp'; to: '/html/authentication/debug.jsp'
13:56:46,799 DEBUG PathBasedFilterInvocationDefinitionMap:126 - Candidate is: '/html/authentication/debug.jsp'; pattern is /html/authentication/casfailed.jsp; matched=false
13:56:46,815 DEBUG PathBasedFilterInvocationDefinitionMap:126 - Candidate is: '/html/authentication/debug.jsp'; pattern is /**; matched=true
13:56:46,815 DEBUG AbstractSecurityInterceptor:301 - Secure object: FilterInvocation: URL: /html/authentication/debug.jsp; ConfigAttributes: [ICP_BO_CONSULT, ICP_BO_UPDATE]
13:56:46,815 DEBUG AbstractSecurityInterceptor:340 - Previously Authenticated: [EMAIL PROTECTED]: Username: u150161; Password: [PROTECTED]; Authenticated: true; Details: null; Granted Authorities: ICP_BO_CONSULT, ICP_BO_UPDATE; Credentials (Service/Proxy Ticket): ST-9-kr1pWcjX1NCyGwp25hWKAJv0GrjWZcnlHPA-20; Proxy-Granting Ticket IOU: ; Proxy List: []
13:56:46,815 DEBUG AbstractSecurityInterceptor:358 - Authorization successful
13:56:46,815 DEBUG AbstractSecurityInterceptor:371 - RunAsManager did not change Authentication object
13:56:46,815 DEBUG FilterChainProxy:288 - /html/authentication/debug.jsp reached end of additional filter chain; proceeding with original chain
13:56:46,815 DEBUG ExceptionTranslationFilter:146 - Chain processed normally
13:56:46,830 DEBUG HttpSessionContextIntegrationFilter:285 - SecurityContextHolder set to new context, as request processing completed
+ getHttpRequest().getServerPort() + getHttpRequest().getContextPath()
+ getRequestUrl();
}
Please help, we must go in production next week, and this is really blocking.
The trace of my webapp:
13:55:40,705 DEBUG PathBasedFilterInvocationDefinitionMap:113 - Converted URL to lowercase, from: '/html/authentication/debug.jsp'; to: '/html/authentication/debug.jsp'
13:55:40,705 DEBUG PathBasedFilterInvocationDefinitionMap:126 - Candidate is: '/html/authentication/debug.jsp'; pattern is /**; matched=true
13:55:40,705 DEBUG FilterChainProxy:297 - /html/authentication/debug.jsp at position 1 of 6 in additional filter chain; firing Filter: '[EMAIL PROTECTED]'
13:55:40,705 DEBUG RegExpBasedFilterInvocationDefinitionMap:129 - Converted URL to lowercase, from: '/html/authentication/debug.jsp'; to: '/html/authentication/debug.jsp'
13:55:40,705 DEBUG RegExpBasedFilterInvocationDefinitionMap:141 - Candidate is: '/html/authentication/debug.jsp'; pattern is \A/j_acegi_cas_security_check.*\Z; matched=false
13:55:40,705 DEBUG RegExpBasedFilterInvocationDefinitionMap:141 - Candidate is: '/html/authentication/debug.jsp'; pattern is \A.*\Z; matched=true
13:55:40,705 DEBUG ChannelProcessingFilter:157 - Request: https://cn1983:8443/CreditsWebApp/html/authentication/debug.jsp ; ConfigAttributes: [REQUIRES_SECURE_CHANNEL]
13:55:40,705 DEBUG FilterChainProxy:297 - /html/authentication/debug.jsp at position 2 of 6 in additional filter chain; firing Filter: '[EMAIL PROTECTED]'
13:55:40,705 DEBUG HttpSessionContextIntegrationFilter:203 - No HttpSession currently exists - new SecurityContext instance associated with SecurityContextHolder
13:55:40,705 DEBUG FilterChainProxy:297 - /html/authentication/debug.jsp at position 3 of 6 in additional filter chain; firing Filter: '[EMAIL PROTECTED]'
13:55:40,721 DEBUG FilterChainProxy:297 - /html/authentication/debug.jsp at position 4 of 6 in additional filter chain; firing Filter: ' [EMAIL PROTECTED]'
13:55:40,721 DEBUG AnonymousProcessingFilter:122 - Populated SecurityContextHolder with anonymous token: '[EMAIL PROTECTED] : Username: anonymousUser; Password: [PROTECTED]; Authenticated: true; Details: [EMAIL PROTECTED]: RemoteIpAddress: 10.1.1.204; SessionId: 1D4F0ABF3657B9847BC6FEE0C5B9551C; Granted Authorities: ICP_ANONYMOUS'
13:55:40,721 DEBUG FilterChainProxy:297 - /html/authentication/debug.jsp at position 5 of 6 in additional filter chain; firing Filter: '[EMAIL PROTECTED]'
13:55:40,721 DEBUG FilterChainProxy:297 - /html/authentication/debug.jsp at position 6 of 6 in additional filter chain; firing Filter: ' [EMAIL PROTECTED]'
13:55:40,721 DEBUG PathBasedFilterInvocationDefinitionMap:113 - Converted URL to lowercase, from: '/html/authentication/debug.jsp'; to: '/html/authentication/debug.jsp'
13:55:40,721 DEBUG PathBasedFilterInvocationDefinitionMap:126 - Candidate is: '/html/authentication/debug.jsp'; pattern is /html/authentication/casfailed.jsp; matched=false
13:55:40,721 DEBUG PathBasedFilterInvocationDefinitionMap:126 - Candidate is: '/html/authentication/debug.jsp'; pattern is /**; matched=true
13:55:40,721 DEBUG AbstractSecurityInterceptor:301 - Secure object: FilterInvocation: URL: /html/authentication/debug.jsp; ConfigAttributes: [ICP_BO_CONSULT, ICP_BO_UPDATE]
13:55:40,721 DEBUG AbstractSecurityInterceptor:340 - Previously Authenticated: [EMAIL PROTECTED]: Username: anonymousUser; Password: [PROTECTED]; Authenticated: true; Details: [EMAIL PROTECTED]: RemoteIpAddress: 10.1.1.204; SessionId: 1D4F0ABF3657B9847BC6FEE0C5B9551C; Granted Authorities: ICP_ANONYMOUS
13:55:40,721 DEBUG ExceptionTranslationFilter:159 - Access is denied (user is anonymous); redirecting to authentication entry point
org.acegisecurity.AccessDeniedException: Access is denied
at org.acegisecurity.vote.AffirmativeBased.decide(AffirmativeBased.java:83)
at org.acegisecurity.intercept.AbstractSecurityInterceptor.beforeInvocation (AbstractSecurityInterceptor.java:347)
at org.acegisecurity.intercept.web.FilterSecurityInterceptor.invoke(FilterSecurityInterceptor.java:113)
at org.acegisecurity.intercept.web.FilterSecurityInterceptor.doFilter (FilterSecurityInterceptor.java:79)
at org.acegisecurity.util.FilterChainProxy$VirtualFilterChain.
13:55:40,736 DEBUG ExceptionTranslationFilter:255 - Authentication entry point being called; target URL added to Session: https://cn1983:8443/CreditsWebApp/html/authentication/debug.jsp
13:55:40,736 DEBUG HttpSessionContextIntegrationFilter:285 - SecurityContextHolder set to new context, as request processing completed
13:56:46,611 DEBUG PathBasedFilterInvocationDefinitionMap:113 - Converted URL to lowercase, from: '/j_acegi_cas_security_check'; to: '/j_acegi_cas_security_check'
13:56:46,611 DEBUG PathBasedFilterInvocationDefinitionMap:126 - Candidate is: '/j_acegi_cas_security_check'; pattern is /**; matched=true
13:56:46,611 DEBUG FilterChainProxy:297 - /j_acegi_cas_security_check?ticket=ST-9-kr1pWcjX1NCyGwp25hWKAJv0GrjWZcnlHPA-20 at position 1 of 6 in additional filter chain; firing Filter: '[EMAIL PROTECTED] '
13:56:46,611 DEBUG RegExpBasedFilterInvocationDefinitionMap:129 - Converted URL to lowercase, from: '/j_acegi_cas_security_check?ticket=st-9-kr1pwcjx1ncygwp25hwkajv0grjwzcnlhpa-20'; to: '/j_acegi_cas_security_check?ticket=st-9-kr1pwcjx1ncygwp25hwkajv0grjwzcnlhpa-20'
13:56:46,611 DEBUG RegExpBasedFilterInvocationDefinitionMap:141 - Candidate is: '/j_acegi_cas_security_check?ticket=st-9-kr1pwcjx1ncygwp25hwkajv0grjwzcnlhpa-20'; pattern is \A/j_acegi_cas_security_check.*\Z; matched=true
13:56:46,611 DEBUG ChannelProcessingFilter:157 - Request: https://cn1983:7443/CreditsWebApp/j_acegi_cas_security_check?ticket=ST-9-kr1pWcjX1NCyGwp25hWKAJv0GrjWZcnlHPA-20 ; ConfigAttributes: [REQUIRES_SECURE_CHANNEL]
13:56:46,627 DEBUG FilterChainProxy:297 - /j_acegi_cas_security_check?ticket=ST-9-kr1pWcjX1NCyGwp25hWKAJv0GrjWZcnlHPA-20 at position 2 of 6 in additional filter chain; firing Filter: ' [EMAIL PROTECTED]'
13:56:46,627 DEBUG HttpSessionContextIntegrationFilter:195 - HttpSession returned null object for ACEGI_SECURITY_CONTEXT - new SecurityContext instance associated with SecurityContextHolder
13:56:46,627 DEBUG FilterChainProxy:297 - /j_acegi_cas_security_check?ticket=ST-9-kr1pWcjX1NCyGwp25hWKAJv0GrjWZcnlHPA-20 at position 3 of 6 in additional filter chain; firing Filter: '[EMAIL PROTECTED] '
13:56:46,627 DEBUG AbstractProcessingFilter:220 - Request is to process authentication
13:56:46,627 DEBUG ProviderManager:202 - Authentication attempt using org.acegisecurity.providers.cas.CasAuthenticationProvider
13:56:46,674 DEBUG AcceptAnyCasProxy:51 - Always accepting proxy list: []
13:56:46,783 DEBUG AdvancedCasProcessingFilter:28 - Authentication success: [EMAIL PROTECTED]: Username: u150161; Password: [PROTECTED]; Authenticated: true; Details: null; Granted Authorities: ICP_BO_CONSULT, ICP_BO_UPDATE; Credentials (Service/Proxy Ticket): ST-9-kr1pWcjX1NCyGwp25hWKAJv0GrjWZcnlHPA-20; Proxy-Granting Ticket IOU: ; Proxy List: []
13:56:46,783 DEBUG AdvancedCasProcessingFilter:34 - Updated SecurityContextHolder to contain the following Authentication: '[EMAIL PROTECTED]: Username: u150161; Password: [PROTECTED]; Authenticated: true; Details: null; Granted Authorities: ICP_BO_CONSULT, ICP_BO_UPDATE; Credentials (Service/Proxy Ticket): ST-9-kr1pWcjX1NCyGwp25hWKAJv0GrjWZcnlHPA-20; Proxy-Granting Ticket IOU: ; Proxy List: []'
13:56:46,783 DEBUG AdvancedCasProcessingFilter:59 - Redirecting to target URL from HTTP Session (or default): https://cn1983:8443/CreditsWebApp/html/authentication/debug.jsp
13:56:46,783 DEBUG HttpSessionContextIntegrationFilter:276 - SecurityContext stored to HttpSession: '[EMAIL PROTECTED]: Authentication: [EMAIL PROTECTED] : Username: u150161; Password: [PROTECTED]; Authenticated: true; Details: null; Granted Authorities: ICP_BO_CONSULT, ICP_BO_UPDATE; Credentials (Service/Proxy Ticket): ST-9-kr1pWcjX1NCyGwp25hWKAJv0GrjWZcnlHPA-20; Proxy-Granting Ticket IOU: ; Proxy List: []'
13:56:46,783 DEBUG HttpSessionContextIntegrationFilter:285 - SecurityContextHolder set to new context, as request processing completed
13:56:46,783 DEBUG PathBasedFilterInvocationDefinitionMap:113 - Converted URL to lowercase, from: '/html/authentication/debug.jsp'; to: '/html/authentication/debug.jsp'
13:56:46,783 DEBUG PathBasedFilterInvocationDefinitionMap:126 - Candidate is: '/html/authentication/debug.jsp'; pattern is /**; matched=true
13:56:46,799 DEBUG FilterChainProxy:297 - /html/authentication/debug.jsp at position 1 of 6 in additional filter chain; firing Filter: ' [EMAIL PROTECTED]'
13:56:46,799 DEBUG RegExpBasedFilterInvocationDefinitionMap:129 - Converted URL to lowercase, from: '/html/authentication/debug.jsp'; to: '/html/authentication/debug.jsp'
13:56:46,799 DEBUG RegExpBasedFilterInvocationDefinitionMap:141 - Candidate is: '/html/authentication/debug.jsp'; pattern is \A/j_acegi_cas_security_check.*\Z; matched=false
13:56:46,799 DEBUG RegExpBasedFilterInvocationDefinitionMap:141 - Candidate is: '/html/authentication/debug.jsp'; pattern is \A.*\Z; matched=true
13:56:46,799 DEBUG ChannelProcessingFilter:157 - Request: https://cn1983:7443/CreditsWebApp/html/authentication/debug.jsp ; ConfigAttributes: [REQUIRES_SECURE_CHANNEL]
13:56:46,799 DEBUG FilterChainProxy:297 - /html/authentication/debug.jsp at position 2 of 6 in additional filter chain; firing Filter: '[EMAIL PROTECTED]'
13:56:46,799 DEBUG HttpSessionContextIntegrationFilter:177 - Obtained from ACEGI_SECURITY_CONTEXT a valid SecurityContext and set to SecurityContextHolder: ' [EMAIL PROTECTED]: Authentication: [EMAIL PROTECTED]: Username: u150161; Password: [PROTECTED]; Authenticated: true; Details: null; Granted Authorities: ICP_BO_CONSULT, ICP_BO_UPDATE; Credentials (Service/Proxy Ticket): ST-9-kr1pWcjX1NCyGwp25hWKAJv0GrjWZcnlHPA-20; Proxy-Granting Ticket IOU: ; Proxy List: []'
13:56:46,799 DEBUG FilterChainProxy:297 - /html/authentication/debug.jsp at position 3 of 6 in additional filter chain; firing Filter: '[EMAIL PROTECTED]'
13:56:46,799 DEBUG FilterChainProxy:297 - /html/authentication/debug.jsp at position 4 of 6 in additional filter chain; firing Filter: ' [EMAIL PROTECTED]'
13:56:46,799 DEBUG AnonymousProcessingFilter:129 - SecurityContextHolder not populated with anonymous token, as it already contained: '[EMAIL PROTECTED] : Username: u150161; Password: [PROTECTED]; Authenticated: true; Details: null; Granted Authorities: ICP_BO_CONSULT, ICP_BO_UPDATE; Credentials (Service/Proxy Ticket): ST-9-kr1pWcjX1NCyGwp25hWKAJv0GrjWZcnlHPA-20; Proxy-Granting Ticket IOU: ; Proxy List: []'
13:56:46,799 DEBUG FilterChainProxy:297 - /html/authentication/debug.jsp at position 5 of 6 in additional filter chain; firing Filter: '[EMAIL PROTECTED]'
13:56:46,799 DEBUG FilterChainProxy:297 - /html/authentication/debug.jsp at position 6 of 6 in additional filter chain; firing Filter: ' [EMAIL PROTECTED]'
13:56:46,799 DEBUG PathBasedFilterInvocationDefinitionMap:113 - Converted URL to lowercase, from: '/html/authentication/debug.jsp'; to: '/html/authentication/debug.jsp'
13:56:46,799 DEBUG PathBasedFilterInvocationDefinitionMap:126 - Candidate is: '/html/authentication/debug.jsp'; pattern is /html/authentication/casfailed.jsp; matched=false
13:56:46,815 DEBUG PathBasedFilterInvocationDefinitionMap:126 - Candidate is: '/html/authentication/debug.jsp'; pattern is /**; matched=true
13:56:46,815 DEBUG AbstractSecurityInterceptor:301 - Secure object: FilterInvocation: URL: /html/authentication/debug.jsp; ConfigAttributes: [ICP_BO_CONSULT, ICP_BO_UPDATE]
13:56:46,815 DEBUG AbstractSecurityInterceptor:340 - Previously Authenticated: [EMAIL PROTECTED]: Username: u150161; Password: [PROTECTED]; Authenticated: true; Details: null; Granted Authorities: ICP_BO_CONSULT, ICP_BO_UPDATE; Credentials (Service/Proxy Ticket): ST-9-kr1pWcjX1NCyGwp25hWKAJv0GrjWZcnlHPA-20; Proxy-Granting Ticket IOU: ; Proxy List: []
13:56:46,815 DEBUG AbstractSecurityInterceptor:358 - Authorization successful
13:56:46,815 DEBUG AbstractSecurityInterceptor:371 - RunAsManager did not change Authentication object
13:56:46,815 DEBUG FilterChainProxy:288 - /html/authentication/debug.jsp reached end of additional filter chain; proceeding with original chain
13:56:46,815 DEBUG ExceptionTranslationFilter:146 - Chain processed normally
13:56:46,830 DEBUG HttpSessionContextIntegrationFilter:285 - SecurityContextHolder set to new context, as request processing completed
