Hi,
I am testing SAML 1.1 ticket validation with the help of this introductory
example:
https://wiki.jasig.org/display/CASC/JASIG+Client+SAML+Saml11TicketValidationFilter+Example
This works correctly, but I cannot get this to work with a Spring-based
DelegatingFilterProxy configuration.
e.g. web.xml snippet:
<filter>
<filter-name>CAS Authentication Filter</filter-name>
<filter-class>org.springframework.web.filter.DelegatingFilterProxy</filter-class>
<init-param>
<param-name>targetBeanName</param-name>
<param-value>authenticationFilter</param-value>
</init-param>
</filter>
<filter>
<filter-name>CAS Validation Filter</filter-name>
<filter-class>org.springframework.web.filter.DelegatingFilterProxy</filter-class>
<init-param>
<param-name>targetBeanName</param-name>
<param-value>ticketValidationFilter</param-value>
</init-param>
</filter>
<filter>
<filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
<filter-class>org.jasig.cas.client.util.HttpServletRequestWrapperFilter</filter-class>
</filter>
Spring configuration snippet:
<bean name="authenticationFilter"
class="org.jasig.cas.client.authentication.AuthenticationFilter">
<property name="casServerLoginUrl" value="${cas.loginUrl}" />
<property name="serverName" value="${cas.serverName}" />
</bean>
<bean name="ticketValidationFilter"
class="org.jasig.cas.client.validation.Saml11TicketValidationFilter">
<property name="serverName" value="${cas.serverName}" />
<property name="redirectAfterValidation" value="true" />
<property name="ticketValidator">
<bean
class="org.jasig.cas.client.validation.Saml11TicketValidator">
<constructor-arg index="0" value="${cas.url}" />
</bean>
</property>
</bean>
Note: I've been using a similar configuration for the last few years with
CAS tickets without issue.
I have tested the configuration example listed here with no effect:
https://wiki.jasig.org/display/CASC/Configuring+the+JA-SIG+CAS+Client+for+Java+using+Spring
The authenticationFilter bean is working correctly, the problem seems to be
the ticketValidationFilter configuration.
I've enabled debug logging on the client, but there seems to be very little
output.
i.e. It is almost like the ticketValidationFilter is not even
being engaged.
Could anyone provide a Spring configuration that matches (or is similar to)
the initial SAML example that I initially referenced?
e.g. The Spring DelegatingFilterProxy equivalent of:
<filter>
<filter-name>CAS Validation Filter</filter-name>
<filter-class>org.jasig.cas.client.validation.Saml11TicketValidationFilter</filter-class>
<init-param>
<param-name>casServerUrlPrefix</param-name>
<param-value>https://cas.mydomain.com/cas</param-value>
</init-param>
<init-param>
<param-name>serverName</param-name>
<param-value>http://localhost:8084</param-value>
</init-param>
<init-param>
<param-name>redirectAfterValidation</param-name>
<param-value>true</param-value>
</init-param>
</filter>
David
--
You are currently subscribed to cas-dev@lists.jasig.org as:
arch...@mail-archive.com
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-dev
