Thank you Marvin and Dale for the precious remarks.
I followed the advice of Dale (I knew that page, but I was looking at the Java
example only, as I don't know Python) I've changed the code in order to follow
the Spring Security calls.
I obtain exactly the same result, but now, looking at the log (following below)
of the Spring Security filter (for what I understood it has the role to
validate the ticket for may service request) I see that the problem is that the
CasAuthenticationFilter treat me as an anonymous.
My question now is: what's the way not to be an anonymous for the filter?
I saw that in the Python example something is done to manage the cookies...is
it that the secret?
Thanks.
Vittorio
2012-09-06
06:03:50[DEBUG,org.springframework.security.access.intercept.AbstractSecurityInterceptor,ajp-bio-8009-exec-10]
Previously Authenticated:
org.springframework.security.authentication.AnonymousAuthenticationToken@90550640:
Principal: anonymousUser; Password: [PROTECTED]; Authenticated: true; Details:
org.springframework.security.web.authentication.WebAuthenticationDetails@7798:
RemoteIpAddress: 64.103.77.78; SessionId: null; Granted Authorities:
ROLE_ANONYMOUS
2012-09-06
06:03:50[DEBUG,org.springframework.security.access.vote.AffirmativeBased,ajp-bio-8009-exec-10]
Voter:
org.springframework.security.web.access.expression.WebExpressionVoter@780aac95,
returned: -1
2012-09-06
06:03:50[DEBUG,org.springframework.context.support.AbstractApplicationContext,ajp-bio-8009-exec-10]
Publishing event in Root WebApplicationContext:
org.springframework.security.access.event.AuthorizationFailureEvent[source=FilterInvocation:
URL: /index.jsp]
2012-09-06
06:03:50[DEBUG,org.springframework.security.web.access.ExceptionTranslationFilter,ajp-bio-8009-exec-10]
Access is denied (user is anonymous); redirecting to authentication entry point
org.springframework.security.access.AccessDeniedException: Access is denied
at
org.springframework.security.access.vote.AffirmativeBased.decide(AffirmativeBased.java:71)
at
org.springframework.security.access.intercept.AbstractSecurityInterceptor.beforeInvocation(AbstractSecurityInterceptor.java:204)
at
org.springframework.security.web.access.intercept.FilterSecurityInterceptor.invoke(FilterSecurityInterceptor.java:106)
at
org.springframework.security.web.access.intercept.FilterSecurityInterceptor.doFilter(FilterSecurityInterceptor.java:83)
at
org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:380)
at
org.springframework.security.web.access.ExceptionTranslationFilter.doFilter(ExceptionTranslationFilter.java:97)
at
org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:380)
at
org.springframework.security.web.session.SessionManagementFilter.doFilter(SessionManagementFilter.java:100)
at
org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:380)
at
org.springframework.security.web.authentication.AnonymousAuthenticationFilter.doFilter(AnonymousAuthenticationFilter.java:78)
at
org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:380)
at
org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter.doFilter(SecurityContextHolderAwareRequestFilter.java:54)
at
org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:380)
at
org.springframework.security.web.savedrequest.RequestCacheAwareFilter.doFilter(RequestCacheAwareFilter.java:35)
at
org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:380)
at
org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter.doFilter(AbstractAuthenticationProcessingFilter.java:187)
at
org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:380)
at
org.jasig.cas.client.session.SingleSignOutFilter.doFilter(SingleSignOutFilter.java:110)
at
org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:380)
at
org.springframework.security.web.authentication.logout.LogoutFilter.doFilter(LogoutFilter.java:105)
at
org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:380)
at
org.springframework.security.web.authentication.logout.LogoutFilter.doFilter(LogoutFilter.java:105)
at
org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:380)
at
org.springframework.security.web.context.SecurityContextPersistenceFilter.doFilter(SecurityContextPersistenceFilter.java:79)
at
org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:380)
at
org.springframework.security.web.access.channel.ChannelProcessingFilter.doFilter(ChannelProcessingFilter.java:109)
at
org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:380)
at
org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:169)
at
org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:237)
at
org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:167)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:243)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210)
at
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:224)
at
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:169)
at
org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:472)
at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:168)
at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:98)
at
org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:927)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:118)
at
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:407)
at org.apache.coyote.ajp.AjpProcessor.process(AjpProcessor.java:200)
at
org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:579)
at
org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:307)
at
java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886)
at
java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908)
at java.lang.Thread.run(Thread.java:662)
2012-09-06
06:03:50[DEBUG,org.springframework.security.web.savedrequest.HttpSessionRequestCache,ajp-bio-8009-exec-10]
DefaultSavedRequest added to Session:
DefaultSavedRequest[https://gpk-nmtg-cpo06/OpticalPortal/]
2012-09-06
06:03:50[DEBUG,org.springframework.security.web.access.ExceptionTranslationFilter,ajp-bio-8009-exec-10]
Calling Authentication entry point.
2012-09-06
06:03:50[DEBUG,org.springframework.security.web.context.HttpSessionSecurityContextRepository$SaveToSessionResponseWrapper,ajp-bio-8009-exec-10]
SecurityContext is empty or anonymous - context will not be stored in
HttpSession
-----Original Message-----
From: Dale Ogilvie [mailto:dale_ogil...@trimble.com]
Sent: giovedì 6 settembre 2012 07:16
To: cas-dev@lists.jasig.org
Subject: RE: [cas-dev] Java REST working client
Perhaps have a look at the "Python REST Client Example - Spring Security
Server" example in the link below, Spring security does things a little
differently as noted here.
https://wiki.jasig.org/display/CASUM/RESTful+API
--
You are currently subscribed to cas-dev@lists.jasig.org as: vscib...@cisco.com
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-dev
--
You are currently subscribed to cas-dev@lists.jasig.org as:
arch...@mail-archive.com
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-dev
