Re: [cas-dev] CAS Logout Issue

Mckenzie J Sun, 06 Jan 2013 22:00:06 -0800

Hi Scott/ Jerome,

I have still not able to get a solution for that issue. But further
analysis on this , i have landed upon the above mentioned behaviour
which has thrown some light on the root cause. As mentioned there is
some way a duplicate cookie gets created. I have enabled and added the
debug logs as per your suggestion. I believe that this duplicate
cookie can be the cause of the issue.


I can see that login creates and sets  only 1 CASTGC cookie in
browser. On call of logout it deletes the one it has created. But the
duplicate one (with path set as /cas-server-webapp-3.5.1) still exists
in the browser.

To ensure if there is no collision of any of our code, i redeployed
CAS 3.5.1 war in a tomcat server and set to DEBUG mode and  tried
replicating the behaviour . I can see the behaviour in this as well.

Kindly suggest way ahead.I have added the logs in the post  for your reference.

Thanks,
Mckenzie




On Mon, Jan 7, 2013 at 3:52 AM, Scott Battaglia
<scott.battag...@gmail.com> wrote:
> I'd be curious as to what point the two different cookies get created.  I've
> never heard of that happening before, and its most likely directly affecting
> the logout.
>
>
> On Sun, Jan 6, 2013 at 8:54 AM, jleleu <lel...@gmail.com> wrote:
>>
>> Hi,
>>
>> I already saw your question here :
>> http://forum.springsource.org/showthread.php?133838-CAS-3-5-1-CASTGC-cookie.
>>
>> As I wrote, it looks very strange to me : I've never heard about two
>> CASTGC cookies created. I would try to activate DEBUG logs on the webflow
>> (org.springframework.webflow package) to see what's going on in your CAS
>> server ?
>>
>> Unless someone has a better idea...
>>
>> Best regards,
>> Jérôme
>>
>> --
>> You are currently subscribed to cas-dev@lists.jasig.org as:
>> scott.battag...@gmail.com
>>
>> To unsubscribe, change settings or access archives, see
>> http://www.ja-sig.org/wiki/display/JSG/cas-dev
>
>
> --
> You are currently subscribed to cas-dev@lists.jasig.org as:
> mck2...@gmail.com
> To unsubscribe, change settings or access archives, see
> http://www.ja-sig.org/wiki/display/JSG/cas-dev

-- 
You are currently subscribed to cas-dev@lists.jasig.org as: 
arch...@mail-archive.com
To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-dev

2013-01-07 11:11:11,098 INFO [org.jasig.cas.web.flow.InitialFlowSetupAction] - 
<Setting path for cookies to: /cas-server-webapp-3.5.1/>
2013-01-07 11:11:11,306 DEBUG [org.jasig.cas.web.support.CasArgumentExtractor] 
- <Extractor did not generate service.>
2013-01-07 11:11:11,319 DEBUG [org.jasig.cas.web.support.SamlArgumentExtractor] 
- <Extractor did not generate service.>
2013-01-07 11:11:11,339 DEBUG 
[org.jasig.cas.web.flow.GenerateLoginTicketAction] - <Generated login ticket 
LT-1-k6RunsWnst0j0raMC7a0ZR1Fdo3RLe>
2013-01-07 11:11:17,329 DEBUG [org.jasig.cas.web.support.CasArgumentExtractor] 
- <Extractor did not generate service.>
2013-01-07 11:11:17,329 DEBUG [org.jasig.cas.web.support.SamlArgumentExtractor] 
- <Extractor did not generate service.>
2013-01-07 11:11:27,034 INFO 
[org.jasig.cas.authentication.AuthenticationManagerImpl] - 
<org.jasig.cas.adaptors.jdbc.QueryDatabaseAuthenticationHandler successfully 
authenticated [username: User]>
2013-01-07 11:11:27,035 DEBUG 
[org.jasig.cas.authentication.principal.UsernamePasswordCredentialsToPrincipalResolver]
 - <Attempting to resolve a principal...>
2013-01-07 11:11:27,035 DEBUG 
[org.jasig.cas.authentication.principal.UsernamePasswordCredentialsToPrincipalResolver]
 - <Creating SimplePrincipal for [User]>
2013-01-07 11:11:27,037 DEBUG 
[org.jasig.services.persondir.support.jdbc.SingleRowJdbcPersonAttributeDao] - 
<Created seed map='{username=[User]}' for uid='User'>
2013-01-07 11:11:27,037 DEBUG 
[org.jasig.services.persondir.support.jdbc.SingleRowJdbcPersonAttributeDao] - 
<Adding attribute 'username' with value '[User]' to query builder 'null'>
2013-01-07 11:11:27,038 DEBUG 
[org.jasig.services.persondir.support.jdbc.SingleRowJdbcPersonAttributeDao] - 
<Generated query builder 'sql=[username = ?] args=[User]' from query Map 
{username=[User]}.>
2013-01-07 11:11:27,385 DEBUG 
[org.jasig.services.persondir.support.jdbc.SingleRowJdbcPersonAttributeDao] - 
<Executed 'select username, email, firstname, lastname from tablename where 
{0}' with arguments [User] and got results [{username=User, email=email, 
firstname=User, lastname=lastname}]>
2013-01-07 11:11:27,395 INFO 
[org.jasig.cas.authentication.AuthenticationManagerImpl] - <Resolved principal 
User>
2013-01-07 11:11:27,396 INFO 
[org.jasig.cas.authentication.AuthenticationManagerImpl] - <Principal found: 
User>
2013-01-07 11:11:27,396 DEBUG 
[org.jasig.cas.authentication.AuthenticationManagerImpl] - <Attribute map for 
User: {username=User, email=user_lastn...@abc.com, lastname=Anthony, 
firstname=User}>
2013-01-07 11:11:27,408 INFO 
[com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit 
trail record BEGIN
=============================================================
WHO: [username: User]
WHAT: supplied credentials: [username: User]
ACTION: AUTHENTICATION_SUCCESS
APPLICATION: CAS
WHEN: Mon Jan 07 11:11:27 IST 2013
CLIENT IP ADDRESS: 10.66.237.34
SERVER IP ADDRESS: 10.219.66.224
=============================================================

>
2013-01-07 11:11:27,419 DEBUG 
[org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Added ticket 
[TGT-1-UKJCfD6mIbsyaVDfdO0pMTLljacFAzMAlzuJN0iaNN0yy1bExa-cas01.example.org] to 
registry.>
2013-01-07 11:11:27,419 INFO 
[com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit 
trail record BEGIN
=============================================================
WHO: [username: User]
WHAT: TGT-1-UKJCfD6mIbsyaVDfdO0pMTLljacFAzMAlzuJN0iaNN0yy1bExa-cas01.example.org
ACTION: TICKET_GRANTING_TICKET_CREATED
APPLICATION: CAS
WHEN: Mon Jan 07 11:11:27 IST 2013
CLIENT IP ADDRESS: 10.66.237.34
SERVER IP ADDRESS: 10.219.66.224
=============================================================

>
2013-01-07 11:11:27,420 DEBUG 
[org.jasig.cas.web.support.CookieRetrievingCookieGenerator] - <Removed cookie 
with name [CASPRIVACY]>
2013-01-07 11:11:27,420 DEBUG 
[org.jasig.cas.web.support.CookieRetrievingCookieGenerator] - <Added cookie 
with name [CASTGC] and value 
[TGT-1-UKJCfD6mIbsyaVDfdO0pMTLljacFAzMAlzuJN0iaNN0yy1bExa-cas01.example.org]>
2013-01-07 11:11:27,440 DEBUG [org.jasig.cas.web.support.CasArgumentExtractor] 
- <Extractor did not generate service.>
2013-01-07 11:11:27,440 DEBUG [org.jasig.cas.web.support.SamlArgumentExtractor] 
- <Extractor did not generate service.>
2013-01-07 11:11:27,445 DEBUG 
[org.jasig.cas.web.flow.TerminateWebSessionListener] - <Terminate web session 
23089437C56F0739F99E422DA649EF05.node1 in 2 seconds>


After calling Logout 

2013-01-07 11:11:32,293 INFO 
[org.jasig.cas.services.DefaultServicesManagerImpl] - <Reloading registered 
services.>
2013-01-07 11:11:32,293 DEBUG 
[org.jasig.cas.services.DefaultServicesManagerImpl] - <Adding registered 
service ^(https?|imaps?)://.*>
2013-01-07 11:11:32,294 INFO 
[org.jasig.cas.services.DefaultServicesManagerImpl] - <Loaded 1 services.>
2013-01-07 11:13:02,282 DEBUG [org.jasig.cas.CentralAuthenticationServiceImpl] 
- <Removing ticket 
[TGT-1-UKJCfD6mIbsyaVDfdO0pMTLljacFAzMAlzuJN0iaNN0yy1bExa-cas01.example.org] 
from registry.>
2013-01-07 11:13:02,283 DEBUG 
[org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Attempting to retrieve 
ticket 
[TGT-1-UKJCfD6mIbsyaVDfdO0pMTLljacFAzMAlzuJN0iaNN0yy1bExa-cas01.example.org]>
2013-01-07 11:13:02,283 DEBUG 
[org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Ticket 
[TGT-1-UKJCfD6mIbsyaVDfdO0pMTLljacFAzMAlzuJN0iaNN0yy1bExa-cas01.example.org] 
found in registry.>
2013-01-07 11:13:02,283 DEBUG [org.jasig.cas.CentralAuthenticationServiceImpl] 
- <Ticket found.  Expiring and then deleting.>
2013-01-07 11:13:02,283 DEBUG 
[org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Removing ticket 
[TGT-1-UKJCfD6mIbsyaVDfdO0pMTLljacFAzMAlzuJN0iaNN0yy1bExa-cas01.example.org] 
from registry>
2013-01-07 11:13:02,283 DEBUG 
[org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Attempting to retrieve 
ticket 
[TGT-1-UKJCfD6mIbsyaVDfdO0pMTLljacFAzMAlzuJN0iaNN0yy1bExa-cas01.example.org]>
2013-01-07 11:13:02,284 INFO 
[com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit 
trail record BEGIN
=============================================================
WHO: audit:unknown
WHAT: TGT-1-UKJCfD6mIbsyaVDfdO0pMTLljacFAzMAlzuJN0iaNN0yy1bExa-cas01.example.org
ACTION: TICKET_GRANTING_TICKET_DESTROYED
APPLICATION: CAS
WHEN: Mon Jan 07 11:13:02 IST 2013
CLIENT IP ADDRESS: 10.66.237.34
SERVER IP ADDRESS: 10.219.66.224
=============================================================

>
2013-01-07 11:13:02,284 DEBUG 
[org.jasig.cas.web.support.CookieRetrievingCookieGenerator] - <Removed cookie 
with name [CASTGC]>
2013-01-07 11:13:02,285 DEBUG 
[org.jasig.cas.web.support.CookieRetrievingCookieGenerator] - <Removed cookie 
with name [CASPRIVACY]>
2013-01-07 11:13:02,319 DEBUG [org.jasig.cas.web.support.CasArgumentExtractor] 
- <Extractor did not generate service.>
2013-01-07 11:13:02,320 DEBUG [org.jasig.cas.web.support.SamlArgumentExtractor] 
- <Extractor did not generate service.>

Re: [cas-dev] CAS Logout Issue

Reply via email to