Since gwt sends post requests. I am trying to use post redirect given by
the cas protocol. My goal is the retrieve a SAML token from CAS.
method [OPTIONAL, CAS 3.0] - The method to be used when sending responses.
While native HTTP redirects (GET) may be utilized as the default method,
applications that require a POST response can use this parameter to
indicate the method type. It is up to the CAS server implementation to
determine whether or not POST responses are supported.
When I login, I get an infinite loop of authentication and the webpage I am
trying to visit can’t even load.
1. I visit the webpage
2. I get redirected to CAS login
3. I login
4. I get redirected back to my webpage, but my webpage never loads
completely because it is stuck in some infinite authentication/redirect
loop.
My primary concern is this sentence: “It is up to the CAS server
implementation to determine whether or not POST responses are supported.” I
probably messed up on setting this up.
Web.xml of webage trying to visit :
<filter>
<filter-name>CAS Authentication Filter</filter-name>
<filter-class>org.jasig.cas.client.authentication.AuthenticationFilter</filter-class>
<!-- these can be defined by context.xml -->
<init-param>
<param-name>casServerLoginUrl</param-name>
<!-- <param-value>https://dev:8443/cas/login</param-value> -->
<param-value>https://
<https://appv131.nmic.navy-lmdev.mil:8443/cas/login?method=POST%3c/param-value>
dev:8443/cas/login?method=POST</param-value>
</init-param>
<init-param>
<param-name>serverName</param-name>
<param-value>https://devl:8443</param-value>
</init-param>
</filter>
<filter>
<filter-name>CAS Validation Filter</filter-name>
<filter-class>org.jasig.cas.client.validation.Cas30ProxyReceivingTicketValidationFilter</filter-class>
<!-- these can be defined by context.xml -->
<init-param>
<param-name>serverName</param-name>
<param-value>https://devl:8443</param-value>
</init-param>
<init-param>
<param-name>casServerUrlPrefix</param-name>
<param-value>https://dev:8443/cas</param-value>
</init-param>
<init-param>
<param-name>redirectAfterValidation</param-name>
<param-value>true</param-value>
</init-param>
<init-param>
<param-name>useSession</param-name>
<param-value>true</param-value>
</init-param>
</filter>
Login-webflow.xml
<decision-state id="postRedirectDecision">
<if test="requestScope.response.responseType.name() == 'POST'"
then="postView" else="redirectView"/>
</decision-state>
<action-state id="generateServiceTicket">
<evaluate expression="generateServiceTicketAction"/>
<transition on="success" to="warn"/>
<!-- <transition on="success"
to="gatewayServicesManagementCheck"/>-->
<transition on="authenticationFailure"
to="handleAuthenticationFailure"/>
<transition on="error" to="generateLoginTicket"/>
<transition on="gateway" to="gatewayServicesManagementCheck"/>
</action-state>
<action-state id="gatewayServicesManagementCheck">
<evaluate expression="gatewayServicesManagementCheck"/>
<transition on="success" to="redirect"/>
<transition on="error" to="handleAuthenticationFailure"/>
</action-state>
<action-state id="redirect">
<evaluate
expression="flowScope.service.getResponse(requestScope.serviceTicketId)"
result-type="org.jasig.cas.authentication.principal.Response"
result="requestScope.response"/>
<transition to="postRedirectDecision"/>
</action-state>
--
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/.
