Hello Community
We are currently facing the following problem with our CAS 4.1.4. 1. When I directly request the login site from cas (https://localhost:8443/cas) and authenticate with my credentials, the authenticateUsernamePasswordInternal() method in my AuthenticationHandler (override from AbstractUsernamePasswordAuthenticationHandler) is called once. In this method I call a webservice for credentials validation it responds with "true" and everything goes fine. The user (me) gets its TGT. 2. When the request for the login page comes from a registered CAS client (https://localhost:8443/cas/login?service=http%3A%2F%2Flocalhost%3A8090%2Fprotected%2Findex.jsp) and the user submits with valid credentials, the authenticateUsernamePasswordInternal() in my AuthenticationHandler for some reason is called TWICE!!. Even if the first call of the method returned sucessful HandlerResult the method is called a second time (from PolicyBasedAuthenticationManager) only some milliseconds after the first call. After the second validation the CAS creates a valid TGT again and redirects back to the CAS client. Can some explain why in this case the AuthenticationHandler is called twice and how to avoid it? Thank you. Regards Artur -- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/.
