On 18 May 2017 at 14:19, Pooya Eslami <[email protected]> wrote: > Hi everyone... > > I have a plone site that serves on http://my.domain.com:8080/intranet. > Based on the plone docs I have a rewrite rule so to translate that ugliness > to http://my.domain.com > I have cas enabled on the plone site for authentication and it works fine. > Several pages at the root level are available to public unfortunately. So to > protect these pages via cas, I have installed the mod_auth_cas in apache. > Now the pages that were previously public are protected by cas, but if I try > to go to the root site http://my.domain.com/ I get a redirect loop that > keeps generating tickets and goes between cas and my.domain.com trying to > validate. > > here is my apache conf: > > > <VirtualHost *> > ServerName my.domain.com > ServerSignature On > > ProxyVia On > > <Proxy *> > Order deny,allow > Allow from all > </Proxy> > > CASCookiePath /var/cache/apache2/mod_auth_cas/ > CASLoginURL https://cas.domain.com/cas/login > CASValidateURL https://cas.domain.com/cas/serviceValidate > CASDebug on > LogLevel Debug > > RewriteEngine on > RewriteRule ^/(.*) > http://localhost:8080/VirtualHostBase/http/%{SERVER_NAME}:80/intranet/VirtualHostRoot/$1 > [P,L] > > <Location /> > CASScope on
That looks off to me. What happens if you remove that line completely or use "CASScope /"? What versions of Apache and mod_auth_cas are you using? -- - CAS gitter chatroom: https://gitter.im/apereo/cas - CAS mailing list guidelines: https://apereo.github.io/cas/Mailing-Lists.html - CAS documentation website: https://apereo.github.io/cas - CAS project website: https://github.com/apereo/cas --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/CAAgu-wCRAuw0vuy9ORrsm%2BDDauQ5q-3vLHr5BsFVrKE6%2B7o3Gg%40mail.gmail.com.
