I found why I have that error. When I define multiple requiredHandlers for
the service, as shown in the following code, even if I am authenticated,
the service can not be validated. The required handlers are not mandatory
but mutually optional. I one does not work, use the second.
"@class" : "org.apereo.cas.services.RegexRegisteredService",
"serviceId" :
"^https?://(((localhost(\\.uquebec\\.ca)?)|(127\\.0\\.0\\.1)|(.+-pc\\.teluq\\.uquebec\\.ca))(:[0-9]+)?)(/?.*)"
,
"id" : 10000004,
"name" : "Applications localhost",
"theme" : "teluq",
"description" : "Cette définition de service permet les connexions aux
applications locales",
"evaluationOrder" : 11004,
"requiredHandlers" : [ "java.util.HashSet", [ "ldapHandler1",
"ldapHandler2" ] ],
"excludeDefaultAttributes":"true",
"attributeReleasePolicy" : {
"@class" : "org.apereo.cas.services.ReturnAllAttributeReleasePolicy"
},
"accessStrategy" : {
"@class" :
"org.apereo.cas.services.SurrogateRegisteredServiceAccessStrategy",
"surrogateEnabled" : true,
"enabled": true,
"ssoEnabled": true
}
}
If I need two handlers is because I have two groups of users in two
differents AD with two different domain context.
Le mercredi 5 juin 2019 15:58:46 UTC-4, Christian Poirier a écrit :
>
> Hi
>
> I have 4 stage environments. DEV, TEST, PREPROD and PROD
>
> The authentification works on first 2 but not on the last 2.
>
> The error code I recieved is INVALID_SERVICE as show in the following xml
> response
> <cas:serviceResponse xmlns:cas='http://www.yale.edu/tp/cas'>
> <cas:authenticationFailure code="INVALID_SERVICE">
> Ticket 'ST-2-NebQkEA0E-s5uqwpvia2zg1RbtUtlqauth-l-prod1'
> does not match supplied service.
> The original service was '
> http://127.0.0.1/login/login.aspx?ReturnUrl=/bottin/liste.aspx' and
> the supplied service was '
> http://127.0.0.1/login/login.aspx?ReturnUrl=/bottin/liste.aspx'.
> </cas:authenticationFailure>
> </cas:serviceResponse>
>
> If you look at the original service and supplied service, they are same
> string value.
> http://127.0.0.1/login/login.aspx?ReturnUrl=/bottin/liste.aspx
> ==
> http://127.0.0.1/login/login.aspx?ReturnUrl=/bottin/liste.aspx
>
> If I use the DEV and TEST, they are OK.
> The configuration is the same for all servers except minor settings like
> names and LDAP referenced.
>
> Does anyone knows what is happening?
>
> Thank's
>
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/8101b962-bc17-4c6e-91da-ec69a8255373%40apereo.org.
