Thank you both, I'm checking both the cert chain and the sessionid now... On Friday, March 5, 2021 at 3:29:39 PM UTC-6 [email protected] wrote:
> Hi, > > Looking at the logs, it seems clear the ticket is validated. > After that, phpCAS "remove the ticket by an additional redirect" > Cf setNoClearTicketsFromUrl in doc : > https://apereo.github.io/phpCAS/api/group__publicAuth.html#gac7a6eeb2bfd55a432c57f5d18bd35048 > > I suggest "set-cookie: PHPSESSID=xxx" is somehow missing or rejected by > the browser, > so the browser will not send the cookie to the redirectd url without > ticket= , ending up in an endless loop... > > Could you check that ? > > cu > > > On 05/03/2021 18:45, Stewart wrote: > > 38A5 .| | | | => > CAS_Client::_renameSession('ST-2686-YNQIAWP-A6GsZgmvA-316GuFo4c-cas0') > [Client.php:3331] > > 38A5 .| | | | | Killing session: > fu72cjc1vjgas1fmoh9e54qlil [Client.php:3718] > > 38A5 .| | | | | Starting session: > 2f6bf6441d77521dbff8ca436f902ddb8831c897715c8418d59a517f371e0636 > [Client.php:3722] > > 38A5 .| | | Prepare redirect to : > https://ct.example.com/example_simple.php [Client.php:1523] > > 38A5 .| | | <= 'https://ct.example.com/example_simple.php' > > 38A5 .| | | exit() > > > 5B90 .START (2021-03-05 17:37:05) phpCAS-1.3.8 ****************** > [CAS.php:475] > > 5B90 .=> phpCAS::client('2.0', 'cas.example.com', 443, '/cas') > [example_simple.php:29] > > 5B90 .| => CAS_Client::__construct('2.0', false, 'cas.example.com', > 443, '/cas', true) [CAS.php:365] > > 5B90 .| | Starting a new session ksugi1qvlm6aforko58ne6tk08 > [Client.php:932] > > 5B90 .| | Session is not authenticated [Client.php:938] > > 5B90 .| <= '' > > 5B90 .=> phpCAS::forceAuthentication() [example_simple.php:41] > > 5B90 .| => CAS_Client::forceAuthentication() [CAS.php:1120] > > 5B90 .| | => CAS_Client::isAuthenticated() [Client.php:1286] > > 5B90 .| | | => CAS_Client::_wasPreviouslyAuthenticated() > [Client.php:1398] > > 5B90 .| | | | no user found [Client.php:1640] > -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/ac5fa18c-1abe-4197-84b3-32b618ee3f7en%40apereo.org.
