Pascal, That was it! Thank you. Apparently in the upgrade of PHP, session autostart got turned off. Turning it back on resolved the issue. Thanks to you and to everyone else who jumped in to help!
On Friday, March 5, 2021 at 4:30:13 PM UTC-6 Stewart wrote: > Thank you both, I'm checking both the cert chain and the sessionid now... > > On Friday, March 5, 2021 at 3:29:39 PM UTC-6 [email protected] > wrote: > >> Hi, >> >> Looking at the logs, it seems clear the ticket is validated. >> After that, phpCAS "remove the ticket by an additional redirect" >> Cf setNoClearTicketsFromUrl in doc : >> https://apereo.github.io/phpCAS/api/group__publicAuth.html#gac7a6eeb2bfd55a432c57f5d18bd35048 >> >> >> I suggest "set-cookie: PHPSESSID=xxx" is somehow missing or rejected by >> the browser, >> so the browser will not send the cookie to the redirectd url without >> ticket= , ending up in an endless loop... >> >> Could you check that ? >> >> cu >> >> >> On 05/03/2021 18:45, Stewart wrote: >> > 38A5 .| | | | => >> CAS_Client::_renameSession('ST-2686-YNQIAWP-A6GsZgmvA-316GuFo4c-cas0') >> [Client.php:3331] >> > 38A5 .| | | | | Killing session: >> fu72cjc1vjgas1fmoh9e54qlil [Client.php:3718] >> > 38A5 .| | | | | Starting session: >> 2f6bf6441d77521dbff8ca436f902ddb8831c897715c8418d59a517f371e0636 >> [Client.php:3722] >> > 38A5 .| | | Prepare redirect to : >> https://ct.example.com/example_simple.php [Client.php:1523] >> > 38A5 .| | | <= 'https://ct.example.com/example_simple.php' >> > 38A5 .| | | exit() >> >> > 5B90 .START (2021-03-05 17:37:05) phpCAS-1.3.8 ****************** >> [CAS.php:475] >> > 5B90 .=> phpCAS::client('2.0', 'cas.example.com', 443, '/cas') >> [example_simple.php:29] >> > 5B90 .| => CAS_Client::__construct('2.0', false, 'cas.example.com', >> 443, '/cas', true) [CAS.php:365] >> > 5B90 .| | Starting a new session ksugi1qvlm6aforko58ne6tk08 >> [Client.php:932] >> > 5B90 .| | Session is not authenticated [Client.php:938] >> > 5B90 .| <= '' >> > 5B90 .=> phpCAS::forceAuthentication() [example_simple.php:41] >> > 5B90 .| => CAS_Client::forceAuthentication() [CAS.php:1120] >> > 5B90 .| | => CAS_Client::isAuthenticated() [Client.php:1286] >> > 5B90 .| | | => CAS_Client::_wasPreviouslyAuthenticated() >> [Client.php:1398] >> > 5B90 .| | | | no user found [Client.php:1640] >> > -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/4ddd4734-9690-4fa3-9259-6b5bfa294aben%40apereo.org.
