Re: [cas-user] how to disable ssl in cas

Julien Gribonvald Wed, 04 Mar 2009 03:47:59 -0800

Hi,

Try to configure the cas request in this order :


// initialize phpCAS
phpCAS::client(CAS_VERSION_2_0,'domain.name.cas',443,'cas');

// set the language to french if you use french
phpCAS::setLang(PHPCAS_LANG_FRENCH);

// no SSL validation for the CAS server
phpCAS::setNoCasServerValidation();

// force CAS authentication
phpCAS::forceAuthentication();

This should disable the ssl mod ...

Julien G.

strange79 a écrit :

Hi evreybody ,
need help , i spent 3 days searching for how to disable SSL in cas
i m using Tomcat 6 , CAS 3.3.1, ldap .

when default authetification evrythings works fine ,when i was use phpCAs from applicationi have this msg error "CAS authetification Failed".after checking cas LOG i ve noticed that tikect is sent from cas in ssl mod

here is my log
388B .START ****************** [CAS.php:400]
388B .=> phpCAS::client('2.0', 'www.mooja.ma', 80, '/cas') [login.php:13]
388B .|    => CASClient::CASClient('2.0', false, 'www.test.ma', 80, '/cas', 
true) [CAS.php:301]
388B .|    |    ST or PT 'ST-3-CAMmoFxlb2JgbB3ON06y-cas' found [client.php:561]
388B .|    <= ''
388B .<= ''
388B .=> phpCAS::setNoCasServerValidation() [login.php:16]
388B .<= ''
388B .=> phpCAS::checkAuthentication() [login.php:19]
388B .|    => CASClient::checkAuthentication() [CAS.php:870]
388B .|    |    => CASClient::isAuthenticated() [client.php:699]
388B .|    |    |    => CASClient::wasPreviouslyAuthenticated() [client.php:758]
388B .|    |    |    |    no user found [client.php:862]
388B .|    |    |    <= false
388B .|    |    |    PT `ST-3-CAMmoFxlb2JgbB3ON06y-cas' is present 
[client.php:779]
388B .|    |    |    => CASClient::validatePT('', NULL, NULL) [client.php:780]
388B .|    |    |    |    => CASClient::getURL() [client.php:396]
388B .|    |    |    |    <= 'http://www.test.ma/login/login.php'
388B .|    |    |    |    => 
CASClient::readURL('https://www.mooja.ma:80/cas/proxyValidate?service=http%3A%2F%2Fwww.test.ma%2Flogin%2Flogin.php&ticket=ST-3-CAMmoFxlb2JgbB3ON06y-cas',
 '', NULL, NULL, NULL) [client.php:1945]
388B .|    |    |    |    |    curl_exec() failed [client.php:1696]
388B .|    |    |    |    <= false
388B .|    |    |    |    could not open URL 
'https://www.mooja.ma:80/cas/proxyValidate?service=http%3A%2F%2Fwww.mooja.ma%2Flogin%2Flogin.php&ticket=ST-3-CAMmoFxlb2JgbB3ON06y-cas'
 to validate (CURL error #35: SSL connect error) [client.php:1946]
388B .|    |    |    |    => CASClient::authError('PT not validated', 
'https://www.test.ma:80/cas/proxyValidate?service=http%3A%2F%2Fwww.mooja.ma%2Flogin%2Flogin.php&ticket=ST-3-CAMmoFxlb2JgbB3ON06y-cas',
 true) [client.php:1949]
388B .|    |    |    |    |    => CASClient::getURL() [client.php:2130]
388B .|    |    |    |    |    <= 'http://www.test.ma/login/login.php'
388B .|    |    |    |    |    CAS URL: 
https://www.test.ma:80/cas/proxyValidate?service=http%3A%2F%2Fwww.mooja.ma%2Flogin%2Flogin.php&ticket=ST-3-CAMmoFxlb2JgbB3ON06y-cas
 [client.php:2131]
388B .|    |    |    |    |    Authentication failure: PT not validated 
[client.php:2132]
388B .|    |    |    |    |    Reason: no response from the CAS server 
[client.php:2134]
388B .|    |    |    |    |    exit()
i read in one forum that s possible to disable using this tag in 
deployerConfigContext.xml
<bean 
class="org.jasig.cas.authentication.handler.support.HttpBasedServiceCredentialsAuthenticationHandler"
                                        p:httpClient-ref="httpClient" 
p:requireSecure="false"  />

but it doesn t seem to workmy question is how to disable ssl in casThx in advance



--
You are currently subscribed to [email protected] as: 
[email protected]
To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user

Re: [cas-user] how to disable ssl in cas

Reply via email to