> ERROR [edu.yale.its.tp.cas.client.CASReceipt] - > <edu.yale.its.tp.cas.client.CASAuthenticationException: Unable to validate > ProxyTicketValidator [[edu.yale.its.tp.cas.client.ProxyTicketValidator > proxyList=[null] [edu.yale.its.tp.cas.client.ServiceTicketValidator > casValidateUrl=[https://localhost:8443/cas/proxyValidate] > proxyCallbackUrl=[https://localhost:8443/ui-fw/CasProxyServlet] ticket= > [ST-1-Bn0WScujP0zeyVOcNBkN-cas] > service=[http%3A%2F%2Flocalhost%3A8080%2Fui-fw] renew=false]]]>
It looks like CAS failing to validate the proxy callback URL. CAS proxy has an additional PKI requirement that CAS trust the client, so you'd need to import the client cert into the CAS server truststore. I would recommend against that for anything other than testing. Can you confirm you actually need CAS proxying capabilities? If you don't need it, you could remove the edu.yale.its.tp.cas.client.filter.proxyCallbackUrl init param and save yourself the trouble. M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
