You'll probably want to make sure that the receptor isn't protected by the Spring Security filters. If it is, it may trigger Spring Security before processing the PGT/PGTIOU.
Cheers, Scott On Tue, Jun 9, 2009 at 1:08 PM, deanhe01 <[email protected]> wrote: > > I am working my way through setting up my App to be a CAS proxy. Got > everything up and running and even got a PGT response back however, when > looking at the logs, I noticed the following output just before the PGT > response. This was the first time I was attempting to log on a fresh > restart of all servers involved so there were no existing CAS sessions I do > realize that it is the springsecurity framework throwing the exception, > just > wondering if anyone else ran across this, thanks. > > > [btpool0-4] DEBUG > org.springframework.security.intercept.AbstractSecurityInterceptor - Secure > object: FilterInvocation: URL: > > /secure/receptor?pgtIou=PGTIOU-1-LQy51Nmdyb7osx29Kfz2-cas&pgtId=TGT-2-wVT9ompoH5FfUNozUCTGj5YCMa4UtiKdUMCUaFPuJsdyE4cSFU-cas; > ConfigAttributes: [ROLE_IFLOWUSERS] > [btpool0-4] DEBUG > org.springframework.security.intercept.AbstractSecurityInterceptor - Secure > object: FilterInvocation: URL: > > /secure/receptor?pgtIou=PGTIOU-1-LQy51Nmdyb7osx29Kfz2-cas&pgtId=TGT-2-wVT9ompoH5FfUNozUCTGj5YCMa4UtiKdUMCUaFPuJsdyE4cSFU-cas; > ConfigAttributes: [ROLE_IFLOWUSERS] > [btpool0-4] DEBUG > org.springframework.web.context.support.XmlWebApplicationContext - > Publishing event in context > [org.springframework.web.context.support.xmlwebapplicationcont...@7616ad]: > > org.springframework.security.event.authorization.AuthenticationCredentialsNotFoundEvent[source=FilterInvocation: > URL: > > /secure/receptor?pgtIou=PGTIOU-1-LQy51Nmdyb7osx29Kfz2-cas&pgtId=TGT-2-wVT9ompoH5FfUNozUCTGj5YCMa4UtiKdUMCUaFPuJsdyE4cSFU-cas] > [btpool0-4] DEBUG > org.springframework.web.context.support.XmlWebApplicationContext - > Publishing event in context > [org.springframework.web.context.support.xmlwebapplicationcont...@7616ad]: > > org.springframework.security.event.authorization.AuthenticationCredentialsNotFoundEvent[source=FilterInvocation: > URL: > > /secure/receptor?pgtIou=PGTIOU-1-LQy51Nmdyb7osx29Kfz2-cas&pgtId=TGT-2-wVT9ompoH5FfUNozUCTGj5YCMa4UtiKdUMCUaFPuJsdyE4cSFU-cas] > [btpool0-4] DEBUG > org.springframework.security.ui.ExceptionTranslationFilter > - Authentication exception occurred; redirecting to authentication entry > point > org.springframework.security.AuthenticationCredentialsNotFoundException: An > Authentication object was not found in the SecurityContext > at > > org.springframework.security.intercept.AbstractSecurityInterceptor.credentialsNotFound(AbstractSecurityInterceptor.java:342) > at > > org.springframework.security.intercept.AbstractSecurityInterceptor.beforeInvocation(AbstractSecurityInterceptor.java:254) > at > > org.springframework.security.intercept.web.FilterSecurityInterceptor.invoke(FilterSecurityInterceptor.java:106) > at > > org.springframework.security.intercept.web.FilterSecurityInterceptor.doFilter(FilterSecurityInterceptor.java:83) > at > > org.springframework.security.util.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:390) > at > > org.springframework.security.ui.SessionFixationProtectionFilter.doFilterHttp(SessionFixationProtectionFilter.java:52) > at > > org.springframework.security.ui.SpringSecurityFilter.doFilter(SpringSecurityFilter.java:53) > at > > org.springframework.security.util.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:390) > at > > org.springframework.security.ui.ExceptionTranslationFilter.doFilterHttp(ExceptionTranslationFilter.java:101) > at > > org.springframework.security.ui.SpringSecurityFilter.doFilter(SpringSecurityFilter.java:53) > at > > org.springframework.security.util.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:390) > at > > org.springframework.security.wrapper.SecurityContextHolderAwareRequestFilter.doFilterHttp(SecurityContextHolderAwareRequestFilter.java:91) > at > > org.springframework.security.ui.SpringSecurityFilter.doFilter(SpringSecurityFilter.java:53) > at > > org.springframework.security.util.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:390) > at > > org.springframework.security.ui.AbstractProcessingFilter.doFilterHttp(AbstractProcessingFilter.java:277) > at > > org.springframework.security.ui.SpringSecurityFilter.doFilter(SpringSecurityFilter.java:53) > at > > org.springframework.security.util.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:390) > at > > org.springframework.security.ui.logout.LogoutFilter.doFilterHttp(LogoutFilter.java:89) > at > > org.springframework.security.ui.SpringSecurityFilter.doFilter(SpringSecurityFilter.java:53) > at > > org.springframework.security.util.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:390) > at > > org.springframework.security.context.HttpSessionContextIntegrationFilter.doFilterHttp(HttpSessionContextIntegrationFilter.java:235) > at > > org.springframework.security.ui.SpringSecurityFilter.doFilter(SpringSecurityFilter.java:53) > at > > org.springframework.security.util.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:390) > at > > org.springframework.security.util.FilterChainProxy.doFilter(FilterChainProxy.java:175) > at > > org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:236) > at > > org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:167) > at > > org.mortbay.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1084) > at > org.mortbay.jetty.servlet.ServletHandler.handle(ServletHandler.java:360) > at > org.mortbay.jetty.security.SecurityHandler.handle(SecurityHandler.java:216) > at > org.mortbay.jetty.servlet.SessionHandler.handle(SessionHandler.java:181) > at > org.mortbay.jetty.handler.ContextHandler.handle(ContextHandler.java:726) > at > org.mortbay.jetty.webapp.WebAppContext.handle(WebAppContext.java:405) > at > > org.mortbay.jetty.handler.ContextHandlerCollection.handle(ContextHandlerCollection.java:206) > at > > org.mortbay.jetty.handler.HandlerCollection.handle(HandlerCollection.java:114) > at > org.mortbay.jetty.handler.HandlerWrapper.handle(HandlerWrapper.java:152) > at org.mortbay.jetty.Server.handle(Server.java:324) > at > org.mortbay.jetty.HttpConnection.handleRequest(HttpConnection.java:505) > at > > org.mortbay.jetty.HttpConnection$RequestHandler.headerComplete(HttpConnection.java:829) > at org.mortbay.jetty.HttpParser.parseNext(HttpParser.java:514) > at org.mortbay.jetty.HttpParser.parseAvailable(HttpParser.java:211) > at org.mortbay.jetty.HttpConnection.handle(HttpConnection.java:380) > at > > org.mortbay.jetty.bio.SocketConnector$Connection.run(SocketConnector.java:228) > at > > org.mortbay.jetty.security.SslSocketConnector$SslConnection.run(SslSocketConnector.java:620) > at > > org.mortbay.thread.QueuedThreadPool$PoolThread.run(QueuedThreadPool.java:488) > > [btpool0-2] DEBUG > org.jasig.cas.client.validation.Cas20ServiceTicketValidator - Server > response: <cas:serviceResponse xmlns:cas='http://www.yale.edu/tp/cas'> > <cas:authenticationSuccess> > <cas:user>deanhe01</cas:user> > > > > <cas:proxyGrantingTicket>PGTIOU-1-LQy51Nmdyb7osx29Kfz2-cas</cas:proxyGrantingTicket> > > > </cas:authenticationSuccess> > </cas:serviceResponse> > > -- > View this message in context: > http://www.nabble.com/CAS-Proxy-%22Expection%22--tp23947261p23947261.html > Sent from the CAS Users mailing list archive at Nabble.com. > > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
