I like the Tamper Data extension because it serves the dual purpose of being a viewer and editor for headers. Useful for mangling AJAX POSTs.
John On Jul 11, 2009, at 10:09, Scott Battaglia <[email protected]> wrote: > If you're using Firefox, use one of the plugins/extensions that > monitors the HTTP request/responses. > > I think I have Live HTTP Headers installed but I am sure there are > others. > > Cheers, > Scott > > > On Sat, Jul 11, 2009 at 11:29 AM, Thierry Delaitre > <[email protected] > > wrote: > I’ve got a JSESSIONID and CASTGC cookie from CAS in the browser. > > I can see an HTTP 302 (redirect) when accessing the second server > but how can I check the cookie is sent back ? > > Thierry. > > > On 11/07/2009 16:06, "Scott Battaglia" <[email protected]> > wrote: > > Check your browser then to make sure the cookie is being sent from > the CAS server to the browser and that its being sent back on each > request. Also check its path. > > Cheers, > Scott > > > On Sat, Jul 11, 2009 at 11:05 AM, Thierry Delaitre > <[email protected] > > wrote: > The 2 apache servers have https enabled and the tomcat server also. > The authentication works with each apache server. The problem is > that I have to sign in again when switching from one to the other. > > CASLoginURL https://xxx/cas-server-webapp-3.3.3/login > CASValidateURL https://xxx/cas-server-webapp-3.3.3/serviceValidate > > Cheers, > > Thierry. > > > > > On 11/07/2009 15:56, "Scott Battaglia" <[email protected] > <http://[email protected] > > > wrote: > > The most common cause of this is that you're not running CAS over > HTTPS. If CAS is not run over HTTPS, then it will not send the SSO > session cookie to the browser. > > Cheers, > Scott > > > On Sat, Jul 11, 2009 at 10:48 AM, Thierry Delaitre > <[email protected] > <http://[email protected]> > wrote: > Hello, > > I’ve just deployed Cas 3.3.3 on a debian box. > > I’ve got 2 apache servers on 2 separate linux box using the above CA > S server. > > I can authenticate via cas on each apache server but I have to login > to each apache server. I don’t seem to be able to login once and use > any server. > > It seems I have to login again when switching to the second apache > server. Isn’t it meant to re-use the already logged in session/tick > et ? > > This is what I see in the cas log when I’m already logged in to one > of the 2 apache server and tries to use the second one: > > Can you help me ? > > Thanks > > Thierry. > > 2009-07-11 15:30:39,565 DEBUG > [org.jasig.cas.web.flow.InitialFlowSetupAction] - Action > 'InitialFlowSetupAction' beginning execution > 2009-07-11 15:30:39,566 DEBUG > [org.jasig.cas.web.flow.InitialFlowSetupAction] - Placing service in > FlowScope: https://users.ecs.westminster.ac.uk/td/ > 2009-07-11 15:30:39,566 DEBUG > [org.jasig.cas.web.flow.InitialFlowSetupAction] - Action > 'InitialFlowSetupAction' completed execution; result is 'success' > 2009-07-11 15:30:39,566 DEBUG > [org.jasig.cas.web.flow.GenerateServiceTicketAction] - Action > 'GenerateServiceTicketAction' beginning execution > 2009-07-11 15:30:39,566 DEBUG > [org.jasig.cas.web.flow.GenerateServiceTicketAction] - Action > 'GenerateServiceTicketAction' completed execution; result is 'error' > 2009-07-11 15:30:39,566 DEBUG > [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Action > 'AuthenticationViaFormAction' beginning execution > 2009-07-11 15:30:39,566 DEBUG > [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Executing > setupForm > 2009-07-11 15:30:39,566 DEBUG > [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Creating new > form object with name 'credentials' > 2009-07-11 15:30:39,566 DEBUG > [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Creating new > instance of form object class [class > org.jasig.cas.authentication.principal.UsernamePasswordCredentials] > 2009-07-11 15:30:39,566 DEBUG > [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Putting form > object of type [class > org.jasig.cas.authentication.principal.UsernamePasswordCredentials] > in scope Flow with name 'credentials' > 2009-07-11 15:30:39,566 DEBUG > [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Creating new > form errors for object with name 'credentials' > 2009-07-11 15:30:39,566 DEBUG > [org.jasig.cas.web.flow.AuthenticationViaFormAction] - No property > editor registrar set, no custom editors to register > 2009-07-11 15:30:39,567 DEBUG > [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Putting form > errors instance in scope Flash > 2009-07-11 15:30:39,567 DEBUG > [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Action > 'AuthenticationViaFormAction' completed execution; result is 'success' > 2009-07-11 15:30:39,567 DEBUG > [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Action > 'AuthenticationViaFormAction' beginning execution > 2009-07-11 15:30:39,567 DEBUG > [org.jasig.cas.web.flow.AuthenticationViaFormAction] - Action > 'AuthenticationViaFormAction' completed execution; result is 'success' > > The University of Westminster is a charity and a company limited by > guarantee. Registration number: 977818 England. Registered Office: > 309 Regent Street, London W1B 2UW. > > The University of Westminster is a charity and a company limited by > guarantee. Registration number: 977818 England. Registered Office: > 309 Regent Street, London W1B 2UW. > > The University of Westminster is a charity and a company limited by > guarantee. Registration number: 977818 England. Registered Office: > 309 Regent Street, London W1B 2UW. > > > -- > You are currently subscribed to [email protected] as: > [email protected] > > > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
