If you are running Firefox, there is a helpful plug-in / add-on called Live HTTP Headers which will record your HTTP traffic including headers, cookies, etc.
After installing that add-on, I would clear cookies. start capturing the HTTP traffic, and retry the whole scenario over again. Your HTTP traffic should mimic something like the following: User ==> Servlet A Request servlet User <== Servlet A Not logged in; redirect to CAS User =================> CAS Request CAS login servlet User <================= CAS Not logged in; presented with form User =================> CAS Submit login form User <================= CAS CAS sends CASTGC and redirects to servlet User ==> Servlet A Request servlet with ticket=ST... User <== Servlet A Servlet lets user in User ==> Servlet B Request servlet User <== Servlet B Not logged in; redirect to CAS User =================> CAS Request CAS login servlet User <================= CAS CAS redirects to servlet; no login form User ==> Servlet B Request servlet with ticket=ST... User <== Servlet B Servlet lets user in If this is the case, I recommend clearing out your HTTP and application logs and retrying the scenario with INFO level logging enabled in log4j.properties. You should be able to confirm when ST are granted and validated. Outside of that, I don't know what to tell you. If you insist all of those things are happening, then it seems like some configuration problem. A- On 7/16/09 8:14 AM, "Abdellatif HAROUS" <[email protected]> wrote: > when I checked in the mozilla firefox browser cookies the CASTGC is found > after authentication , with JSESSIONID > > > Date: Wed, 15 Jul 2009 15:19:18 -0500 > From: [email protected] > Subject: Re: [cas-user] entering credentials only once > To: [email protected] > > Re: [cas-user] entering credentials only once Abdellatif, > > It sounds like you have a configuration bug in that the CASTGC cookie is not > being set by your browser after authentication. Can you confirm that your > browser contains the CASTGC cookie after login? > > A- > > On 7/15/09 3:14 PM, "Abdellatif HAROUS" <[email protected] > <http://hotmail.com> > wrote: > >> hi every one.... >> >> I have managed to connect my two simple java servlets with CAS and LDAP , by >> modifying the web.xml >> >> by adding the three filters and their mappings which are >> >> * authentication filter >> * ticket validation filter >> * http servlet request wrapper filter >> >> the two servelts work with cas I get the CAS login page and login in >> successfully in my java servlets in both , now I want that >> when I enter the credentials in the first servlet no need to enter them again >> in the second servlet , just enter them once ..... >> so where should I do changes and what should I configure in order to enter my >> credentails only once and can access the other >> with out entering credentials again ..... >> >> >> best regards >> Abdellatif Harous > > > Windows Live?: Keep your life in sync. Check it out! > <http://windowslive.com/explore?ocid=TXT_TAGLM_WL_t1_allup_explore_012009> -- Andrew Feller, Business System Programmer LSU University Information Services 200 Frey Computing Services Center Baton Rouge, LA 70803 Office: 225.578.3737 Fax: 225.578.6400 -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
