Thanks, It seems to be working fine now. I had changed the line you pointed out, I think I forgot to save the file before building, doh. (I'll blame the fact someone was looking over my shoulder).
If anyone is interested in having CAS accept Opensso tokens, I am more than happy to share the code. This development experience has been a lot of fun, thanks everyone for all the help. Regards, Bryan From: Scott Battaglia [mailto:[email protected]] Sent: Thursday, July 30, 2009 11:05 AM To: [email protected] Subject: Re: [cas-user] login-webflow.xml woes Looks like you didn't change this: <decision-state id="gatewayRequestCheck"> <if test="${externalContext.requestParameterMap['gateway'] != '' && externalContext.requestParameterMap['gateway'] != null && flowScope.service != null}" then="redirect" else="viewLoginform" /> </decision-state> When changing the web flow to point to a different authentication mechanism, the simplest rule is to change anything (within reason ;-)) that transitions to viewLoginForm to your startAuthenticate method. On Thu, Jul 30, 2009 at 1:01 PM, Bryan Wooten <[email protected]<mailto:[email protected]>> wrote: My action is not being called. I can only get it to be called if I tweak the initialFlowSetup (which is of course, unsuitable outside of testing). The scenario I have is this: 1. Login into Opensso to get their token. 2. Hit my test CASifyed app. From: Scott Battaglia [mailto:[email protected]<mailto:[email protected]>] Sent: Thursday, July 30, 2009 10:37 AM To: [email protected]<mailto:[email protected]> Subject: Re: [cas-user] login-webflow.xml woes Is your action not being called? Or is it just not doing what you expect? On Thu, Jul 30, 2009 at 12:32 PM, Bryan Wooten <[email protected]<mailto:[email protected]>> wrote: That was an attempt to force my authenticator to get called. That was when I realized I really needed help... :) I'll put that back the way it was originally. From: Scott Battaglia [mailto:[email protected]<mailto:[email protected]>] Sent: Thursday, July 30, 2009 10:30 AM To: [email protected]<mailto:[email protected]> Subject: Re: [cas-user] login-webflow.xml woes I'm not sure why you did this: <!--ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿ <if test="${flowScope.service != null}" then="renewRequestCheck" else="viewGenericLoginSuccess" /> --> You essentially said if there is no service then start authenticating, otherwise if there is a service do a renewRequestCheck On Thu, Jul 30, 2009 at 12:24 PM, Bryan Wooten <[email protected]<mailto:[email protected]>> wrote: I have finished developing my Opensso authentication handler (modeled after the X509 handler) using the overlay build method. <ÿÿ So far everything is working great, I just can't get the web flow to work as described here: <pÿ http://www.ja-sig.org/wiki/display/CASUM/X.509+Certificates <ÿÿ I am including my web flow xml. Could someone take a look at it and tell what I have done wrongÿ I will be eternally grateful. <pÿ Thanks, <pÿ Bryan <ÿÿ <ÿÿ <ÿÿ <?xml version="1.0" encoding="UTF-8"?> ÿÿ <flow xmlns="http://www.springframework.org/schema/webflow"; http://www.w3.org/2001/XMLSchema-instance"; ÿÿ ÿÿ ÿÿ xsi:schemaLocation=" http://www.springframework.org/schema/webflow http://www.springframework.org/schema/webflow/spring-webflow-1.0.xsd";> <pÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ <action-state id="initialFlowSetup"> ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ <transition on="success" to="ticketGrantingTicketExistsCheck" /> <ÿÿ-If I do this I am able to prove my authenticator works, but this can't be a production solution -->ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ <decision-state id="gatewayRequestCheck"> ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ </decision-state> <!--ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿ <if test="${flowScope.service != null}" then="renewRequestCheck" else="viewGenericLoginSuccess" /> --> ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ <decision-state id="renewRequestCheck"> ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ <!-- ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ The "warn" action makes the determination of whether to redirect directly to the requested ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ --> ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ <decision-state id="warn"> ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ <!-- ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ <action-state id="startAuthenticate"> ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ <action bean="x509Check" /> ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ <transition on="success" to="sendTicketGrantingTicket" /> <pÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ --> ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ <action-state id="startAuthenticate"> ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ <action bean="accessManagerCheck" /> ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ <transition on="success" to="sendTicketGrantingTicket" /> ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿ <action bean="authenticationViaFormAction" method="referenceData"/> ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ <action bean="authenticationViaFormAction" /> ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ <transition on="success" to="submit" /> ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ <transition on="success" to="sendTicketGrantingTicket" /> ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ </action-state> ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ <decision-state id="serviceCheck"> ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ <if test="${flowScope.service != null}" then="generateServiceTicket" else="viewGenericLoginSuccess" /> ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ <action-state id="generateServiceTicket"> <pÿ <pÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ --> ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ <end-state id="showWarningView" view="casLoginConfirmView" /> <pÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ the user back to the service required. ÿÿ ÿÿ <end-state id="viewServiceSsoErrorView" view="viewServiceSsoErrorView" /> <ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ ÿÿ <transition to="viewServiceErrorView" on-exception="org.jasig.cas.services.UnauthorizedServiceException" /> </flow> -- You are currently subscribed to [email protected]<mailto:[email protected]> as: [email protected]<mailto:[email protected]> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected]<mailto:[email protected]> as: [email protected]<mailto:[email protected]> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected]<mailto:[email protected]> as: [email protected]<mailto:[email protected]> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected]<mailto:[email protected]> as: [email protected]<mailto:[email protected]> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected]<mailto:[email protected]> as: [email protected]<mailto:[email protected]> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
