Hello, I don't have some debug logs. We don't use any of the scope directives. This virtual host redirect all http request to Tomcat and Liferay portal. The liferay portal is not public and so each user who access the portal has to be authenticated.
This issue does not happen immediately but after some time (1 or 2 hours). It might by a problem with the session renew ? All users works on Windows XP with IE 7. All users works with a distinct login except two users who use the same login (but each user work on a distinct client). This issue occurs during 1 day. We have a new formation session on friday and some new tests will be done that day. Is my Apache configuration good or have i to make some changes ? Best regards, Raphael ----- Message d'origine ---- De : Phil Ames <[email protected]> À : [email protected] Envoyé le : Sam 16 Janvier 2010, 3 h 20 min 44 s Objet : Re: [cas-user] mod_auth_cas and user session conflicts Hello, Do you have any debug logs from when this issue occurs? Are you using any of the scope directives? Do you have any information regarding the client configuration when this occurs (specifically, does each user represent a distinct remote node or are they shared)? Is this issue readily reproducible? Thanks, -Phil On Fri, Jan 15, 2010 at 11:13 AM, Raphael Kister <[email protected]> wrote: > Hello, > > We have install this environment : > - Apache 2.2.14 with mod_jk 1.2.28 and mod_auth_cas (1.0.9 download from SVN) > - Tomcat 6.0.20 > - CAS 3.3.5 > - Liferay 5.2.6 ee > - Oracle 10.2.0.4 > We are experiencing a problem with our install. During a formation session > with 10 users, we notice that some users have their authentication session > switch to an other user session. > Did you ever experienced that kind of situation? Do you have any lead that we > could investigate? > > I give you the mod_auth_cas configuration : > > LoadModule auth_cas_module modules/mod_auth_cas.so > LoadModule authz_user_module modules/mod_authz_user.so > <IfModule auth_cas_module> > CASVersion 2 > CASDebug On > CASValidateServer On > CASValidateDepth 9 > CASAllowWildcardCert Off > CASCertificatePath /opt/httpd/conf/ca/intranet.crt > CASLoginURL https://intranet/cas/login > CASValidateURL https://intranet/cas/serviceValidate > CASCookiePath /tmp/cas/ > CASCookieEntropy 32 > CASTimeout 7200 > CASIdleTimeout 3600 > CASCacheCleanInterval 1800 > </IfModule> > ... > <VirtualHost *:80> > ... > <Location "/"> > AuthType CAS > require valid-user > </Location> > ... > </VirtualHost> > > Thank you for your feedback. > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
