Hi, Debug logs when this issue occurs would be quite helpful in understanding what is going on here. Can you correlate the issue occurrence with your CASIdleTimeout or CASTimeout settings?
The configuration you provided does not contain anything I would expect to cause this issue. What are the file system permissions of the /tmp/cas/ directory? Do you suspect that any of the cookie files have been tampered with on the local disk? Thanks, -Phil On Mon, Jan 18, 2010 at 5:55 AM, KISTER RAPHAEL <[email protected]> wrote: > Hello, > I don't have some debug logs. We don't use any of the scope directives. This > virtual host redirect all http request to Tomcat and Liferay portal. The > liferay portal is not public and so each user who access the portal has to be > authenticated. > > This issue does not happen immediately but after some time (1 or 2 hours). It > might by a problem with the session renew ? > All users works on Windows XP with IE 7. All users works with a distinct > login except two users who use the same login (but each user work on a > distinct client). > This issue occurs during 1 day. We have a new formation session on friday and > some new tests will be done that day. > > Is my Apache configuration good or have i to make some changes ? > > Best regards, > > Raphael > > > > ----- Message d'origine ---- > De : Phil Ames <[email protected]> > À : [email protected] > Envoyé le : Sam 16 Janvier 2010, 3 h 20 min 44 s > Objet : Re: [cas-user] mod_auth_cas and user session conflicts > > Hello, > Do you have any debug logs from when this issue occurs? Are you using > any of the scope directives? Do you have any information regarding > the client configuration when this occurs (specifically, does each > user represent a distinct remote node or are they shared)? Is this > issue readily reproducible? > > Thanks, > -Phil > > On Fri, Jan 15, 2010 at 11:13 AM, Raphael Kister <[email protected]> wrote: >> Hello, >> >> We have install this environment : >> - Apache 2.2.14 with mod_jk 1.2.28 and mod_auth_cas (1.0.9 download from >> SVN) >> - Tomcat 6.0.20 >> - CAS 3.3.5 >> - Liferay 5.2.6 ee >> - Oracle 10.2.0.4 >> We are experiencing a problem with our install. During a formation session >> with 10 users, we notice that some users have their authentication session >> switch to an other user session. >> Did you ever experienced that kind of situation? Do you have any lead that >> we could investigate? >> >> I give you the mod_auth_cas configuration : >> >> LoadModule auth_cas_module modules/mod_auth_cas.so >> LoadModule authz_user_module modules/mod_authz_user.so >> <IfModule auth_cas_module> >> CASVersion 2 >> CASDebug On >> CASValidateServer On >> CASValidateDepth 9 >> CASAllowWildcardCert Off >> CASCertificatePath /opt/httpd/conf/ca/intranet.crt >> CASLoginURL https://intranet/cas/login >> CASValidateURL https://intranet/cas/serviceValidate >> CASCookiePath /tmp/cas/ >> CASCookieEntropy 32 >> CASTimeout 7200 >> CASIdleTimeout 3600 >> CASCacheCleanInterval 1800 >> </IfModule> >> ... >> <VirtualHost *:80> >> ... >> <Location "/"> >> AuthType CAS >> require valid-user >> </Location> >> ... >> </VirtualHost> >> >> Thank you for your feedback. >> >> -- >> You are currently subscribed to [email protected] as: >> [email protected] >> To unsubscribe, change settings or access archives, see >> http://www.ja-sig.org/wiki/display/JSG/cas-user >> > > -- > You are currently subscribed to [email protected] as: [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > > > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
