Hi Phil, Sorry I send the mail before finishing it. I'm using a self signed certificate but it is the same from tomcat and tomcat it's working
I send you the same wget result using tomcat wget " https://djboss4201.cyii.corp:8443/cas/serviceValidate?service=http://dalfresco01.cyii.corp/alfresco&ticket=ST-10-r9t6yxqsbbkob77jsnB1-cas " --2010-02-15 19:03:58-- https://djboss4201.cyii.corp:8443/cas/serviceValidate?service=http://dalfresco01.cyii.corp/alfresco&ticket=ST-10-r9t6yxqsbbkob77jsnB1-cas Resolving djboss4201.cyii.corp... 172.23.102.5 Connecting to djboss4201.cyii.corp|172.23.102.5|:8443... connected. ERROR: cannot verify djboss4201.cyii.corp's certificate, issued by `/C=ES/ST=Madrid/L=Madrid/O=CYII/OU=Div. Integracion de sistemas/CN=djboss4201.cyii.corp': Self-signed certificate encountered. To connect to djboss4201.cyii.corp insecurely, use `--no-check-certificate'. Unable to establish SSL connection. Anyway if I use wget with Apache and option --no-check-certificate the response using apache is correct. wget --no-check-certificate " https://djboss4201.cyii.corp/cas/serviceValidate?service=http://dalfresco01.cyii.corp/alfresco&ticket=ST-9-p4sfceld9FAgjDSzhfTe-cas " --2010-02-15 18:50:41-- https://djboss4201.cyii.corp/cas/serviceValidate?service=http://dalfresco01.cyii.corp/alfresco&ticket=ST-9-p4sfceld9FAgjDSzhfTe-cas Resolving djboss4201.cyii.corp... 172.23.102.5 Connecting to djboss4201.cyii.corp|172.23.102.5|:443... connected. WARNING: cannot verify djboss4201.cyii.corp's certificate, issued by `/C=ES/ST=Some-State/O=Canal de Isabell II/CN=djboss4201.cyii.corp': Self-signed certificate encountered. HTTP request sent, awaiting response... 200 OK Length: 174 [text/html] Saving to: `serviceValidate?service=http:%2F%2Fdalfresco01.cyii.corp%2Falfresco&ticket=ST-9-p4sfceld9FAgjDSzhfTe-cas' 100%[======================================>] 174 --.-K/s in 0s 2010-02-15 18:50:41 (3.24 MB/s) - `serviceValidate?service=http:%2F%2Fdalfresco01.cyii.corp%2Falfresco&ticket=ST-9-p4sfceld9FAgjDSzhfTe-cas' saved [174/174] more serviceValidate\?service\=http\:%2F%2Fdalfresco01.cyii.corp%2Falfresco\&ticket\=ST-9-p4sfceld9FAgjDSzhfTe-cas <cas:serviceResponse xmlns:cas='http://www.yale.edu/tp/cas'> <cas:authenticationSuccess> <cas:user>C26329</cas:user> </cas:authenticationSuccess> </cas:serviceResponse> Thanks in advance. Regards On Thu, Feb 11, 2010 at 8:59 PM, Phil Ames <[email protected]> wrote: > Hi, > The error message you are receiving basically indicates that more than > 4096(CAS_MAX_RESPONSE_SIZE) bytes of response data are returned when > mod_auth_cas hits the service validate URL. Can you manually create a > ticket and hit that URL using something like curl or wget to see how > much data comes back and what it is actually in it? > > You should be able to accomplish this by intercepting the redirect > from the CAS server to the mod_auth_cas host and ignoring it, then > manually access the > > http://cas.example.com/cas/serviceValidate?service=[service]&ticket=[ticket] > > Thanks, > -Phil > > On Thu, Feb 11, 2010 at 11:14 AM, Lopetegui <[email protected]> wrote: > > Hi, > > > > I have a working CAS server that is accesible via HTTPS > (443) with Apache (2.2.9-10+lenny) + mod-jk (1.2.18-3etch2)+ Jboss 4.2.3 > and via HTTPS to the same Jboss in a Debian etch box. > > > > I have compiled and configured mod_auth_cas in a diferrent machine, > RHEL. My mod_auth_cas configuration is > > > > /etc/httpd/conf.d/mod_auth_cas.conf > > > > LoadModule auth_cas_module modules/mod_auth_cas.so > > CASCookiePath /tmp/cas/ > > > > # CAS Apache > > #CASLoginURL https://djboss4201.cyii.corp/cas/login > > #CASValidateURL https://djboss4201.cyii.corp/cas/serviceValidate > > # CAS Jboss > > CASLoginURL https://djboss4201.cyii.corp:8443/cas/login > > CASValidateURL https://djboss4201.cyii.corp:8443/cas/serviceValidate > > > > CASCertificatePath /etc/httpd/cas.pem > > CASValidateServer Off > > CASDebug On > > <Location /alfresco> > > AuthType CAS > > AuthName "CAS" > > require valid-user > > CASScope /alfresco > > </Location> > > > > > > My problem is when the mod_auth_cas configuration points to HTTPS > 443 Apache does not work but it works if I use Jboss. I paste the Apache > error log with the error: > > > > > > [Thu Feb 11 17:04:29 2010] [debug] src/mod_auth_cas.c(1805): [client > 172.23.20.38] Entering cas_authenticate() > > [Thu Feb 11 17:04:29 2010] [debug] src/mod_auth_cas.c(511): [client > 172.23.20.38] entering getCASService() > > [Thu Feb 11 17:04:29 2010] [debug] src/mod_auth_cas.c(540): [client > 172.23.20.38] CAS Service 'http%3a%2f%2fdalfresco01.cyii.corp%2falfresco' > > [Thu Feb 11 17:04:29 2010] [debug] src/mod_auth_cas.c(485): [client > 172.23.20.38] entering getCASLoginURL() > > [Thu Feb 11 17:04:29 2010] [debug] src/mod_auth_cas.c(445): [client > 172.23.20.38] entering getCASGateway() > > [Thu Feb 11 17:04:29 2010] [debug] src/mod_auth_cas.c(556): [client > 172.23.20.38] entering redirectRequest() > > [Thu Feb 11 17:04:29 2010] [debug] src/mod_auth_cas.c(568): [client > 172.23.20.38] Adding outgoing header: Location: https://djboss4201.cyii.corp > /cas/login?service=http%3a%2f%2fdalfresco01.cyii.corp%2falfresco > > [Thu Feb 11 17:04:31 2010] [debug] src/mod_auth_cas.c(1805): [client > 172.23.20.38] Entering cas_authenticate() > > [Thu Feb 11 17:04:31 2010] [debug] src/mod_auth_cas.c(608): [client > 172.23.20.38] Modified r->args (old 'ticket=ST-2-CeV6ZB5jXzeq2ljoy4ow-cas', > new '') > > [Thu Feb 11 17:04:31 2010] [debug] src/mod_auth_cas.c(1626): [client > 172.23.20.38] entering getResponseFromServer() > > [Thu Feb 11 17:04:32 2010] [debug] src/mod_auth_cas.c(511): [client > 172.23.20.38] entering getCASService() > > [Thu Feb 11 17:04:32 2010] [debug] src/mod_auth_cas.c(540): [client > 172.23.20..38] CAS Service 'http%3a%2f%2fdalfresco01.cyii.corp%2falfresco' > > [Thu Feb 11 17:04:32 2010] [debug] src/mod_auth_cas.c(468): [client > 172.23.20.38] entering getCASValidateURL() > > [Thu Feb 11 17:04:32 2010] [debug] src/mod_auth_cas.c(1741): [client > 172.23.20.38] Validation request: GET > /cas/serviceValidate?service=http%3a%2f%2fdalfresco01.cyii.corp%2falfresco&ticket=ST-2-CeV6ZB5jXzeq2ljoy4ow-cas > HTTP/1.0\nHost: djboss4201.cyii.corp\n\n > > [Thu Feb 11 17:04:32 2010] [debug] src/mod_auth_cas.c(1749): [client > 172.23.20.38] Request successfully transmitted > > [Thu Feb 11 17:04:32 2010] [debug] src/mod_auth_cas.c(1757): [client > 172.23.20.38] Received -1 bytes of response > > [Thu Feb 11 17:04:32 2010] [debug] src/mod_auth_cas.c(1763): [client > 172.23.20.38] Validation response: \x9d\x15 > > [Thu Feb 11 17:04:32 2010] [debug] src/mod_auth_cas.c(468): [client > 172.23.20.38] entering getCASValidateURL() > > [Thu Feb 11 17:04:32 2010] [error] [client 172.23.20.38] MOD_AUTH_CAS: > oversized response received from djboss4201.cyii.corp/cas/serviceValidate > > [Thu Feb 11 17:04:32 2010] [debug] src/mod_auth_cas.c(1281): [client > 172.23.20.38] entering isValidCASTicket() > > > > I do not know much about the SSL handshake but it seems that can not read > the response. > > Besides the CAS ticket checking is being performed properly. I paste > cas.log with the full autentication, service ticket grant and consumption > > > > 2010-02-11 17:08:19,637 DEBUG > [org.jasig.cas.web.support.CasArgumentExtractor] - Extractor generated > service for: http://dalfresco01.cyii.corp/alfresco > > 2010-02-11 17:08:19,638 DEBUG > [org.jasig.cas.support.spnego.web.flow.SpnegoNegociateCredentialsAction] - > Action 'SpnegoNegociateCredentialsAction' beginning execution > > 2010-02-11 17:08:19,638 DEBUG > [org.jasig.cas.support.spnego.web.flow..SpnegoNegociateCredentialsAction] - > Authorization header not found. Sending WWW-Authenticate header > > 2010-02-11 17:08:19,638 DEBUG > [org.jasig.cas..support.spnego.web.flow.SpnegoNegociateCredentialsAction] - > Action 'SpnegoNegociateCredentialsAction' completed execution; result is > 'success' > > 2010-02-11 17:08:19,638 DEBUG > [org.jasig.cas.support.spnego.web.flow.SpnegoCredentialsAction] - Action > 'SpnegoCredentialsAction' beginning execution > > 2010-02-11 17:08:19,638 DEBUG > [org.jasig.cas.support.spnego.web.flow.SpnegoCredentialsAction] - Action > 'SpnegoCredentialsAction' completed execution; result is 'error' > > 2010-02-11 17:08:19,638 DEBUG > [org.jasig.cas.adaptors.x509..web.flow.X509CertificateCredentialsNonInteractiveAction] > - Action 'X509CertificateCredentialsNonInteractiveAction' beginning > execution > > 2010-02-11 17:08:19,638 DEBUG > [org.jasig.cas.adaptors.x509.web.flow.X509CertificateCredentialsNonInteractiveAction] > - Certificates not found in request. > > 2010-02-11 17:08:19,638 DEBUG > [org.jasig.cas.adaptors.x509.web.flow.X509CertificateCredentialsNonInteractiveAction] > - Action 'X509CertificateCredentialsNonInteractiveAction' completed > execution; result is 'error' > > 2010-02-11 17:08:19,649 DEBUG > [org.jasig.cas.web.support.CasArgumentExtractor] - Extractor generated > service for: http://dalfresco01.cyii.corp/alfresco > > 2010-02-11 17:08:19,651 DEBUG > [org.jasig.cas.support.spnego.web.flow.SpnegoNegociateCredentialsAction] - > Action 'SpnegoNegociateCredentialsAction' beginning execution > > 2010-02-11 17:08:19,651 DEBUG > [org.jasig.cas.support.spnego.web.flow.SpnegoNegociateCredentialsAction] - > Action 'SpnegoNegociateCredentialsAction' completed execution; result is > 'success' > > 2010-02-11 17:08:19,651 DEBUG > [org.jasig.cas.support.spnego.web.flow.SpnegoCredentialsAction] - Action > 'SpnegoCredentialsAction' beginning execution > > 2010-02-11 17:08:19,651 DEBUG > [org.jasig.cas.support.spnego.web.flow.SpnegoCredentialsAction] - SPNEGO > Authorization header found with 2004 bytes > > 2010-02-11 17:08:19,652 DEBUG > [org.jasig.cas.support.spnego.web.flow.SpnegoCredentialsAction] - Obtained > token: `Ù+ Í0É $0" *H÷ *H÷ > > +7 > > ¢ *H÷n0 ¡¢ £°a¬0¨ ¡ > > > YII.CORP¢'0% ¡0TTPjboss4201.cyii..corp£i0e > ¢\XdªTt^dZ|Jñ¢mÇÿ*\<:o6·l1ð½o:QÅÉÎãð+þÐ > ;g§v3ï¨ñNHu Rl.æÉ > fô2öâèQï¯3sRÓÑzÔØ7.Ö»P^&C¾çH¾ãRq8ä:IP^n±sWCþº5of:¦þâc>Ðüåç[ÚsÕ_½E > oæ'Ì;öNkjZÃÑúýà]ÚÜ<9H?,©ýtÈáPûGÉu > > p...@úßÓó¹ôs1ǧ2üoh6 Àñµ±J,;<üQ > > 5Í609FÂêâA7i > > »...@ì´ÓУzÝùø \ë]#"Æ > > ÏÀêÍÒýý¼¾ãÇW%\t«%M_òþIXI ÓÝCÐ*5,ìh > > *çHP½ù¤4 ðá1:ÏS%MrþÀVõ¨ÜÒPÜAå©A¤}1¿<J°d4|ö/°>кs;bvÃ97òú©ô_CÎ > > Ò > > > O_ÂEDb!ùf;mj£Èg8æØ�...@s > > ¸ä¨NÆÇä > > õùq½ > > 2F"p¬...@ȱÁ¹rõ¡ï5||¡µÀ*0«w®rKEù¿)`½ºCÜ-YôG¯ > > > `2»S.¨ÄµWïY^á!&å¿õ¨Um_:L8½°c¡ > ÕTH?ìëH`o°R×Öñ¢ç*áÎeöPKîæÜfü!pdHgìÍU¾ÎZ¬#Çl÷TPÝà±CÿùG*Êù½wKJÝü¢ > éO!Èõ`ãñ2^ @Sfcƨ& > > ©w(p_ÏÃÇ)Ük�...@ýª|Ï}Ùkã®ËK>d®ÔåmïÖø fëL|ÙÓ^˳ù¸jS'u¤¸0µ ¢ª > > è9/^Q'dÉT=ÌA"x > > 8ÕåßÒ1ü÷|òX3ü½² > > jOÓ7ø¦ýØâùÃ¥â¤à ¿¢4ªâ#S§?2dÍÇ~ÈÅ°ú[ñCø[êÕÍ4WåÀ($º&>ΰï°Õ½sêͺ_!IWa÷¸»Õ_ > > JuIAèo > > 2010-02-11 17:08:19,652 DEBUG > [org.jasig.cas.CentralAuthenticationServiceImpl] - Attempting to create > TicketGrantingTicket for Principal is null > > 2010-02-11 17:08:19,722 DEBUG > [org.jasig..cas.support.spnego.authentication.handler.support.JCIFSSpnegoAuthenticationHandler] > - Setting nextToken in credentials > > 2010-02-11 17:08:19,722 DEBUG > [org.jasig.cas.support.spnego.authentication.handler.support.JCIFSSpnegoAuthenticationHandler] > - Kerberos Credentials is valid for user [[email protected]] > > 2010-02-11 17:08:19,722 INFO > [org.jasig.cas.authentication.AuthenticationManagerImpl] - > AuthenticationHandler: > org.jasig.cas.support.spnego.authentication.handler.support.JCIFSSpnegoAuthenticationHandler > successfully authenticated the user which provided the following > credentials: C26329 > > 2010-02-11 17:08:19,722 DEBUG > [org.jasig.cas.support.spnego.authentication.principal.SpnegoCredentialsToPrincipalResolver] > - Attempting to resolve a principal... > > 2010-02-11 17:08:19,722 DEBUG > [org.jasig.cas.support.spnego.authentication.principal.SpnegoCredentialsToPrincipalResolver] > - Creating SimplePrincipal for [C26329] > > 2010-02-11 17:08:19,722 DEBUG > [org.jasig.cas.ticket.registry.DefaultTicketRegistry] - Added ticket > [TGT-3-YcXmQpTn4Q0sYMQmkIqPtaC1CmVcaDWv5ohy5fWbfBY7wIc9QW-cas] to registry. > > 2010-02-11 17:08:19,722 DEBUG > [org.jasig.cas.support.spnego.web.flow.SpnegoCredentialsAction] - Obtained > output token: 0} > > ¡ > > *H÷¢ig`e *H÷oV0T ¡¢H0F ¢?=µD+«þ/4mR!tÜø > > Ô¶æ > > 2010-02-11 17:08:19,723 > DEBUG [org.jasig.cas.support.spnego.web.flow.SpnegoCredentialsAction] - > Action 'SpnegoCredentialsAction' completed execution; result is 'success' > > 2010-02-11 17:08:19,723 DEBUG > [org.jasig.cas.web.support.CookieRetrievingCookieGenerator] - Added cookie > with name [CASTGC] and value > [TGT-3-YcXmQpTn4Q0sYMQmkIqPtaC1CmVcaDWv5ohy5fWbfBY7wIc9QW-cas] > > 2010-02-11 17:08:19,723 DEBUG > [org.jasig.cas.ticket.registry.DefaultTicketRegistry] - Attempting to > retrieve ticket > [TGT-3-YcXmQpTn4Q0sYMQmkIqPtaC1CmVcaDWv5ohy5fWbfBY7wIc9QW-cas] > > 2010-02-11 17:08:19,723 DEBUG > [org.jasig.cas.ticket.registry.DefaultTicketRegistry] - Ticket > [TGT-3-YcXmQpTn4Q0sYMQmkIqPtaC1CmVcaDWv5ohy5fWbfBY7wIc9QW-cas] found in > registry. > > 2010-02-11 17:08:19,723 DEBUG > [org.jasig.cas..ticket.registry.DefaultTicketRegistry] - Added ticket > [ST-3-cjlRiOfRb4bz6cf2MPfC-cas] to registry. > > 2010-02-11 17:08:19,723 INFO > [org.jasig.cas.CentralAuthenticationServiceImpl] - Granted service ticket > [ST-3-cjlRiOfRb4bz6cf2MPfC-cas] for service > [http://dalfresco01.cyii.corp/alfresco] > for user [C26329] > > > PuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTY2010-02-11 > 17:08:19,946 DEBUG [org.jasig.cas.web.support.CasArgumentExtractor] - > Extractor generated service for: http://dalfresco01.cyii.corp/alfresco > > 2010-02-11 17:08:19,948 DEBUG > [org.jasig.cas.ticket.registry.DefaultTicketRegistry] - Attempting to > retrieve ticket [ST-3-cjlRiOfRb4bz6cf2MPfC-cas] > > 2010-02-11 17:08:19,948 DEBUG > [org.jasig.cas.ticket.registry.DefaultTicketRegistry] - Ticket > [ST-3-cjlRiOfRb4bz6cf2MPfC-cas] found in registry. > > 2010-02-11 17:08:19,948 DEBUG > [org.jasig.cas.ticket.registry.DefaultTicketRegistry] - Removing ticket > [ST-3-cjlRiOfRb4bz6cf2MPfC-cas] from registry > > > > > > > > > > > > > > > > When the mod_auth_cas configuration points to HTTPS 8443 (Jboss) it > works. I paste the Apache error log file showing it is working. > > > > [Thu Feb 11 17:01:29 2010] [debug] src/mod_auth_cas.c(1805): [client > 172.23.20.38] Entering cas_authenticate() > > [Thu Feb 11 17:01:29 2010] [debug] src/mod_auth_cas.c(511): [client > 172.23.20.38] entering getCASService() > > [Thu Feb 11 17:01:29 2010] [debug] src/mod_auth_cas.c(540): [client > 172.23.20.38] CAS Service 'http%3a%2f%2fdalfresco01.cyii.corp%2falfresco%2f' > > [Thu Feb 11 17:01:29 2010] [debug] src/mod_auth_cas.c(485): [client > 172.23.20.38] entering getCASLoginURL() > > [Thu Feb 11 17:01:29 2010] [debug] src/mod_auth_cas.c(445): [client > 172.23.20..38] entering getCASGateway() > > [Thu Feb 11 17:01:29 2010] [debug] src/mod_auth_cas.c(556): [client > 172.23.20.38] entering redirectRequest() > > [Thu Feb 11 17:01:29 2010] [debug] src/mod_auth_cas.c(568): [client > 172.23.20.38] Adding outgoing header: Location: > https://djboss4201.cyii.corp:8443 > /cas/login?service=http%3a%2f%2fdalfresco01.cyii.corp%2falfresco%2f > > [Thu Feb 11 17:01:31 2010] [debug] src/mod_auth_cas.c(1805): [client > 172.23.20.38] Entering cas_authenticate() > > [Thu Feb 11 17:01:31 2010] [debug] src/mod_auth_cas.c(511): [client > 172.23.20.38] entering getCASService() > > [Thu Feb 11 17:01:31 2010] [debug] src/mod_auth_cas.c(540): [client > 172.23.20.38] CAS Service 'http%3a%2f%2fdalfresco01.cyii.corp%2falfresco%2f' > > [Thu Feb 11 17:01:31 2010] [debug] src/mod_auth_cas.c(485): [client > 172.23.20.38] entering getCASLoginURL() > > [Thu Feb 11 17:01:31 2010] [debug] src/mod_auth_cas.c(445): [client > 172.23.20.38] entering getCASGateway() > > [Thu Feb 11 17:01:31 2010] [debug] src/mod_auth_cas.c(556): [client > 172.23.20.38] entering redirectRequest() > > [Thu Feb 11 17:01:31 2010] [debug] src/mod_auth_cas.c(568): [client > 172.23.20.38] Adding outgoing header: Location: > https://djboss4201.cyii.corp:8443 > /cas/login?service=http%3a%2f%2fdalfresco01.cyii.corp%2falfresco%2f > > [Thu Feb 11 17:01:39 2010] [debug] src/mod_auth_cas.c(1805): [client > 172.23.20.38] Entering cas_authenticate() > > [Thu Feb 11 17:01:39 2010] [debug] src/mod_auth_cas.c(608): [client > 172.23.20.38] Modified r->args (old 'ticket=ST-1-Ay2SQZkNjiT1VPoGzpRs-cas', > new '') > > [Thu Feb 11 17:01:39 2010] [debug] src/mod_auth_cas.c(1626): [client > 172.23.20.38] entering getResponseFromServer() > > [Thu Feb 11 17:01:39 2010] [debug] src/mod_auth_cas.c(511): [client > 172.23.20.38] entering getCASService() > > [Thu Feb 11 17:01:39 2010] [debug] src/mod_auth_cas.c(540): [client > 172.23.20.38] CAS Service 'http%3a%2f%2fdalfresco01.cyii.corp%2falfresco%2f' > > [Thu Feb 11 17:01:39 2010] [debug] src/mod_auth_cas.c(468): [client > 172.23.20.38] entering getCASValidateURL() > > [Thu Feb 11 17:01:39 2010] [debug] src/mod_auth_cas.c(1741): [client > 172.23.20.38] Validation request: GET > /cas/serviceValidate?service=http%3a%2f%2fdalfresco01.cyii.corp%2falfresco%2f&ticket=ST-1-Ay2SQZkNjiT1VPoGzpRs-cas > HTTP/1.0\nHost: djboss4201.cyii.corp\n\n > > [Thu Feb 11 17:01:39 2010] [debug] src/mod_auth_cas.c(1749): [client > 172.23.20.38] Request successfully transmitted > > [Thu Feb 11 17:01:40 2010] [debug] src/mod_auth_cas.c(1757): [client > 172.23.20.38] Received 471 bytes of response > > [Thu Feb 11 17:01:40 2010] [debug] src/mod_auth_cas.c(1757): [client > 172.23.20.38] Received 0 bytes of response > > [Thu Feb 11 17:01:40 2010] [debug] src/mod_auth_cas.c(1763): [client > 172.23.20.38] Validation response: HTTP/1.1 200 OK\r\nServer: > Apache-Coyote/1.1\r\nX-Powered-By: Servlet 2.4; > JBoss-4.2.3.GA<http://jboss-4.2.3.ga/>(build: SVNTag=JBoss_4_2_3_GA > date=200807181417)/JBossWeb-2.0\r\nContent-Type: > text/html;charset=ISO-8859-1\r\nContent-Language: es-ES\r\nContent-Length: > 174\r\nDate: Thu, 11 Feb 2010 16:01:36 GMT\r\nConnection: > close\r\n\r\n<cas:serviceResponse xmlns:cas='http://www.yale.edu/tp/cas > '>\n\t<cas:authenticationSuccess>\n\t\t<cas:user>C26329</cas:user>\n\n\n\t</cas:authenticationSuccess>\n</cas:serviceResponse> > > [Thu Feb 11 17:01:40 2010] [debug] src/mod_auth_cas.c(1281): [client > 172.23.20.38] entering isValidCASTicket() > > [Thu Feb 11 17:01:40 2010] [debug] src/mod_auth_cas.c(1295): [client > 172.23.20.38] MOD_AUTH_CAS: response = <cas:serviceResponse xmlns:cas=' > http://www.yale.edu/tp/cas > '>\n\t<cas:authenticationSuccess>\n\t\t<cas:user>C26329</cas:user>\n\n\n\t</cas:authenticationSuccess>\n</cas:serviceResponse> > > [Thu Feb 11 17:01:40 2010] [debug] src/mod_auth_cas.c(1112): [client > 172.23.20.38] entering createCASCookie() > > [Thu Feb 11 17:01:40 2010] [debug] src/mod_auth_cas.c(935): [client > 172.23.20.38] entering CASCleanCache() > > [Thu Feb 11 17:01:40 2010] [debug] src/mod_auth_cas.c(977): [client > 172.23.20.38] Beginning cache clean > > [Thu Feb 11 17:01:40 2010] [debug] src/mod_auth_cas.c(995): [client > 172.23.20.38] Processing cache file '5f78ccce60890ff3ef1ea0f769695b86' > > [Thu Feb 11 17:01:40 2010] [debug] src/mod_auth_cas.c(780): [client > 172.23.20.38] entering readCASCacheFile() > > [Thu Feb 11 17:01:40 2010] [debug] src/mod_auth_cas.c(1252): [client > 172.23.20.38] entering deleteCASCacheFile() > > [Thu Feb 11 17:01:40 2010] [debug] src/mod_auth_cas.c(780): [client > 172.23.20.38] entering readCASCacheFile() > > [Thu Feb 11 17:01:40 2010] [debug] src/mod_auth_cas.c(1007): [client > 172.23.20.38] Removing expired cache entry > '5f78ccce60890ff3ef1ea0f769695b86' > > [Thu Feb 11 17:01:40 2010] [debug] src/mod_auth_cas.c(1032): [client > 172.23.20.38] entering writeCASCacheEntry() > > [Thu Feb 11 17:01:40 2010] [debug] src/mod_auth_cas.c(1138): [client > 172.23.20.38] Cookie '677c1fa457301c54ebe0247fd0aa5bb0' created for user > 'C26329' > > [Thu Feb 11 17:01:40 2010] [debug] src/mod_auth_cas.c(684): [client > 172.23.20.38] entering setCASCookie() > > [Thu Feb 11 17:01:40 2010] [debug] src/mod_auth_cas.c(396): [client > 172.23.20.38] Determining CAS scope (path: /alfresco/, CASScope: /alfresco, > CASRenew: (null), CASGateway: (null)) > > [Thu Feb 11 17:01:40 2010] [debug] src/mod_auth_cas.c(707): [client > 172.23.20.38] Adding outgoing header: Set-Cookie: > MOD_AUTH_CAS=677c1fa457301c54ebe0247fd0aa5bb0;Path=/alfresco > > [Thu Feb 11 17:01:40 2010] [debug] src/mod_auth_cas.c(1805): [client > 172.23.20.38] Entering cas_authenticate() > > [Thu Feb 11 17:01:40 2010] [debug] src/mod_auth_cas.c(1469): [client > 172.23.20.38] entering isValidCASCookie() > > [Thu Feb 11 17:01:40 2010] [debug] src/mod_auth_cas.c(780): [client > 172.23.20.38] entering readCASCacheFile() > > [Thu Feb 11 17:01:40 2010] [debug] src/mod_auth_cas.c(1032): [client > 172.23.20.38] entering writeCASCacheEntry() > > [Thu Feb 11 17:01:40 2010] [debug] src/mod_auth_cas.c(1805): [client > 172.23.20.38] Entering cas_authenticate() > > [Thu Feb 11 17:01:40 2010] [debug] src/mod_auth_cas.c(1469): [client > 172.23.20.38] entering isValidCASCookie() > > [Thu Feb 11 17:01:40 2010] [debug] src/mod_auth_cas.c(780): [client > 172.23.20.38] entering readCASCacheFile() > > [Thu Feb 11 17:01:40 2010] [debug] src/mod_auth_cas.c(1032): [client > 172.23.20.38] entering writeCASCacheEntry() > > [Thu Feb 11 17:01:41 2010] [debug] src/mod_auth_cas.c(1805): [client > 172.23.20.38] Entering cas_authenticate() > > [Thu Feb 11 17:01:41 2010] [debug] src/mod_auth_cas.c(1469): [client > 172.23.20.38] entering isValidCASCookie() > > [Thu Feb 11 17:01:41 2010] [debug] src/mod_auth_cas.c(780): [client > 172.23.20.38] entering readCASCacheFile() > > [Thu Feb 11 17:01:41 2010] [debug] src/mod_auth_cas.c(1032): [client > 172.23.20.38] entering writeCASCacheEntry() > > [Thu Feb 11 17:01:41 2010] [debug] src/mod_auth_cas.c(1805): [client > 172.23.20.38] Entering cas_authenticate() > > [Thu Feb 11 17:01:41 2010] [debug] src/mod_auth_cas.c(1469): [client > 172.23.20.38] entering isValidCASCookie() > > [Thu Feb 11 17:01:41 2010] [debug] src/mod_auth_cas.c(780): [client > 172.23.20.38] entering readCASCacheFile() > > [Thu Feb 11 17:01:41 2010] [debug] src/mod_auth_cas.c(1032): [client > 172.23.20.38] entering writeCASCacheEntry() > > > > > > Can somebody give me some help with this. > > > > Thanks in advance. > > > > Regards. > > > > > > > > > > > > -- > > <BR> > > You are currently subscribed to [email protected] as: > [email protected] > > <BR> > > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > > > > > -- > <BR> > You are currently subscribed to [email protected] as: > [email protected] > <BR> > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- Saludos. -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
