phpCAS (http://www.ja-sig.org/downloads/cas-clients/php/1.1.1/ ) is a quick way to verify SAML support. There is a script showing how to get attributes back from the SAML document here: http://www.ja-sig.org/wiki/display/CASC/phpCAS+examples#phpCASexamples-SAMLProtocolwithAttributeRelease
Also, if you want to see the raw SAML document, I've had better luck using rest-client (http://code.google.com/p/rest-client/) than trying to send a POST with wget or curl. -Eric On Thu, May 13, 2010 at 2:46 PM, McKennon, Robert <[email protected]>wrote: > > > -----Original Message----- > From: Marvin Addison [mailto:[email protected]] > Sent: Thursday, May 13, 2010 2:38 PM > To: [email protected] > Subject: Re: [cas-user] SAML token > > > So I tried using: > > > > wget --output-document=out.txt --post-file=post.txt > > "http://192.168.168.83:8080/cas/samlValidate?ticket= > > ST-6-ZbzNvFyGY9QkqkTtZRPL-cas &TARGET=http://192.168.167.84/index.html"; > > The content of post.txt is all important. I can say from experience > working on SAML support in a few clients, the CAS server is very > particular about the format of the incoming SAML request. I can > provide a valid sample request if needed. > > > That would be WONDERFUL!!! Please. > > > I realize that you're probably trying to sanity test SAML support, but > you should be using a CAS client which handles the SAML > request/response details for you in production. > > I agree, and we will be doing that as soon as I can verify that it's > working. (i.e. I was assigned the task of setting this up, and then the > Windows gurus are going to figure out their part.) > > Do you have any particular CAS client in mind that I could setup quickly? > > V/R, > > Rob McKennon > Unix Admin (fish out of water) > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- Eric Pierce Identity Management Architect Information Technology University of South Florida (813) 974-8868 -- [email protected] -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
