[cas-user] HELP! Google Apps failing

Fri, 21 May 2010 11:48:08 -0700


Ok Upgrade to 3.4.2 from 3.3.3, google apps working fine on 3.3.3 failing on 3.4.2 everything else seems fine.

First had the error of no post response and updated my webflow as per http://www.ja-sig.org/issues/browse/CAS-868.

Now have:
<action-state id="redirect">
        <evaluate _expression_="flowScope.service.getResponse(requestScope.serviceTicketId)" result-type="org.jasig.cas.authentication.principal.Response" result="requestScope.response" />
        <transition to="redirect2" />
    </action-state>
<action-state id="redirect2">
        <evaluate _expression_="requestScope.response.responseType.name()"/>
        <transition on="POST" to="postView" />
        <transition to="redirectView" />
    </action-state> <end-state id="postView" view="postResponseView"> <output name="flowScope.parameters" value="requestScope.response.attributes" /> <output name="flowScope.originalUrl" value="flowScope.service.id" /> </end-state>

Postview is now firing but getting a 500 error on the CAS server:
root cause
org.springframework.webflow.engine.FlowOutputMappingException: Errors occurred during output mapping in state 'postView' of flow 'login'; errors = [[targetaccesser...@24812051 mapping = requestScope.response.attributes -> flowScope.parameters, code = 'evaluationException', error = true, errorCause = org.springframework.binding._expression_.EvaluationException: An OgnlException occurred setting the value of _expression_ 'flowScope.parameters' on context [class org.springframework.webflow.core.collection.LocalAttributeMap] to [{SAMLResponse=<?xml version="1.0" encoding="UTF-8"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" ID="laoaldagimefddlmdimdkciijopniicmmomojlhi" IssueInstant="2010-05-21T13:46:46Z" Version="2.0"><Signature xmlns="http://www.w3.org/2000/09/xmldsig#"><SignedInfo><CanonicalizationMethod Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315#WithComments" /><SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" /><Reference URI=""><Transforms><Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" /></Transforms><DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" /><DigestValue>GX8ohGv2Kfr9T3xchiv2cSsUOVw=</DigestValue></Reference></SignedInfo><SignatureValue>MSAth8VYoENPtNooME2zWzAm+i0SRAdMqS5z5EF/yQSicPptPOkmDd1hB9se25Hed+ftcC1NZR7I
aIVYCoPJfOGgWdbDQMKIsXn5akHvEq8UFBruWnfiT4LbvLjbLZNnkTgYZghSG3ZtsCZklxuCiOvn
SwatG2HAUqjGstgwMMI=</SignatureValue><KeyInfo><KeyValue><RSAKeyValue><Modulus>qd7huakQeA2BT+ioJSnCjx4gRg6QO6tMXqDOzl7nngHRTWwnHc+i3rVBuEG5FzC3j1+NEuC5d4P3
V71684BmlMaDWK7LmOUHaYN/Tovg4YpYwNJHYrWKSUFD7yPXBkmAji+R6js+NJJg9yGX7T8zM5N9
dxUzewNctYfhLmuh01E=</Modulus><Exponent>AQAB</Exponent></RSAKeyValue></KeyValue></KeyInfo></Signature><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><Assertion ID="cjlkeoodmplcgbhhhdkjjhdphkdijphfcnpagplp" IssueInstant="2003-04-17T00:46:02Z" Version="2.0"><Issuer>https://www.opensaml.org/IDP</Issuer><Subject><NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:emailAddress">lbsch</NameID><SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><SubjectConfirmationData InResponseTo="nljbhoejfeilgkonhbhacocobppgamdjepeiohec" NotOnOrAfter="2011-05-21T13:46:46Z" Recipient="https://www.google.com/a/conncoll.edu/acs" /></SubjectConfirmation></Subject><Conditions NotBefore="2003-04-17T00:46:02Z" NotOnOrAfter="2011-05-21T13:46:46Z"><AudienceRestriction><Audience>https://www.google.com/a/conncoll.edu/acs</Audience></AudienceRestriction></Conditions><AuthnStatement AuthnInstant="2010-05-21T13:46:46Z"><AuthnContext><AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</AuthnContextClassRef></AuthnContext></AuthnStatement></Assertion></samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" ID="laoaldagimefddlmdimdkciijopniicmmomojlhi" IssueInstant="2010-05-21T13:46:46Z" Version="2.0"><Signature xmlns="http://www.w3.org/2000/09/xmldsig#"><SignedInfo><CanonicalizationMethod Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315#WithComments" /><SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" /><Reference URI=""><Transforms><Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" /></Transforms><DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" /><DigestValue>GX8ohGv2Kfr9T3xchiv2cSsUOVw=</DigestValue></Reference></SignedInfo><SignatureValue>MSAth8VYoENPtNooME2zWzAm+i0SRAdMqS5z5EF/yQSicPptPOkmDd1hB9se25Hed+ftcC1NZR7I
aIVYCoPJfOGgWdbDQMKIsXn5akHvEq8UFBruWnfiT4LbvLjbLZNnkTgYZghSG3ZtsCZklxuCiOvn
SwatG2HAUqjGstgwMMI=</SignatureValue><KeyInfo><KeyValue><RSAKeyValue><Modulus>qd7huakQeA2BT+ioJSnCjx4gRg6QO6tMXqDOzl7nngHRTWwnHc+i3rVBuEG5FzC3j1+NEuC5d4P3
V71684BmlMaDWK7LmOUHaYN/Tovg4YpYwNJHYrWKSUFD7yPXBkmAji+R6js+NJJg9yGX7T8zM5N9
dxUzewNctYfhLmuh01E=</Modulus><Exponent>AQAB</Exponent></RSAKeyValue></KeyValue></KeyInfo></Signature><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><Assertion ID="cjlkeoodmplcgbhhhdkjjhdphkdijphfcnpagplp" IssueInstant="2003-04-17T00:46:02Z" Version="2.0"><Issuer>https://www.opensaml.org/IDP</Issuer><Subject><NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:emailAddress">lbsch</NameID><SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><SubjectConfirmationData InResponseTo="nljbhoejfeilgkonhbhacocobppgamdjepeiohec" NotOnOrAfter="2011-05-21T13:46:46Z" Recipient="https://www.google.com/a/conncoll.edu/acs" /></SubjectConfirmation></Subject><Conditions NotBefore="2003-04-17T00:46:02Z" NotOnOrAfter="2011-05-21T13:46:46Z"><AudienceRestriction><Audience>https://www.google.com/a/conncoll.edu/acs</Audience></AudienceRestriction></Conditions><AuthnStatement AuthnInstant="2010-05-21T13:46:46Z"><AuthnContext><AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</AuthnContextClassRef></AuthnContext></AuthnStatement></Assertion></samlp:Response>
', 'RelayState' -> 'https://www.google.com/a/conncoll.edu/ServiceLogin?service=mail&passive=true&rm=false&continue=https%3A%2F%2Fmail.google.com%2Fa%2Fconncoll.edu%2F&bsv=1eic6yu9oa4y3&ss=1&ltmpl=default&ltmplcache=2'], mappedValue = [null]], [targetaccesser...@1970b890 mapping = flowScope.service.id -> flowScope.originalUrl, code = 'evaluationException', error = true, errorCause = org.springframework.binding._expression_.EvaluationException: An OgnlException occurred setting the value of _expression_ 'flowScope.originalUrl' on context [class org.springframework.webflow.core.collection.LocalAttributeMap] to [https://www.google.com/a/conncoll.edu/acs], originalValue = 'https://www.google.com/a/conncoll.edu/acs', mappedValue = [null]]]
        org.springframework.webflow.engine.EndState.createSessionOutput(EndState.java:120)
        org.springframework.webflow.engine.EndState.doEnter(EndState.java:103)
        org.springframework.webflow.engine.State.enter(State.java:194)
        org.springframework.webflow.engine.Transition.execute(Transition.java:227)
        org.springframework.webflow.engine.impl.FlowExecutionImpl.execute(FlowExecutionImpl.java:391)
        org.springframework.webflow.engine.impl.RequestControlContextImpl.execute(RequestControlContextImpl.java:214)
        org.springframework.webflow.engine.TransitionableState.handleEvent(TransitionableState.java:119)
        org.springframework.webflow.engine.Flow.handleEvent(Flow.java:555)
        org.springframework.webflow.engine.impl.FlowExecutionImpl.handleEvent(FlowExecutionImpl.java:386)
        org.springframework.webflow.engine.impl.RequestControlContextImpl.handleEvent(RequestControlContextImpl.java:210)
        org.springframework.webflow.engine.ActionState.doEnter(ActionState.java:105)
        org.springframework.webflow.engine.State.enter(State.java:194)




Andrew Tillinghast
Sr. Web Developer
270 Mohegan Avenue
New LondonCT 06320-4196
Ph:860 439-5265 Fax: 860 439-2871
P Think before you print
CONFIDENTIALITY: This email (including any attachments) may contain confidential, proprietary and privileged information, and unauthorized disclosure or use is prohibited. If you received this email in error, please notify the sender and delete this email from your system.




-- 
You are currently subscribed to [email protected] as: [email protected]
To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user

Reply via email to