I just installed CAS server and some client applications under weblogic server. There are all works very well when I config them with real server name. But now I got some issues which I totally have no clue....
Here is my situation: The CAS server and client apps are deployed on same box, and same Application server (Weblogic server) but using different managed node. So the CAS server's url is: https://cas.mydomain.edu:7001/cas and Client apps' url are something like: https://cas.mydomain.edu:7005/casClient etc. If I use this url in my client configuration file, then everything works very well. But now I need to user a web proxy server to redirect request alias url to those real url: For example, the alias for cas server is: http://server1.utsw.edu/cas This URL will be redirected to https://cas.mydomain.edu:7001/cas automatically by web proxy server; and http://server1.utsw.edu/casClient will be redirected to https://cas.mydomain.edu:7005/casClient, etc. After I configure the web proxy, the first part seems fine: when I type in http://server1.utsw.edu/casClient , I was successfully redirected client page, and when I try to access some pages which need authenticated, I was successfully redirected to cas server's login page. But after input the user name and password, then I got Error 500 -Internal server error..... I'm pretty sure the authentication is passed and I can tell the page has been redirectd back based on registered service name, like: https://server1.utsw.edu/casClient/protected/index.jsp?ticket=ST-34-SbrHsjZAQbjcxfbBFwKl-cas I can access all pages which are not filtered by Authentication filter.....and from cas log, there are no any exceptions.... Here is my web.xml in client app: <filter> <filter-name>CAS Authentication Filter</filter-name> <filter-class>org.jasig.cas.client.authentication.AuthenticationFilter</filter-class> <init-param> <param-name>casServerLoginUrl</param-name> <param-value>https://server1.utsw.edu/cas/login</param-value> </init-param> <init-param> <param-name>serverName</param-name> <param-value>https://server1.utsw.edu</param-value> </init-param> <init-param> <param-name>renew</param-name> <param-value>false</param-value> </init-param> <init-param> <param-name>gateway</param-name> <param-value>false</param-value> </init-param> </filter> <filter> <filter-name>CAS Validation Filter</filter-name> <filter-class>org.jasig.cas.client.validation.Cas20ProxyReceivingTicketValidationFilter</filter-class> <init-param> <param-name>casServerUrlPrefix</param-name> <param-value>https://server1.utsw.edu/cas/</param-value> </init-param> <init-param> <param-name>serverName</param-name> <param-value>https://server1.utsw.edu/casClient</param-value> </init-param> <!-- <init-param> <param-name>proxyCallbackUrl</param-name> <param-value>https://server1.utsw.edu/casClient</param-value> </init-param> <init-param> <param-name>proxyReceptorUrl</param-name> <param-value>https://server1.utsw.edu/casClient</param-value> </init-param> --> </filter> <filter> <filter-name>CAS HttpServletRequest Wrapper Filter</filter-name> <filter-class>org.jasig.cas.client.util.HttpServletRequestWrapperFilter</filter-class> </filter> <filter> <filter-name>CAS Assertion Thread Local Filter</filter-name> <filter-class>org.jasig.cas.client.util.AssertionThreadLocalFilter</filter-class> </filter> <filter-mapping> <filter-name>CAS Authentication Filter</filter-name> <url-pattern>/protected/*</url-pattern> </filter-mapping> <filter-mapping> <filter-name>CAS Validation Filter</filter-name> <url-pattern>/*</url-pattern> </filter-mapping> <filter-mapping> <filter-name>CAS HttpServletRequest Wrapper Filter</filter-name> <url-pattern>/*</url-pattern> </filter-mapping> <filter-mapping> <filter-name>CAS Assertion Thread Local Filter</filter-name> <url-pattern>/*</url-pattern> </filter-mapping> <filter-mapping> <filter-name>CAS Validation Filter</filter-name> <url-pattern>/proxyCallback</url-pattern> </filter-mapping> Any suggestions are highly apprecitated! Thanks a lot in advance.... --Jiangpeng Shi -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
