Hi, im trying to get the JAAS integration working on JBoss Portal 2.7.2. The CAS Server is up and running, and validates Users against an Active Directory
Now for JBoss Portal, i deployed the Java Client (from SVN , trunk ) on it, and configured the JBP\server\default\deploy\jboss-portal.sar\conf\login-config.xml and added the CasLoginModule like that: (i used the CAS20TicketValidator because the SAML11 one is getting to a lot of exceptions (especially at ReflectUtils <login-module code="org.jasig.cas.client.jaas.CasLoginModule" flag="optional"> <module-option name="ticketValidatorClass">org.jasig.cas.client.validation.Cas20ServiceTicketValidator</module-option> <module-option name="casServerUrlPrefix">http://localhost:9999/CASServer</module-option> <module-option name="tolerance">20000</module-option> <module-option name="casLogin">http://localhost:9999/CASServer/login</module-option> <module-option name="casLogout">http://localhost:9999/CASServer/logout</module-option> <module-option name="casLogin">http://localhost:9999/CASServer/login</module-option> <module-option name="casValidatePrefix">http://localhost:9999/CASServer</module-option> <module-option name="casServiceValidate">serviceValidate</module-option> <module-option name="casServerName">http://localhost:9999/CASServer</module-option> </login-module> Basically ive tried a lot of module-options but it ends up in failing the authentication and continuing with the next. (IdentityLoginModule, standard of JBoss Portal). however it isnt working, it fails because it cant Validate a ticket. sorry if im making something completely wrong :) im kind of new to this What i need to do is, that first JBP checks if the user/password provided authenticates correctly to CAS (so that CasLoginModule returns true) and then goes on with the next JAAS login module. ive got it working with a similar configuration: Java Client 3.1.x + JBoss Portal 2.7.2 + CAS 3.4.2.1, however i used the Valve to redirect directly to the CAS Server - here it worked fine, however when a User is not in CAS, but in JBP, there is no way to login, because it does not skip the CAS Login Window. If you need more Source, or anything else of my Config to help . Please feel free to ask =) Thanks for any Help, Max -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
