Hi,
We test the CAS authentification on egroupware 1.8.001 but we have a problem of
infinite loop on the redirect after the authentification on the CAS server.
The authentification with the CAS server works well with other applications
(for exemple : GLPI...)
The configuration is :
Egroupware 1.8.001 on a Redhat EL5.5 server
extra info on users : LDAP/ADS
no auto-creation of account
CAS server 3.3 with Tomcat 6 on a fedora core 12 server
Anyone has an idea ?
Thanks
Attached file : an extrat of the CAS.php log for the a connexion
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
[...]
6C68 .START phpCAS-1.2.0 ****************** [CAS.php:471]
6C68 .=> phpCAS::client('2.0', 'serveur-cas', 8443, 'cas/') [login.php:71]
6C68 .| => CASClient::CASClient('2.0', false, 'serveur-cas', 8443, 'cas/',
true) [CAS.php:374]
6C68 .| | Starting a new session [client.php:680]
6C68 .| <= ''
6C68 .<= ''
6C68 .=> phpCAS::setNoCasServerValidation() [login.php:87]
6C68 .<= ''
6C68 .=> phpCAS::forceAuthentication() [login.php:90]
6C68 .| => CASClient::forceAuthentication() [CAS.php:950]
6C68 .| | => CASClient::isAuthenticated() [client.php:952]
6C68 .| | | => CASClient::wasPreviouslyAuthenticated()
[client.php:1047]
6C68 .| | | | no user found [client.php:1216]
6C68 .| | | <= false
6C68 .| | | no ticket found [client.php:1109]
6C68 .| | <= false
6C68 .| | => CASClient::redirectToCas(false) [client.php:961]
6C68 .| | | => CASClient::getServerLoginURL(false, false)
[client.php:1232]
6C68 .| | | | => CASClient::getURL() [client.php:439]
6C68 .| | | | | Final URI:
http://egroupware-cas/login.php?phpgw_forward=%2Findex.php [client.php:2805]
6C68 .| | | | <=
'http://egroupware-cas/login.php?phpgw_forward=%2Findex.php'
6C68 .| | | <=
'https://serveur-cas:8443/cas/login?service=http%3A%2F%2Fegroupware-cas%2Flogin.php%3Fphpgw_forward%3D%252Findex.php'
6C68 .| | | Redirect to :
https://serveur-cas:8443/cas/login?service=http%3A%2F%2Fegroupware-cas%2Flogin.php%3Fphpgw_forward%3D%252Findex.php
[client.php:1234 ]
6C68 .| | | exit()
6C68 .| | | -
6C68 .| | -
6C68 .| -
87D8 .START phpCAS-1.2.0 ****************** [CAS.php:471]
87D8 .=> phpCAS::client('2.0', 'serveur-cas', 8443, 'cas/') [login.php:71]
87D8 .| => CASClient::CASClient('2.0', false, 'serveur-cas', 8443, 'cas/',
true) [CAS.php:374]
87D8 .| | Starting a new session [client.php:680]
87D8 .| | ST or PT 'ST-228-FDVI1UaAz3f6A1nEFIDo-cas' found
[client.php:766]
87D8 .| <= ''
87D8 .<= ''
87D8 .=> phpCAS::setNoCasServerValidation() [login.php:87]
87D8 .<= ''
87D8 .=> phpCAS::forceAuthentication() [login.php:90]
87D8 .| => CASClient::forceAuthentication() [CAS.php:950]
87D8 .| | => CASClient::isAuthenticated() [client.php:952]
87D8 .| | | => CASClient::wasPreviouslyAuthenticated()
[client.php:1047]
87D8 .| | | | no user found [client.php:1216]
87D8 .| | | <= false
87D8 .| | | PT `ST-228-FDVI1UaAz3f6A1nEFIDo-cas' is present
[client.php:1082]
87D8 .| | | => CASClient::validatePT('', NULL, NULL) [client.php:1083]
87D8 .| | | | [client.php:2653]
87D8 .| | | | => CASClient::getURL() [client.php:550]
87D8 .| | | | | Final URI:
http://egroupware-cas/login.php?phpgw_forward=%2Findex.php [client.php:2805]
87D8 .| | | | <=
'http://egroupware-cas/login.php?phpgw_forward=%2Findex.php'
87D8 .| | | | => CAS_CurlRequest::_sendRequest()
[AbstractRequest.php:188]
87D8 .| | | | | Response Body:
<cas:serviceResponse xmlns:cas='http://www.yale.edu/tp/cas'>
<cas:authenticationSuccess>
<cas:user>sylvain-d</cas:user>
</cas:authenticationSuccess>
</cas:serviceResponse>
[CurlRequest.php:129]
87D8 .| | | | <= true
87D8 .| | | | =>
CASClient::readExtraAttributesCas20(DOMNodeList::__set_state(array()))
[client.php:2715]
87D8 .| | | | | Testing for rubycas style attributes
[client.php:1640]
87D8 .| | | | <= ''
87D8 .| | | | =>
CASClient::renameSession('ST-228-FDVI1UaAz3f6A1nEFIDo-cas') [client.php:2744]
87D8 .| | | | | Session ID: ST228FDVI1UaAz3f6A1nEFIDocas
[client.php:826]
87D8 .| | | | | Restoring old session vars [client.php:829]
87D8 .| | | | <= ''
87D8 .| | | <= true
87D8 .| | | PT `ST-228-FDVI1UaAz3f6A1nEFIDo-cas' was validated
[client.php:1084]
87D8 .| | | => CASClient::getURL() [client.php:1123]
87D8 .| | | <=
'http://egroupware-cas/login.php?phpgw_forward=%2Findex.php'
87D8 .| | | => CASClient::getURL() [client.php:1124]
87D8 .| | | <=
'http://egroupware-cas/login.php?phpgw_forward=%2Findex.php'
87D8 .| | | Prepare redirect to :
http://egroupware-cas/login.php?phpgw_forward=%2Findex.php [client.php:1124]
87D8 .| | | exit()
87D8 .| | | -
87D8 .| | -
87D8 .| -
61EA .START phpCAS-1.2.0 ****************** [CAS.php:471]
61EA .=> phpCAS::client('2.0', 'serveur-cas', 8443, 'cas/') [login.php:71]
61EA .| => CASClient::CASClient('2.0', false, 'serveur-cas', 8443, 'cas/',
true) [CAS.php:374]
61EA .| | Starting a new session [client.php:680]
61EA .| <= ''
61EA .<= ''
61EA .=> phpCAS::setNoCasServerValidation() [login.php:87]
61EA .<= ''
61EA .=> phpCAS::forceAuthentication() [login.php:90]
61EA .| => CASClient::forceAuthentication() [CAS.php:950]
61EA .| | => CASClient::isAuthenticated() [client.php:952]
61EA .| | | => CASClient::wasPreviouslyAuthenticated()
[client.php:1047]
61EA .| | | | no user found [client.php:1216]
61EA .| | | <= false
61EA .| | | no ticket found [client.php:1109]
61EA .| | <= false
61EA .| | => CASClient::redirectToCas(false) [client.php:961]
61EA .| | | => CASClient::getServerLoginURL(false, false)
[client.php:1232]
61EA .| | | | => CASClient::getURL() [client.php:439]
61EA .| | | | | Final URI:
http://egroupware-cas/login.php?phpgw_forward=%2Findex.php [client.php:2805]
61EA .| | | | <=
'http://egroupware-cas/login.php?phpgw_forward=%2Findex.php'
61EA .| | | <=
'https://serveur-cas:8443/cas/login?service=http%3A%2F%2Fegroupware-cas%2Flogin.php%3Fphpgw_forward%3D%252Findex.php'
61EA .| | | Redirect to :
https://serveur-cas:8443/cas/login?service=http%3A%2F%2Fegroupware-cas%2Flogin.php%3Fphpgw_forward%3D%252Findex.php
[client.php:1234 ]
61EA .| | | exit()
61EA .| | | -
61EA .| | -
61EA .| -
B232 .START phpCAS-1.2.0 ****************** [CAS.php:471]
B232 .=> phpCAS::client('2.0', 'serveur-cas', 8443, 'cas/') [login.php:71]
B232 .| => CASClient::CASClient('2.0', false, 'serveur-cas', 8443, 'cas/',
true) [CAS.php:374]
B232 .| | Starting a new session [client.php:680]
B232 .| | ST or PT 'ST-229-vVejFTVQNudkFn7gIUGq-cas' found
[client.php:766]
B232 .| <= ''
B232 .<= ''
B232 .=> phpCAS::setNoCasServerValidation() [login.php:87]
B232 .<= ''
B232 .=> phpCAS::forceAuthentication() [login.php:90]
B232 .| => CASClient::forceAuthentication() [CAS.php:950]
B232 .| | => CASClient::isAuthenticated() [client.php:952]
B232 .| | | => CASClient::wasPreviouslyAuthenticated()
[client.php:1047]
B232 .| | | | no user found [client.php:1216]
B232 .| | | <= false
B232 .| | | PT `ST-229-vVejFTVQNudkFn7gIUGq-cas' is present
[client.php:1082]
B232 .| | | => CASClient::validatePT('', NULL, NULL) [client.php:1083]
B232 .| | | | [client.php:2653]
B232 .| | | | => CASClient::getURL() [client.php:550]
B232 .| | | | | Final URI:
http://egroupware-cas/login.php?phpgw_forward=%2Findex.php [client.php:2805]
B232 .| | | | <=
'http://egroupware-cas/login.php?phpgw_forward=%2Findex.php'
B232 .| | | | => CAS_CurlRequest::_sendRequest()
[AbstractRequest.php:188]
B232 .| | | | | Response Body:
<cas:serviceResponse xmlns:cas='http://www.yale.edu/tp/cas'>
<cas:authenticationSuccess>
<cas:user>sylvain-d</cas:user>
</cas:authenticationSuccess>
</cas:serviceResponse>
[CurlRequest.php:129]
B232 .| | | | <= true
B232 .| | | | =>
CASClient::readExtraAttributesCas20(DOMNodeList::__set_state(array()))
[client.php:2715]
B232 .| | | | | Testing for rubycas style attributes
[client.php:1640]
B232 .| | | | <= ''
B232 .| | | | =>
CASClient::renameSession('ST-229-vVejFTVQNudkFn7gIUGq-cas') [client.php:2744]
B232 .| | | | | Session ID: ST229vVejFTVQNudkFn7gIUGqcas
[client.php:826]
B232 .| | | | | Restoring old session vars [client.php:829]
B232 .| | | | <= ''
B232 .| | | <= true
B232 .| | | PT `ST-229-vVejFTVQNudkFn7gIUGq-cas' was validated
[client.php:1084]
B232 .| | | => CASClient::getURL() [client.php:1123]
B232 .| | | <=
'http://egroupware-cas/login.php?phpgw_forward=%2Findex.php'
B232 .| | | => CASClient::getURL() [client.php:1124]
B232 .| | | <=
'http://egroupware-cas/login.php?phpgw_forward=%2Findex.php'
B232 .| | | Prepare redirect to :
http://egroupware-cas/login.php?phpgw_forward=%2Findex.php [client.php:1124]
B232 .| | | exit()
B232 .| | | -
B232 .| | -
B232 .| -
ED68 .START phpCAS-1.2.0 ****************** [CAS.php:471]
ED68 .=> phpCAS::client('2.0', 'serveur-cas', 8443, 'cas/') [login.php:71]
ED68 .| => CASClient::CASClient('2.0', false, 'serveur-cas', 8443, 'cas/',
true) [CAS.php:374]
ED68 .| | Starting a new session [client.php:680]
ED68 .| <= ''
ED68 .<= ''
ED68 .=> phpCAS::setNoCasServerValidation() [login.php:87]
ED68 .<= ''
ED68 .=> phpCAS::forceAuthentication() [login.php:90]
ED68 .| => CASClient::forceAuthentication() [CAS.php:950]
ED68 .| | => CASClient::isAuthenticated() [client.php:952]
ED68 .| | | => CASClient::wasPreviouslyAuthenticated()
[client.php:1047]
ED68 .| | | | no user found [client.php:1216]
ED68 .| | | <= false
ED68 .| | | no ticket found [client.php:1109]
ED68 .| | <= false
ED68 .| | => CASClient::redirectToCas(false) [client.php:961]
ED68 .| | | => CASClient::getServerLoginURL(false, false)
[client.php:1232]
ED68 .| | | | => CASClient::getURL() [client.php:439]
ED68 .| | | | | Final URI:
http://egroupware-cas/login.php?phpgw_forward=%2Findex.php [client.php:2805]
ED68 .| | | | <=
'http://egroupware-cas/login.php?phpgw_forward=%2Findex.php'
ED68 .| | | <=
'https://serveur-cas:8443/cas/login?service=http%3A%2F%2Fegroupware-cas%2Flogin.php%3Fphpgw_forward%3D%252Findex.php'
ED68 .| | | Redirect to :
https://serveur-cas:8443/cas/login?service=http%3A%2F%2Fegroupware-cas%2Flogin.php%3Fphpgw_forward%3D%252Findex.php
[client.php:1234 ]
ED68 .| | | exit()
ED68 .| | | -
ED68 .| | -
ED68 .| -
[...]
