Hello everyone!
I try to get a transparent login to a web application, for example confluence.
I followed this page from the wiki:
https://wiki.jasig.org/display/CASUM/SPNEGO
But I have some trouble.
If I configure everything like told on the page, I get the following error:
org.springframework.webflow.engine.builder.FlowBuilderException: Could not
parse the XML flow definition document at ServletContext resource
[/WEB-INF/login-webflow.xml]; nested exception
is org.xml.sax.SAXParseException: cvc-complex-type.2.4.a: Invalid content was
found starting with element 'evaluate'. One of
'{"http://www.springframework.org/schema/webflow":attribute,
"http://www.springframework.org/schema/webflow":entry-actions,
"http://www.springframework.org/schema/webflow":action,
"http://www.springframework.org/schema/webflow":bean-action, "http:/
/www.springframework.org/schema/webflow":evaluate-action,
"http://www.springframework.org/schema/webflow":set}' is expected.
If I change the definition from "evaluate" to "evaluate-action", I get the
following error message:
2011-01-12 15:52:20,801 DEBUG
[org.springframework.web.servlet.DispatcherServlet] - <Could not complete
request>
org.springframework.webflow.engine.ActionExecutionException: Exception thrown
executing [AnnotatedAction@1875da7 targetAction =
org.springframework.webflow.action.EvaluateAction@15
a3a1, attributes = map[[empty]]] in state 'startAuthenticate' of flow
'login-webflow' -- action execution attributes were 'map[[empty]]'; nested
exception is org.springframework.bi
nding.expression.EvaluationException: Expression [EvaluationAttempt@a9a32c
expression = negociateSpnego, target = [RequestControlContextImpl@117c0eb
externalContext = [ServletExter
nalContext@952905 requestParameterMap = map[[empty]]], requestScope =
map[[empty]], attributes = map[[empty]], flowExecution =
[FlowExecutionImpl@7ab40c flow = 'login-webflow', flo
wSessions = list[[FlowSessionImpl@ad483 flow = 'login-webflow', state =
'startAuthenticate', scope = map['service' -> [null], 'warnCookieValue' ->
false, 'ticketGrantingTicketId' -
> [null]], flashMap = map[[empty]], status = Active]]]], context = [null]]
> failed - make sure the expression is evaluatable on the target object; nested
> exception is ognl.NoSuchPro
pertyException:
org.springframework.webflow.engine.impl.RequestControlContextImpl.negociateSpnego
I did a build with the added dependency for spnego.
Kerberos do work. If I use kinit for the user I get a ticket.
I added the kerberos configuration to the JAVA_OPTS:
-Djava.security.krb5.realm=[OUR REALM] -Djava.security.krb5.kdc=[KDC]
-Djava.security.krb5.conf=/etc/krb5.conf
-Djava.security.auth.login.config=jaas.conf
I do really stuck. Please help me!
If more informationen are needed, let it know me.
Best regards
Alexander Pfeifer
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
