On Tue, Mar 22, 2011 at 11:22:49AM +0000, Rene Schaetzl wrote: > Hello, > > I'm trying to setup Google SSO using SAML2.0 request (basically following the > description here > https://wiki.jasig.org/display/CASUM/SAML+2.0+(Google+Accounts+Integration ). > > Now that I've changed the config in Google apps, the login request gets > forwarded directly to my cas site (great), I can login (great), get the > default CAS 'Login successful message' (ok) ... and that's it (D'oh so > close). > > No forward back to Google apps, heading over to Google apps directly (I'm > still not logged in). Still - after that - using a different web app that > relies on the same CAS server I am logged in. > > The user account is already set up in Google apps (using the directory > import) and still shows 'Never logged in'. > > So what am I missing here?
don't know. Here are a few ideas: a) verify that when directed to your CAS site, that your URL contains the google-apps source url correctly encoded in the query string. b) are you using CAS server v3.4.2? If so, ensure you uncommented the correct snippet in the login-webflow.xml file. Given your experience, pay particular attention to the 'postRedirect' bit, which should look like: <action-state id="postRedirect"> <evaluate expression="requestScope.response.responseType.name()"/> <transition on="POST" to="postView"/> <transition to="redirectView" /> </action-state> c) did you remember to upload your 'verification certificate' ? d) look at your CAS server's logs for any clues. Good luck, Jon -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
