How comfortable are you connecting the debugger to your CAS instance and setting a breakpoint on the Spring Security InMemoryDao and stepping through to see what is going on?
If you're not comfortable, I can try doing it myself, but I probably won't get to it until this weekend. Cheers, Scott On Wed, Mar 30, 2011 at 3:48 AM, Neit <[email protected]> wrote: > 2011-03-30 09:42:16,078 INFO > [org.jasig.cas.ticket.registry.support.DefaultTicketRegistryCleaner] - > <Beginning ticket cleanup.> > 2011-03-30 09:42:16,078 INFO > [org.jasig.cas.ticket.registry.support.DefaultTicketRegistryCleaner] - <0 > tickets found to be removed.> > 2011-03-30 09:42:16,078 INFO > [org.jasig.cas.ticket.registry.support.DefaultTicketRegistryCleaner] - > <Finished ticket cleanup.> > 2011-03-30 09:42:37,406 DEBUG > [org.springframework.security.web.FilterChainProxy] - <Converted URL to > lowercase, from: '/services'; to: '/services'> > 2011-03-30 09:42:37,406 DEBUG > [org.springframework.security.web.FilterChainProxy] - <Candidate is: > '/services'; pattern is /services/loggedout.html; matched=false> > 2011-03-30 09:42:37,406 DEBUG > [org.springframework.security.web.FilterChainProxy] - <Converted URL to > lowercase, from: '/services'; to: '/services'> > 2011-03-30 09:42:37,406 DEBUG > [org.springframework.security.web.FilterChainProxy] - <Candidate is: > '/services'; pattern is /**; matched=true> > 2011-03-30 09:42:37,406 DEBUG > [org.springframework.security.web.FilterChainProxy] - </services at position > 1 of 12 in additional filter chain; firing Filter: > 'org.springframework.security.web.context.SecurityContextPersistenceFilter@64ef8b > '> > 2011-03-30 09:42:37,406 DEBUG > [org.springframework.security.web.context.HttpSessionSecurityContextRepository] > - <No HttpSession currently exists> > 2011-03-30 09:42:37,406 DEBUG > [org.springframework.security.web.context.HttpSessionSecurityContextRepository] > - <No SecurityContext was available from the HttpSession: null. A new one > will be created.> > 2011-03-30 09:42:37,421 DEBUG > [org.springframework.security.web.FilterChainProxy] - </services at position > 2 of 12 in additional filter chain; firing Filter: > 'org.springframework.security.web.authentication.logout.LogoutFilter@20f174 > '> > 2011-03-30 09:42:37,421 DEBUG > [org.springframework.security.web.FilterChainProxy] - </services at position > 3 of 12 in additional filter chain; firing Filter: > 'org.springframework.security.cas.web.CasAuthenticationFilter@cc23df'> > 2011-03-30 09:42:37,421 DEBUG > [org.springframework.security.web.FilterChainProxy] - </services at position > 4 of 12 in additional filter chain; firing Filter: > 'org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter@47340b > '> > 2011-03-30 09:42:37,421 DEBUG > [org.springframework.security.web.FilterChainProxy] - </services at position > 5 of 12 in additional filter chain; firing Filter: > 'org.springframework.security.web.authentication.ui.DefaultLoginPageGeneratingFilter@a9c686 > '> > 2011-03-30 09:42:37,421 DEBUG > [org.springframework.security.web.FilterChainProxy] - </services at position > 6 of 12 in additional filter chain; firing Filter: > 'org.springframework.security.web.authentication.www.BasicAuthenticationFilter@28a166 > '> > 2011-03-30 09:42:37,421 DEBUG > [org.springframework.security.web.FilterChainProxy] - </services at position > 7 of 12 in additional filter chain; firing Filter: > 'org.springframework.security.web.savedrequest.RequestCacheAwareFilter@17c4423 > '> > 2011-03-30 09:42:37,421 DEBUG > [org.springframework.security.web.FilterChainProxy] - </services at position > 8 of 12 in additional filter chain; firing Filter: > 'org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter@15d579e > '> > 2011-03-30 09:42:37,437 DEBUG > [org.springframework.security.web.FilterChainProxy] - </services at position > 9 of 12 in additional filter chain; firing Filter: > 'org.springframework.security.web.authentication.AnonymousAuthenticationFilter@c58931 > '> > 2011-03-30 09:42:37,437 DEBUG > [org.springframework.security.web.authentication.AnonymousAuthenticationFilter] > - <Populated SecurityContextHolder with anonymous token: > 'org.springframework.security.authentication.AnonymousAuthenticationToken@905571d8: > Principal: anonymousUser; Password: [PROTECTED]; Authenticated: true; > Details: > org.springframework.security.web.authentication.WebAuthenticationDetails@0: > RemoteIpAddress: 10.35.102.117; SessionId: null; Granted Authorities: > ROLE_ANONYMOUS'> > 2011-03-30 09:42:37,437 DEBUG > [org.springframework.security.web.FilterChainProxy] - </services at position > 10 of 12 in additional filter chain; firing Filter: > 'org.springframework.security.web.session.SessionManagementFilter@b1f683'> > 2011-03-30 09:42:37,437 DEBUG > [org.springframework.security.web.FilterChainProxy] - </services at position > 11 of 12 in additional filter chain; firing Filter: > 'org.springframework.security.web.access.ExceptionTranslationFilter@1af526a > '> > 2011-03-30 09:42:37,437 DEBUG > [org.springframework.security.web.FilterChainProxy] - </services at position > 12 of 12 in additional filter chain; firing Filter: > 'org.springframework.security.web.access.intercept.FilterSecurityInterceptor@14bb117 > '> > 2011-03-30 09:42:37,437 DEBUG > [org.springframework.security.web.access.intercept.DefaultFilterInvocationSecurityMetadataSource] > - <Converted URL to lowercase, from: '/services'; to: '/services'> > 2011-03-30 09:42:37,437 DEBUG > [org.springframework.security.web.access.intercept.DefaultFilterInvocationSecurityMetadataSource] > - <Candidate is: '/services'; pattern is /**; matched=true> > 2011-03-30 09:42:37,437 DEBUG > [org.springframework.security.web.access.intercept.FilterSecurityInterceptor] > - <Secure object: FilterInvocation: URL: /services; Attributes: > [ROLE_ADMIN]> > 2011-03-30 09:42:37,437 DEBUG > [org.springframework.security.web.access.intercept.FilterSecurityInterceptor] > - <Previously Authenticated: > org.springframework.security.authentication.AnonymousAuthenticationToken@905571d8: > Principal: anonymousUser; Password: [PROTECTED]; Authenticated: true; > Details: > org.springframework.security.web.authentication.WebAuthenticationDetails@0: > RemoteIpAddress: 10.35.102.117; SessionId: null; Granted Authorities: > ROLE_ANONYMOUS> > 2011-03-30 09:42:37,437 DEBUG > [org.springframework.security.access.vote.AffirmativeBased] - <Voter: > org.springframework.security.access.vote.RoleVoter@5760be, returned: -1> > 2011-03-30 09:42:37,437 DEBUG > [org.springframework.security.access.vote.AffirmativeBased] - <Voter: > org.springframework.security.access.vote.AuthenticatedVoter@9098b1, > returned: 0> > 2011-03-30 09:42:37,468 DEBUG > [org.springframework.security.web.access.ExceptionTranslationFilter] - > <Access is denied (user is anonymous); redirecting to authentication entry > point> > org.springframework.security.access.AccessDeniedException: Access is denied > at > org.springframework.security.access.vote.AffirmativeBased.decide(AffirmativeBased.java:71) > at > org.springframework.security.access.intercept.AbstractSecurityInterceptor.beforeInvocation(AbstractSecurityInterceptor.java:203) > at > org.springframework.security.web.access.intercept.FilterSecurityInterceptor.invoke(FilterSecurityInterceptor.java:106) > at > org.springframework.security.web.access.intercept.FilterSecurityInterceptor.doFilter(FilterSecurityInterceptor.java:83) > at > org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:355) > at > org.springframework.security.web.access.ExceptionTranslationFilter.doFilter(ExceptionTranslationFilter.java:97) > at > org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:355) > at > org.springframework.security.web.session.SessionManagementFilter.doFilter(SessionManagementFilter.java:96) > at > org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:355) > at > org.springframework.security.web.authentication.AnonymousAuthenticationFilter.doFilter(AnonymousAuthenticationFilter.java:78) > at > org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:355) > at > org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter.doFilter(SecurityContextHolderAwareRequestFilter.java:54) > at > org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:355) > at > org.springframework.security.web.savedrequest.RequestCacheAwareFilter.doFilter(RequestCacheAwareFilter.java:35) > at > org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:355) > at > org.springframework.security.web.authentication.www.BasicAuthenticationFilter.doFilter(BasicAuthenticationFilter.java:177) > at > org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:355) > at > org.springframework.security.web.authentication.ui.DefaultLoginPageGeneratingFilter.doFilter(DefaultLoginPageGeneratingFilter.java:90) > at > org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:355) > at > org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter.doFilter(AbstractAuthenticationProcessingFilter.java:187) > at > org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:355) > at > org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter.doFilter(AbstractAuthenticationProcessingFilter.java:187) > at > org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:355) > at > org.springframework.security.web.authentication.logout.LogoutFilter.doFilter(LogoutFilter.java:105) > at > org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:355) > at > org.springframework.security.web.context.SecurityContextPersistenceFilter.doFilter(SecurityContextPersistenceFilter.java:79) > at > org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:355) > at > org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:149) > at > org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:237) > at > org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:167) > at > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) > at > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) > at > org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:233) > at > org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191) > at > org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) > at > org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) > at > org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:555) > at > org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) > at > org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:298) > at > org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:857) > at > org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:588) > at > org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:489) > at java.lang.Thread.run(Thread.java:662) > 2011-03-30 09:42:37,484 DEBUG > [org.springframework.security.web.savedrequest.HttpSessionRequestCache] - > <DefaultSavedRequest added to Session: DefaultSavedRequest[ > http://pcclt2117:8080/cas/services]> > 2011-03-30 09:42:37,484 DEBUG > [org.springframework.security.web.access.ExceptionTranslationFilter] - > <Calling Authentication entry point.> > 2011-03-30 09:42:37,484 DEBUG > [org.springframework.security.web.context.SecurityContextPersistenceFilter] > - <SecurityContextHolder now cleared, as request processing completed> > 2011-03-30 09:42:37,968 INFO > [org.jasig.cas.web.flow.InitialFlowSetupAction] - <Setting path for cookies > to: /cas> > JTHMED > JTHMED > 2011-03-30 09:43:06,625 INFO > [org.jasig.cas.authentication.AuthenticationManagerImpl] - > <AuthenticationHandler: > org.jasig.cas.authentication.handler.support.SimpleTestSillageAuthenticationHandler > successfully authenticated the user which provided the following > credentials: [username: JTHMED]> > 2011-03-30 09:43:06,640 INFO > [org.jasig.cas.CentralAuthenticationServiceImpl] - <Granted service ticket > [ST-1-qTe5wJQMqUMNZvCfbVeL-cas] for service [ > http://pcclt2117:8080/cas/services/j_acegi_cas_security_check] for user > [JTHMED]> > 2011-03-30 09:43:06,671 DEBUG > [org.springframework.security.web.FilterChainProxy] - <Converted URL to > lowercase, from: '/services/j_acegi_cas_security_check'; to: > '/services/j_acegi_cas_security_check'> > 2011-03-30 09:43:06,671 DEBUG > [org.springframework.security.web.FilterChainProxy] - <Candidate is: > '/services/j_acegi_cas_security_check'; pattern is /services/loggedout.html; > matched=false> > 2011-03-30 09:43:06,671 DEBUG > [org.springframework.security.web.FilterChainProxy] - <Converted URL to > lowercase, from: '/services/j_acegi_cas_security_check'; to: > '/services/j_acegi_cas_security_check'> > 2011-03-30 09:43:06,671 DEBUG > [org.springframework.security.web.FilterChainProxy] - <Candidate is: > '/services/j_acegi_cas_security_check'; pattern is /**; matched=true> > 2011-03-30 09:43:06,671 DEBUG > [org.springframework.security.web.FilterChainProxy] - > </services/j_acegi_cas_security_check?ticket=ST-1-qTe5wJQMqUMNZvCfbVeL-cas > at position 1 of 12 in additional filter chain; firing Filter: > 'org.springframework.security.web.context.SecurityContextPersistenceFilter@64ef8b > '> > 2011-03-30 09:43:06,671 DEBUG > [org.springframework.security.web.context.HttpSessionSecurityContextRepository] > - <HttpSession returned null object for SPRING_SECURITY_CONTEXT> > 2011-03-30 09:43:06,671 DEBUG > [org.springframework.security.web.context.HttpSessionSecurityContextRepository] > - <No SecurityContext was available from the HttpSession: > org.apache.catalina.session.StandardSessionFacade@9d2d28. A new one will > be created.> > 2011-03-30 09:43:06,671 DEBUG > [org.springframework.security.web.FilterChainProxy] - > </services/j_acegi_cas_security_check?ticket=ST-1-qTe5wJQMqUMNZvCfbVeL-cas > at position 2 of 12 in additional filter chain; firing Filter: > 'org.springframework.security.web.authentication.logout.LogoutFilter@20f174 > '> > 2011-03-30 09:43:06,671 DEBUG > [org.springframework.security.web.FilterChainProxy] - > </services/j_acegi_cas_security_check?ticket=ST-1-qTe5wJQMqUMNZvCfbVeL-cas > at position 3 of 12 in additional filter chain; firing Filter: > 'org.springframework.security.cas.web.CasAuthenticationFilter@cc23df'> > 2011-03-30 09:43:06,671 DEBUG > [org.springframework.security.cas.web.CasAuthenticationFilter] - <Request is > to process authentication> > 2011-03-30 09:43:06,671 DEBUG > [org.springframework.security.authentication.ProviderManager] - > <Authentication attempt using > org.springframework.security.cas.authentication.CasAuthenticationProvider> > 2011-03-30 09:43:06,875 DEBUG > [org.springframework.security.cas.web.CasAuthenticationFilter] - > <Authentication request failed: > org.springframework.security.core.userdetails.UsernameNotFoundException: > Could not find user: JTHMED> > 2011-03-30 09:43:06,875 DEBUG > [org.springframework.security.cas.web.CasAuthenticationFilter] - <Updated > SecurityContextHolder to contain null Authentication> > 2011-03-30 09:43:06,875 DEBUG > [org.springframework.security.cas.web.CasAuthenticationFilter] - <Delegating > to authentication failure > handlerorg.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler@5764e2 > > > 2011-03-30 09:43:06,875 DEBUG > [org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler] > - <Redirecting to /authorizationFailure.html> > 2011-03-30 09:43:06,875 DEBUG > [org.springframework.security.web.DefaultRedirectStrategy] - <Redirecting to > '/cas/authorizationFailure.html'> > 2011-03-30 09:43:06,875 DEBUG > [org.springframework.security.web.context.SecurityContextPersistenceFilter] > - <SecurityContextHolder now cleared, as request processing completed> > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
