[cas-user] Problem using IE9 with mod_auth_cas

Thu, 31 Mar 2011 06:01:27 -0700 

Hello,

I'm facing a problem using IE9 with mod_auth_cas. This mod_auth_cas 
configuration is working very well with other browsers (Chrome, Firefox, IE 
7/8) but not IE9.

After examining http headers (attached file), IE9 enters a loop between the 
webapp+mod_auth_cas and the CAS server. After getting the ST from CAS and 
transmits it to mod_auth_cas which validates it (I've set debug mode on 
mod_auth_cas to check this), IE9 returns to the CAS asking a new ST whereas it 
receives a good 302 redirect to the webapp.

I really don't understand such a behaviour. I tested IE9 with another 
webapp+mod_auth_cas with no problem, mod_auth_cas is exactly the same version 
and dll module (servers are Windows here), only Apaches are different but I 
don't see any mistake in the configuration files. And why it works with other 
IE versions and other browser ?

I supposed that IE9 handles cache weirdly, but I played with IE conf and 
headers dealing with cache/no-cache in Apache with no success.

If anyone has a clue, please don't hesitate

Thank you
-- 
You are currently subscribed to [email protected] as: 
[email protected]
To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user
GET / HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: fr-FR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: webapp
Connection: Keep-Alive

HTTP/1.1 302 Found
Date: Thu, 31 Mar 2011 10:11:58 GMT
Server: Apache
Location: https://cas.server/cas/login?service=http%3a%2f%2fwebapp%2f
Cache-Control: max-age=36000
Expires: Thu, 31 Mar 2011 20:11:58 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 222
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

GET /cas/login?service=http%3a%2f%2fwebapp%2f HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: fr-FR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: cas.server
Connection: Keep-Alive

HTTP/1.1 200 OK
Pragma: no-cache
Cache-Control: no-store
Expires: Wed, 31 Dec 1969 23:59:59 GMT
Content-Type: text/html;charset=ISO-8859-1
Transfer-Encoding: chunked
Date: Thu, 31 Mar 2011 10:12:32 GMT
Server: Apache-Coyote/1.1

POST /cas/login?service=http%3a%2f%2fwebapp%2f HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Referer: https://cas.server/cas/login?service=http%3a%2f%2fwebapp%2f
Accept-Language: fr-FR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Content-Type: application/x-www-form-urlencoded
Accept-Encoding: gzip, deflate
Host: cas.server
Content-Length: 82
Connection: Keep-Alive
Cache-Control: no-cache

username=myusername&password=mypassword&lt=LT-1282131-m7wtdm8r4rDq8ulVFImG

HTTP/1.1 200 OK
Pragma: no-cache
Cache-Control: no-store
Expires: Wed, 31 Dec 1969 23:59:59 GMT
Set-Cookie: CASTGC=TGC-741372-faWbawX9xcvvzPswTLS80tc0a6Hk7PTbMiBE1dVBM8m93Nb9Mg; Path=/cas; Secure
Set-Cookie: MSTGC=62525161DA39B93B13AFAED6770EEDD983EAE0691C86D3A88C491098F19365AF; Domain=.mydomain.tld; Path=/
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 3698
Date: Thu, 31 Mar 2011 10:12:39 GMT
Server: Apache-Coyote/1.1

GET /?ticket=ST-3364241-C2jftVzwavEYweEus76q HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: fr-FR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: webapp
Connection: Keep-Alive
Cookie: MSTGC=62525161DA39B93B13AFAED6770EEDD983EAE0691C86D3A88C491098F19365AF

HTTP/1.1 302 Found
Date: Thu, 31 Mar 2011 10:12:05 GMT
Server: Apache
Set-Cookie: mod_auth_cas_cookie=fcf589a1d4450cd6eab13f1af10a23ad;Path=/
Location: http://webapp/
Cache-Control: max-age=36000
Expires: Thu, 31 Mar 2011 20:12:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 190
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

GET /cas/login?service=http%3a%2f%2fwebapp%2f HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: fr-FR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Cookie: CASTGC=TGC-741372-faWbawX9xcvvzPswTLS80tc0a6Hk7PTbMiBE1dVBM8m93Nb9Mg; MSTGC=62525161DA39B93B13AFAED6770EEDD983EAE0691C86D3A88C491098F19365AF
Connection: Keep-Alive
Host: cas.server

HTTP/1.1 200 OK
Pragma: no-cache
Cache-Control: no-store
Expires: Wed, 31 Dec 1969 23:59:59 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 3698
Date: Thu, 31 Mar 2011 10:12:39 GMT
Server: Apache-Coyote/1.1

GET /?ticket=ST-3364242-UZ3AmxbRiZX7OPdeVveR HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: fr-FR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: webapp
Connection: Keep-Alive
Cookie: MSTGC=62525161DA39B93B13AFAED6770EEDD983EAE0691C86D3A88C491098F19365AF; mod_auth_cas_cookie=fcf589a1d4450cd6eab13f1af10a23ad

HTTP/1.1 302 Found
Date: Thu, 31 Mar 2011 10:12:06 GMT
Server: Apache
Set-Cookie: mod_auth_cas_cookie=2d5a0bd7303f5be4bc404ea9cbd3f3f8;Path=/
Location: http://webapp/
Cache-Control: max-age=36000
Expires: Thu, 31 Mar 2011 20:12:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 190
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

GET /cas/login?service=http%3a%2f%2fwebapp%2f HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: fr-FR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Cookie: CASTGC=TGC-741372-faWbawX9xcvvzPswTLS80tc0a6Hk7PTbMiBE1dVBM8m93Nb9Mg; MSTGC=62525161DA39B93B13AFAED6770EEDD983EAE0691C86D3A88C491098F19365AF
Connection: Keep-Alive
Host: cas.server

HTTP/1.1 200 OK
Pragma: no-cache
Cache-Control: no-store
Expires: Wed, 31 Dec 1969 23:59:59 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 3698
Date: Thu, 31 Mar 2011 10:12:39 GMT
Server: Apache-Coyote/1.1

GET /?ticket=ST-3364243-JP9nvj9ZlEWGhJ80MOMu HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: fr-FR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: webapp
Connection: Keep-Alive
Cookie: MSTGC=62525161DA39B93B13AFAED6770EEDD983EAE0691C86D3A88C491098F19365AF; mod_auth_cas_cookie=2d5a0bd7303f5be4bc404ea9cbd3f3f8

HTTP/1.1 302 Found
Date: Thu, 31 Mar 2011 10:12:06 GMT
Server: Apache
Set-Cookie: mod_auth_cas_cookie=e0e27c0516c0a0725c45bf73fb32c2da;Path=/
Location: http://webapp/
Cache-Control: max-age=36000
Expires: Thu, 31 Mar 2011 20:12:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 190
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

GET /cas/login?service=http%3a%2f%2fwebapp%2f HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: fr-FR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Cookie: CASTGC=TGC-741372-faWbawX9xcvvzPswTLS80tc0a6Hk7PTbMiBE1dVBM8m93Nb9Mg; MSTGC=62525161DA39B93B13AFAED6770EEDD983EAE0691C86D3A88C491098F19365AF
Connection: Keep-Alive
Host: cas.server

HTTP/1.1 200 OK
Pragma: no-cache
Cache-Control: no-store
Expires: Wed, 31 Dec 1969 23:59:59 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 3698
Date: Thu, 31 Mar 2011 10:12:39 GMT
Server: Apache-Coyote/1.1

GET /?ticket=ST-3364244-qHGnqKy0iIvV5uHCecfY HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: fr-FR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: webapp
Connection: Keep-Alive
Cookie: MSTGC=62525161DA39B93B13AFAED6770EEDD983EAE0691C86D3A88C491098F19365AF; mod_auth_cas_cookie=e0e27c0516c0a0725c45bf73fb32c2da

HTTP/1.1 302 Found
Date: Thu, 31 Mar 2011 10:12:06 GMT
Server: Apache
Set-Cookie: mod_auth_cas_cookie=0b6a42bda053cc4a566dd7998fbf6bb0;Path=/
Location: http://webapp/
Cache-Control: max-age=36000
Expires: Thu, 31 Mar 2011 20:12:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 190
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

GET /cas/login?service=http%3a%2f%2fwebapp%2f HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: fr-FR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Cookie: CASTGC=TGC-741372-faWbawX9xcvvzPswTLS80tc0a6Hk7PTbMiBE1dVBM8m93Nb9Mg; MSTGC=62525161DA39B93B13AFAED6770EEDD983EAE0691C86D3A88C491098F19365AF
Connection: Keep-Alive
Host: cas.server

HTTP/1.1 200 OK
Pragma: no-cache
Cache-Control: no-store
Expires: Wed, 31 Dec 1969 23:59:59 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 3698
Date: Thu, 31 Mar 2011 10:12:40 GMT
Server: Apache-Coyote/1.1

GET /?ticket=ST-3364245-diHRmC3VlGGXV9dj0hop HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: fr-FR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: webapp
Connection: Keep-Alive
Cookie: MSTGC=62525161DA39B93B13AFAED6770EEDD983EAE0691C86D3A88C491098F19365AF; mod_auth_cas_cookie=0b6a42bda053cc4a566dd7998fbf6bb0

HTTP/1.1 302 Found
Date: Thu, 31 Mar 2011 10:12:06 GMT
Server: Apache
Set-Cookie: mod_auth_cas_cookie=181debc25f6b0a88c8f037f43b0a2b41;Path=/
Location: http://webapp/
Cache-Control: max-age=36000
Expires: Thu, 31 Mar 2011 20:12:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 190
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

GET /cas/login?service=http%3a%2f%2fwebapp%2f HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: fr-FR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Cookie: CASTGC=TGC-741372-faWbawX9xcvvzPswTLS80tc0a6Hk7PTbMiBE1dVBM8m93Nb9Mg; MSTGC=62525161DA39B93B13AFAED6770EEDD983EAE0691C86D3A88C491098F19365AF
Connection: Keep-Alive
Host: cas.server

HTTP/1.1 200 OK
Pragma: no-cache
Cache-Control: no-store
Expires: Wed, 31 Dec 1969 23:59:59 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 3698
Date: Thu, 31 Mar 2011 10:12:40 GMT
Server: Apache-Coyote/1.1

GET /?ticket=ST-3364246-lRJXWSAfTUiNjFYiL9EE HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: fr-FR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: webapp
Connection: Keep-Alive
Cookie: MSTGC=62525161DA39B93B13AFAED6770EEDD983EAE0691C86D3A88C491098F19365AF; mod_auth_cas_cookie=181debc25f6b0a88c8f037f43b0a2b41

HTTP/1.1 302 Found
Date: Thu, 31 Mar 2011 10:12:07 GMT
Server: Apache
Set-Cookie: mod_auth_cas_cookie=2a23021e70db18db7475389b5329a0f5;Path=/
Location: http://webapp/
Cache-Control: max-age=36000
Expires: Thu, 31 Mar 2011 20:12:07 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 190
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

GET /cas/login?service=http%3a%2f%2fwebapp%2f HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: fr-FR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Cookie: CASTGC=TGC-741372-faWbawX9xcvvzPswTLS80tc0a6Hk7PTbMiBE1dVBM8m93Nb9Mg; MSTGC=62525161DA39B93B13AFAED6770EEDD983EAE0691C86D3A88C491098F19365AF
Connection: Keep-Alive
Host: cas.server

HTTP/1.1 200 OK
Pragma: no-cache
Cache-Control: no-store
Expires: Wed, 31 Dec 1969 23:59:59 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 3698
Date: Thu, 31 Mar 2011 10:12:40 GMT
Server: Apache-Coyote/1.1

GET /?ticket=ST-3364247-HUfiFAg9AQlZamqyx66z HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: fr-FR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: webapp
Connection: Keep-Alive
Cookie: MSTGC=62525161DA39B93B13AFAED6770EEDD983EAE0691C86D3A88C491098F19365AF; mod_auth_cas_cookie=2a23021e70db18db7475389b5329a0f5

HTTP/1.1 302 Found
Date: Thu, 31 Mar 2011 10:12:07 GMT
Server: Apache
Set-Cookie: mod_auth_cas_cookie=7faaee04572605b9af3d066a285b465d;Path=/
Location: http://webapp/
Cache-Control: max-age=36000
Expires: Thu, 31 Mar 2011 20:12:07 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 190
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

GET /cas/login?service=http%3a%2f%2fwebapp%2f HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: fr-FR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Cookie: CASTGC=TGC-741372-faWbawX9xcvvzPswTLS80tc0a6Hk7PTbMiBE1dVBM8m93Nb9Mg; MSTGC=62525161DA39B93B13AFAED6770EEDD983EAE0691C86D3A88C491098F19365AF
Connection: Keep-Alive
Host: cas.server

HTTP/1.1 200 OK
Pragma: no-cache
Cache-Control: no-store
Expires: Wed, 31 Dec 1969 23:59:59 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 3698
Date: Thu, 31 Mar 2011 10:12:40 GMT
Server: Apache-Coyote/1.1

Reply via email to