I'm trying to setup CAS with Spring Security and without getting any errors, it
isn't working at all. I can see the protected pages, without being challenged
for my credentials. What i have included in my webapp/webinf/lib can be seen in
the lib.txt file. I have also attached the web.xml and appcontext-sec.xml
files. What am I doing wrong ? I'm using Tomcat 7.0.5 from the XAMPP suite, CAS
Server 3.4.6 and the acegisecurity-spring-security-parent-2.0.4 as my
application downloaded from
http://acegisecurity.svn.sourceforge.net/viewvc/acegisecurity/spring-security/tags/acegi-security-parent-1.0.7/
Is there any need to have a applicationContext.xml in my webinf dir ? I tried
with one but with no success.
Hope you can help with this.
Thank you in advance.
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
<?xml version="1.0" encoding="UTF-8"?>
<beans xmlns="http://www.springframework.org/schema/beans";
xmlns:sec="http://www.springframework.org/schema/security";
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance";
xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-2.0.xsd
http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security-2.0.xsd";>
<sec:http entry-point-ref="casProcessingFilterEntryPoint">
<sec:intercept-url pattern="casclient1/samples/cas/client/src/main/webapp/secure/extreme/**" access="ROLE_SUPERVISOR" requires-channel="https"/>
<sec:intercept-url pattern="casclient1/samples/cas/client/src/main/webapp/secure/**" access="ROLE_USER" />
<sec:logout logout-success-url="/cas-logout.jsp"/>
</sec:http>
<sec:authentication-manager alias="authenticationManager"/>
<bean id="casProcessingFilter" class="org.springframework.security.ui.cas.CasProcessingFilter">
<sec:custom-filter after="CAS_PROCESSING_FILTER"/>
<property name="authenticationManager" ref="authenticationManager"/>
<property name="authenticationFailureUrl" value="/casfailed.jsp"/>
<property name="defaultTargetUrl" value="/"/>
<property name="proxyGrantingTicketStorage" ref="proxyGrantingTicketStorage" />
<property name="proxyReceptorUrl" value="/secure/receptor" />
</bean>
<bean id="casProcessingFilterEntryPoint" class="org.springframework.security.ui.cas.CasProcessingFilterEntryPoint">
<property name="loginUrl" value="https://localhost:8443/cas/login"/>
<property name="serviceProperties" ref="serviceProperties"/>
</bean>
<bean id="casAuthenticationProvider" class="org.springframework.security.providers.cas.CasAuthenticationProvider">
<sec:custom-authentication-provider />
<property name="userDetailsService" ref="userService"/>
<property name="serviceProperties" ref="serviceProperties" />
<property name="ticketValidator">
<bean class="org.jasig.cas.client.validation.Cas20ServiceTicketValidator">
<constructor-arg index="0" value="https://localhost:8443/cas"; />
<property name="proxyGrantingTicketStorage" ref="proxyGrantingTicketStorage" />
<property name="proxyCallbackUrl" value="https://localhost:8443/casclient1/samples/cas/client/src/main/webapp/secure/receptor"; />
</bean>
</property>
<property name="key" value="an_id_for_this_auth_provider_only"/>
</bean>
<bean id="proxyGrantingTicketStorage" class="org.jasig.cas.client.proxy.ProxyGrantingTicketStorageImpl" />
<bean id="serviceProperties" class="org.springframework.security.ui.cas.ServiceProperties">
<property name="service" value="https://localhost:8443/casclient1/samples/cas/client/src/main/webapp/j_spring_cas_security_check"/>
<property name="sendRenew" value="false"/>
</bean>
<sec:user-service id="userService">
<sec:user name="rod" password="rod" authorities="ROLE_SUPERVISOR,ROLE_USER" />
<sec:user name="dianne" password="dianne" authorities="ROLE_USER" />
<sec:user name="scott" password="scott" authorities="ROLE_USER" />
</sec:user-service>
</beans><?xml version="1.0" encoding="ISO-8859-1"?>
<!--
Copyright 2004 The Apache Software Foundation
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
-->
<web-app xmlns="http://java.sun.com/xml/ns/j2ee";
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance";
xsi:schemaLocation="http://java.sun.com/xml/ns/j2ee http://java.sun.com/xml/ns/j2ee/web-app_2_4.xsd";
version="2.4">
<display-name>Tomcat Manager Application</display-name>
<description>
A scriptable management web application for the Tomcat Web Server;
Manager lets you view, load/unload/etc particular web applications.
</description>
<context-param>
<param-name>contextConfigLocation</param-name>
<param-value>
/WEB-INF/applicationContext.xml
</param-value>
</context-param>
<filter>
<filter-name>CAS Authentication Filter</filter-name>
<filter-class>org.springframework.web.filter.DelegatingFilterProxy</filter-class>
<init-param>
<param-name>targetBeanName</param-name>
<param-value>authenticationFilter</param-value>
</init-param>
</filter>
<filter>
<filter-name>CAS Validation Filter</filter-name>
<filter-class>org.springframework.web.filter.DelegatingFilterProxy</filter-class>
<init-param>
<param-name>targetBeanName</param-name>
<param-value>validationFilter</param-value>
</init-param>
</filter>
<filter>
<filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
<filter-class>org.jasig.cas.client.util.HttpServletRequestWrapperFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>CAS Authentication Filter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<filter-mapping>
<filter-name>CAS Validation Filter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<filter-mapping>
<filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<listener>
<listener-class>
org.springframework.web.context.ContextLoaderListener
</listener-class>
</listener>
<!-- Define the Manager Servlet
Change servlet-class to: org.apache.catalina.servlets.HTMLManagerServlet
to get a Servlet with a more intuitive HTML interface, don't change if you
have software that is expected to parse the output from ManagerServlet
since they're not compatible.
-->
<servlet>
<servlet-name>Manager</servlet-name>
<servlet-class>org.apache.catalina.manager.ManagerServlet</servlet-class>
<init-param>
<param-name>debug</param-name>
<param-value>2</param-value>
</init-param>
</servlet>
<servlet>
<servlet-name>HTMLManager</servlet-name>
<servlet-class>org.apache.catalina.manager.HTMLManagerServlet</servlet-class>
<init-param>
<param-name>debug</param-name>
<param-value>2</param-value>
</init-param>
</servlet>
<servlet>
<servlet-name>Status</servlet-name>
<servlet-class>org.apache.catalina.manager.StatusManagerServlet</servlet-class>
<init-param>
<param-name>debug</param-name>
<param-value>0</param-value>
</init-param>
</servlet>
<servlet>
<servlet-name>JMXProxy</servlet-name>
<servlet-class>org.apache.catalina.manager.JMXProxyServlet</servlet-class>
</servlet>
<!-- Define the Manager Servlet Mapping -->
<servlet-mapping>
<servlet-name>Manager</servlet-name>
<url-pattern>/list</url-pattern>
</servlet-mapping>
<servlet-mapping>
<servlet-name>Manager</servlet-name>
<url-pattern>/sessions</url-pattern>
</servlet-mapping>
<servlet-mapping>
<servlet-name>Manager</servlet-name>
<url-pattern>/start</url-pattern>
</servlet-mapping>
<servlet-mapping>
<servlet-name>Manager</servlet-name>
<url-pattern>/stop</url-pattern>
</servlet-mapping>
<servlet-mapping>
<servlet-name>Manager</servlet-name>
<url-pattern>/install</url-pattern>
</servlet-mapping>
<servlet-mapping>
<servlet-name>Manager</servlet-name>
<url-pattern>/remove</url-pattern>
</servlet-mapping>
<servlet-mapping>
<servlet-name>Manager</servlet-name>
<url-pattern>/deploy</url-pattern>
</servlet-mapping>
<servlet-mapping>
<servlet-name>Manager</servlet-name>
<url-pattern>/undeploy</url-pattern>
</servlet-mapping>
<servlet-mapping>
<servlet-name>Manager</servlet-name>
<url-pattern>/reload</url-pattern>
</servlet-mapping>
<servlet-mapping>
<servlet-name>Manager</servlet-name>
<url-pattern>/save</url-pattern>
</servlet-mapping>
<servlet-mapping>
<servlet-name>Manager</servlet-name>
<url-pattern>/serverinfo</url-pattern>
</servlet-mapping>
<servlet-mapping>
<servlet-name>Manager</servlet-name>
<url-pattern>/roles</url-pattern>
</servlet-mapping>
<servlet-mapping>
<servlet-name>Manager</servlet-name>
<url-pattern>/resources</url-pattern>
</servlet-mapping>
<servlet-mapping>
<servlet-name>Status</servlet-name>
<url-pattern>/status/*</url-pattern>
</servlet-mapping>
<servlet-mapping>
<servlet-name>JMXProxy</servlet-name>
<url-pattern>/jmxproxy/*</url-pattern>
</servlet-mapping>
<servlet-mapping>
<servlet-name>HTMLManager</servlet-name>
<url-pattern>/html/*</url-pattern>
</servlet-mapping>
</web-app>
12.12.2010 22:47 62.983 activation-1.1.jar
12.12.2010 22:46 443.432 antlr-2.7.6.jar
12.12.2010 22:46 4.467 aopalliance-1.0.jar
17.01.2011 23:26 116.226 aspectjrt-1.6.10.jar
18.01.2011 20:32 1.675.810 aspectjweaver-1.6.10.jar
16.12.2010 01:27 64.855 cas-client-core-3.1.10.jar
17.03.2011 23:24 409.883 cas-server-core-3.4.6.jar
12.12.2010 22:47 58.160 commons-codec-1.4.jar
12.12.2010 22:46 575.389 commons-collections-3.2.1.jar
12.12.2010 22:46 159.235 commons-io-2.0.jar
12.12.2010 22:47 132.165 commons-jexl-1.1.jar
29.12.2010 00:50 279.193 commons-lang-2.5.jar
02.12.2010 22:41 52.915 commons-logging-1.1.jar
12.12.2010 22:46 313.898 dom4j-1.6.1.jar
12.12.2010 22:47 71.283
hibernate-commons-annotations-3.2.0.Final.jar
12.12.2010 22:47 3.083.100 hibernate-core-3.6.0.Final.jar
12.12.2010 22:47 100.884 hibernate-jpa-2.0-api-1.0.0.Final.jar
18.12.2010 14:02 226.653 hibernate-validator-4.0.2.GA.jar
25.01.2011 23:01 17.150 inspektr-audit-1.0.2.GA.jar
25.01.2011 23:01 7.093 inspektr-common-1.0.2.GA.jar
25.01.2011 23:01 5.582 inspektr-error-1.0.2.GA.jar
25.01.2011 23:01 13.840 inspektr-support-spring-1.0.2.GA.jar
18.12.2010 14:02 544.021 javassist-3.7.ga.jar
12.12.2010 22:47 89.967 jaxb-api-2.1.jar
18.12.2010 14:02 843.569 jaxb-impl-2.1.3.jar
18.12.2010 14:01 17.097 jcl-over-slf4j-1.5.8.jar
18.12.2010 14:01 153.253 jdom-1.0.jar
12.12.2010 22:50 20.682 jstl-1.1.2.jar
09.03.2010 17:06 16.905 jstl.jar
12.12.2010 22:47 15.071 jta-1.1.jar
12.12.2010 22:47 391.834 log4j-1.2.15.jar
18.12.2010 14:02 239.803 ognl-2.7.3.jar
18.12.2010 14:01 155.714 opensaml-1.1b.jar
12.12.2010 22:47 96.749 perf4j-0.9.14-log4jonly.jar
12.12.2010 22:47 3.463 person-directory-api-1.5.0-RC6.jar
12.12.2010 22:47 108.231 person-directory-impl-1.5.0-RC6.jar
12.12.2010 22:50 445.090 quartz-1.6.1.jar
18.12.2010 14:01 23.445 slf4j-api-1.5.8.jar
18.12.2010 14:01 9.679 slf4j-log4j12-1.5.8.jar
12.12.2010 22:47 321.190 spring-aop-3.0.5.RELEASE.jar
12.12.2010 22:47 53.082 spring-asm-3.0.5.RELEASE.jar
12.12.2010 22:46 555.410 spring-beans-3.0.5.RELEASE.jar
18.12.2010 14:01 150.849 spring-binding-2.2.1.RELEASE.jar
12.12.2010 22:47 668.861 spring-context-3.0.5.RELEASE.jar
12.12.2010 22:47 100.870 spring-context-support-3.0.5.RELEASE.jar
12.12.2010 22:47 382.442 spring-core-3.0.5.RELEASE.jar
05.04.2011 18:01 130.199 spring-dao-2.0.8.jar
12.12.2010 22:47 169.752 spring-expression-3.0.5.RELEASE.jar
12.12.2010 22:47 385.712 spring-jdbc-3.0.5.RELEASE.jar
18.12.2010 14:01 17.655 spring-js-2.2.1.RELEASE.jar
18.12.2010 14:01 4.458.068 spring-js-resources-2.2.1.RELEASE.jar
12.12.2010 22:47 334.327 spring-orm-3.0.5.RELEASE.jar
05.04.2011 18:03 78.088 spring-security-acl-3.0.5.RELEASE.jar
12.12.2010 22:50 19.330 spring-security-cas-client-3.0.5.RELEASE.jar
12.12.2010 22:50 185.716 spring-security-config-3.0.5.RELEASE.jar
12.12.2010 22:50 311.038 spring-security-core-3.0.5.RELEASE.jar
05.04.2011 18:05 7.742 spring-security-core-tiger-2.0.6.RELEASE.jar
05.04.2011 18:06 18.883 spring-security-taglibs-3.0.5.RELEASE.jar
12.12.2010 22:50 242.833 spring-security-web-3.0.5.RELEASE.jar
05.04.2011 18:07 117.045 spring-support-2.0.8.jar
12.12.2010 22:47 231.922 spring-tx-3.0.5.RELEASE.jar
12.12.2010 22:47 395.587 spring-web-3.0.5.RELEASE.jar
18.12.2010 14:01 522.365 spring-webflow-2.2.1.RELEASE.jar
12.12.2010 22:47 418.977 spring-webmvc-3.0.5.RELEASE.jar
12.12.2010 22:50 393.259 standard-1.1.2.jar
09.03.2010 17:06 293.750 standard.jar
12.12.2010 22:46 23.346 stax-api-1.0-2.jar
12.12.2010 22:45 47.433 validation-api-1.0.0.GA.jar
18.12.2010 14:01 159.930 xmldsig-1.0.jar
12.12.2010 22:46 447.633 xmlsec-1.4.3.jar
70 File(s) 22.692.063 bytes
2 Dir(s) 14.766.612.480 bytes free
