Here is the trace file of DotNetCasClient (I replaced the URL by fake ones) :
--- DotNetCasClient.Config Information: 3237 : casServerUrlPrefix = https://mysso DateTime=2011-07-11T13:43:20.9931142Z DotNetCasClient.Config Information: 3237 : casServerLoginUrl = https://mysso/login DateTime=2011-07-11T13:43:20.9931142Z DotNetCasClient.Config Information: 3237 : ticketValidatorName = Cas20 DateTime=2011-07-11T13:43:20.9931142Z DotNetCasClient.Config Information: 3237 : ticketTimeTolerance = 1000 DateTime=2011-07-11T13:43:20.9931142Z DotNetCasClient.Config Information: 3237 : serverName = https://myaspapp DateTime=2011-07-11T13:43:20.9931142Z DotNetCasClient.Config Information: 3237 : renew = False DateTime=2011-07-11T13:43:20.9931142Z DotNetCasClient.Config Information: 3237 : gateway = False DateTime=2011-07-11T13:43:20.9931142Z DotNetCasClient.Config Information: 3237 : gatewayStatusCookieName = cas_gateway_status DateTime=2011-07-11T13:43:20.9931142Z DotNetCasClient.Config Information: 3237 : redirectAfterValidation = True DateTime=2011-07-11T13:43:20.9931142Z DotNetCasClient.Config Information: 3237 : singleSignOut = True DateTime=2011-07-11T13:43:20.9931142Z DotNetCasClient.Config Information: 3237 : serviceTicketManagerProvider = CacheServiceTicketManager DateTime=2011-07-11T13:43:20.9931142Z DotNetCasClient.Config Information: 3237 : proxyTicketManagerProvider = DateTime=2011-07-11T13:43:20.9931142Z DotNetCasClient.Config Information: 3237 : notAuthorizedUrl = ~/ERR01.aspx DateTime=2011-07-11T13:43:20.9931142Z DotNetCasClient.Config Information: 3237 : cookiesRequiredUrl = ~/ERR01.aspx DateTime=2011-07-11T13:43:20.9931142Z DotNetCasClient.Config Information: 3237 : gatewayParameterName = gatewayResponse DateTime=2011-07-11T13:43:20.9931142Z DotNetCasClient.Config Information: 3237 : proxyCallbackParameterName = proxyResponse DateTime=2011-07-11T13:43:20.9931142Z DotNetCasClient.HttpModule Information: 3237 : Redirecting to CAS Login Page DateTime=2011-07-11T13:43:21.3368774Z DotNetCasClient.Protocol Information: 3237 : Redirecting to https://mysso/login?service=https%3a%2f%2fmyaspapp%2fIIA%2fForms%2fMesCollegues%2fMCL02.aspx DateTime=2011-07-11T13:43:21.3368774Z DotNetCasClient.HttpModule Information: 3237 : Processing Proxy Callback request DateTime=2011-07-11T13:43:33.1498310Z DotNetCasClient.Protocol Verbose: 3237 : Constructed validation URL https://mysso/serviceValidate?service=https%3a%2f%2fmyaspapp%2fIIA%2fForms%2fMesCollegues%2fMCL02.aspx&ticket=ST-517-Z9g1PTLP1z2MNbgvIe4P-cas DateTime=2011-07-11T13:43:33.1498310Z DotNetCasClient.Protocol Verbose: 3237 : Ticket validation response: <cas:serviceResponse xmlns:cas='http://www.yale.edu/tp/cas'> <cas:authenticationFailure code='INVALID_TICKET'> le ticket 'ST-517-Z9g1PTLP1z2MNbgvIe4P-cas' est inconnu </cas:authenticationFailure> </cas:serviceResponse> DateTime=2011-07-11T13:44:03.4634950Z DotNetCasClient.Protocol Error: 3237 : Ticket validation error: DotNetCasClient.Validation.TicketValidationException: CAS ticket could not be validated. à DotNetCasClient.Validation.TicketValidator.Cas20ServiceTicketValidator.ParseResponseFromServer(String response, String ticket) à DotNetCasClient.Validation.TicketValidator.AbstractUrlTicketValidator.Validate(String ticket) à DotNetCasClient.CasAuthentication.ProcessTicketValidation() DateTime=2011-07-11T13:44:03.7916326Z DotNetCasClient.HttpModule Information: 3237 : Redirecting from login callback DateTime=2011-07-11T13:44:03.7916326Z DotNetCasClient.HttpModule Information: 3237 : Redirecting to CAS Login Page DateTime=2011-07-11T13:44:03.7916326Z DotNetCasClient.Protocol Information: 3237 : Redirecting to https://mysso/login?service=https%3a%2f%2fmyaspapp%2fIIA%2fForms%2fMesCollegues%2fMCL02.aspx DateTime=2011-07-11T13:44:03.7916326Z DotNetCasClient.HttpModule Information: 3237 : Processing Proxy Callback request DateTime=2011-07-11T13:44:03.8697606Z DotNetCasClient.Protocol Verbose: 3237 : Constructed validation URL https://mysso/serviceValidate?service=https%3a%2f%2fmyaspapp%2fIIA%2fForms%2fMesCollegues%2fMCL02.aspx&ticket=ST-518-Mdhe5iVdFakqk0IHkzK0-cas DateTime=2011-07-11T13:44:03.8697606Z DotNetCasClient.Protocol Verbose: 3237 : Ticket validation response: <cas:serviceResponse xmlns:cas='http://www.yale.edu/tp/cas'> <cas:authenticationSuccess> <cas:user>epiot</cas:user> </cas:authenticationSuccess> </cas:serviceResponse> DateTime=2011-07-11T13:44:03.8853862Z DotNetCasClient.Protocol Verbose: 3237 : Creating FormsAuthenticationTicket for ST-518-Mdhe5iVdFakqk0IHkzK0-cas DateTime=2011-07-11T13:44:03.9010118Z DotNetCasClient.HttpModule Information: 3237 : Redirecting from login callback DateTime=2011-07-11T13:44:03.9010118Z --- As you can see, there is one "ticket validation error", which represent the biggest loss of time (30 secs) + another 12 secs loss a bit earlier. The validation error does not occur every time... De : Marvin Addison <[email protected]> A : [email protected] Date : 11/07/2011 15:28 Objet : Re: [cas-user] Problem between CAS and ASP.NET application The next troubleshooting step is to share the client-side log/trace file. M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
