Anything that relies on the object being in session MUST be after the thing that puts the Assertion in the session.
Cheers, Scott On Wed, Sep 28, 2011 at 3:43 PM, Laura McCord <[email protected]>wrote: > I tried removing one of the Validation Filters and moved the CAS > Authentication Filter to be the first on the list but I still didn't get it > working. When writing custom authentication filters do they need to be > listed before the CAS Validation filter also or do they need to go after the > all CAS filters? > > Thanks, > Laura > > > On 9/28/11 12:55 PM, Marvin Addison wrote: > >> Problem is duplicate/ordering of filter mapping: >> >> >> >>> <filter-mapping> >>> <filter-name>CAS Validation Filter</filter-name> >>> <url-pattern>/CasProxyServlet<**/url-pattern> >>> </filter-mapping> >>> >>> <filter-mapping> >>> <filter-name>CAS Authentication Filter</filter-name> >>> <url-pattern>/cas/login*</url-**pattern> >>> </filter-mapping> >>> >>> <filter-mapping> >>> <filter-name>CAS Validation Filter</filter-name> >>> <url-pattern>/cas/login*</url-**pattern> >>> </filter-mapping> >>> >>> >> The order of filter invocation is determined by filter mappings, not >> filters, and you have a duplicate, which further complicates matters. >> In any case you should have exactly one validation filter mapping and >> it should follow the authentication filter mapping. Putting the >> validation filter _before_ authentication may explain the null >> principal you're seeing. >> >> M >> >> >> > > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/**display/JSG/cas-user<http://www.ja-sig.org/wiki/display/JSG/cas-user> > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
