> Accessing https://192.168.1.110:8443/cas/login?service=http://localhost/foo > got http://localhost/foo?ticket=ST-2-4genuO4xK3WXQ1vPPd2l-cas > and whenwe access this url : > https://192.168.1.110:8443/cas/samlValidate?TARGET=http://localhost/foo&ticket=ST-2-4genuO4xK3WXQ1vPPd2l-cas > > the output is as follows: > > -------------------------------------------------------------------- > <SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/";> > <SOAP-ENV:Header/> > <SOAP-ENV:Body> > <Response xmlns="urn:oasis:names:tc:SAML:1.0:protocol" > xmlns:saml="urn:oasis:names:tc:SAML:1.0:assertion" > xmlns:samlp="urn:oasis:names:tc:SAML:1.0:protocol"xmlns:xsd="http://www.w3.org/2001/XMLSchema"; > xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"; > IssueInstant="2012-01-10T11:18:23.724Z" MajorVersion="1" > MinorVersion="1"Recipient="http://localhost/foo"; > ResponseID="_8831a64c0acb079503f8ee5de5423d10"> > <Status> > <StatusCode Value="samlp:Responder"/> > <StatusMessage> > 'service' and 'ticket' parameters are both required > </StatusMessage> > </Status> > </Response> > </SOAP-ENV:Body> > </SOAP-ENV:Envelope> > ------------------------------------------
This is expected behavior. You're issuing a GET request simply with querystring parameters, which is not a valid SAML request. You need to send a SAML request POST message; study https://source.jasig.org/cas-clients/java-client/trunk/cas-client-core/src/main/java/org/jasig/cas/client/validation/Saml11TicketValidator.java for more information. While it may be reasonable to construct requests manually for development and integration testing, it's strongly advised that you use an existing CAS client to do the work of protocol messaging for you. M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
