Hi Khurram, please have a look at the phpcas debug log. [1]
Take a look at the debug trace and if your cannot see any error yourself just share the full debug log of a single login attempt here (mask ips and dns names).
I must say i don't quiet understand what your doing in the production environment. Not sure if i understand you correct but using a "&ticket=" variable does interfere with the cas protocol. This variable reserved for returning the ST or PTs from the CAS server.
I common cause of multiple redirects is a broken session support on the server (session storage?) and broken session storage on the client (no cookie support?). Please have a look at the webserver and phpcas log.
Regards, Joachim [1]https://wiki.jasig.org/display/CASC/phpCAS+troubleshooting On 30.04.2012 12:59, khurram shahzad wrote:
Hi All, I am using CAS with the phpCAS application I am working on. We are using the phpCAS client. We had setup our online demo server everything worked well there. Even authentication and login worked great. Now when we are changing our servers to our client's cas Server, what they do is add a ticket in front of return URL. This ticket makes our client to crash. If I remote the &ticket=xxx from the return URL my client works great. Though the phpCAS have internal ticket removing mechanism with removes the ticket and redirects to same url without ticket, but somehow in my cas on redirect as well it adds the &ticket =xxx with that. Also I tried a manual removal of ticket and redirect to same but that also somehow reappends the ticket with that. For PHP i am using zend framework and phpCAS client into that. I even tried the phpCAS::setNoClearTicketsFromUrl(); in that case as well my issue remains. On removal and redirect I am not sure why it adds ticket again and come up with error, may be browser security or something with zend. So, is there a solution to that or we will have to request our Client to remove the &ticket=xxx from there return URL? Many Thanks, Khurram
-- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
