Hey,
I placed the right log4j and here are the results of a failed
authentication with md5 encoder (mysql db).
I tried to log in with user 'test' and the password 'test321'.
The password is kept under md5 hash (tinyblob) in the mysql db and other
web applications are able to perform a login using the very same username
and password while authenticated to the same table.
Thanks!!
2012-06-06 08:40:04,954 DEBUG
[org.springframework.web.servlet.DispatcherServlet] - DispatcherServlet
with name 'cas' processing POST request for [/cas/login]
2012-06-06 08:40:04,954 DEBUG
[org.springframework.webflow.mvc.servlet.FlowHandlerMapping] - Mapping
request with URI '/cas/login' to flow with id 'login'
2012-06-06 08:40:04,954 DEBUG
[org.springframework.webflow.executor.FlowExecutorImpl] - Resuming flow
execution with key 'e1s1
2012-06-06 08:40:04,954 DEBUG
[org.springframework.webflow.conversation.impl.SessionBindingConversationManager]
- Locking conversation 1
2012-06-06 08:40:04,954 DEBUG
[org.springframework.webflow.execution.repository.impl.DefaultFlowExecutionRepository]
- Getting flow execution with key 'e1s1'
2012-06-06 08:40:04,954 DEBUG
[org.springframework.webflow.definition.registry.FlowDefinitionRegistryImpl]
- Getting FlowDefinition with id 'login'
2012-06-06 08:40:04,957 DEBUG
[org.springframework.webflow.engine.impl.FlowExecutionImpl] - Resuming in
org.springframework.webflow.mvc.servlet.MvcExternalContext@db59df
2012-06-06 08:40:04,957 DEBUG [org.springframework.webflow.engine.Flow] -
Restoring [FlowVariable@4d4d5e name = 'credentials', valueFactory =
[BeanFactoryVariableValueFactory@1128ee5 type =
UsernamePasswordCredentials]]
2012-06-06 08:40:04,957 DEBUG
[org.springframework.webflow.mvc.view.AbstractMvcView] - Processing user
event 'submit'
2012-06-06 08:40:04,958 DEBUG
[org.springframework.webflow.mvc.view.AbstractMvcView] - Resolved model
[username: null]
2012-06-06 08:40:04,958 DEBUG
[org.springframework.webflow.mvc.view.AbstractMvcView] - Binding to model
2012-06-06 08:40:04,961 DEBUG
[org.springframework.webflow.mvc.view.AbstractMvcView] - Adding mapping for
parameter 'username'
2012-06-06 08:40:04,961 DEBUG
[org.springframework.webflow.mvc.view.AbstractMvcView] - Adding mapping for
parameter 'password'
2012-06-06 08:40:04,961 DEBUG
[org.springframework.binding.mapping.impl.DefaultMapper] - Beginning
mapping between source
[org.springframework.webflow.core.collection.LocalParameterMap] and target
[org.jasig.cas.authentication.principal.UsernamePasswordCredentials]
2012-06-06 08:40:04,964 DEBUG
[org.springframework.binding.mapping.impl.DefaultMapping] - Adding mapping
result [Success@123b9c1 mapping = parameter:'username' -> username, code =
'success', error = false, originalValue = 'test', mappedValue = 'test']
2012-06-06 08:40:04,964 DEBUG
[org.springframework.binding.mapping.impl.DefaultMapping] - Adding mapping
result [Success@786e16 mapping = parameter:'password' -> password, code =
'success', error = false, originalValue = 'test4321', mappedValue =
'test4321']
2012-06-06 08:40:04,965 DEBUG
[org.springframework.binding.mapping.impl.DefaultMapper] - Completing
mapping between source
[org.springframework.webflow.core.collection.LocalParameterMap] and target
[org.jasig.cas.authentication.principal.UsernamePasswordCredentials]; total
mappings = 2; total errors = 0
2012-06-06 08:40:04,965 DEBUG
[org.springframework.webflow.mvc.view.AbstractMvcView] - Validating model
2012-06-06 08:40:04,967 DEBUG
[org.springframework.beans.factory.support.DefaultListableBeanFactory] -
Returning cached instance of singleton bean 'credentialsValidator'
2012-06-06 08:40:04,968 DEBUG
[org.springframework.webflow.validation.ValidationHelper] - Invoking Spring
Validator 'LocalValidatorFactoryBean'
2012-06-06 08:40:04,977 DEBUG
[org.springframework.beans.factory.support.DefaultListableBeanFactory] -
Creating instance of bean
'org.hibernate.validator.constraints.impl.NotNullValidator'
2012-06-06 08:40:04,977 DEBUG
[org.springframework.beans.factory.support.DefaultListableBeanFactory] -
Finished creating instance of bean
'org.hibernate.validator.constraints.impl.NotNullValidator'
2012-06-06 08:40:04,977 DEBUG
[org.springframework.beans.factory.support.DefaultListableBeanFactory] -
Creating instance of bean
'org.hibernate.validator.constraints.impl.SizeValidatorForString'
2012-06-06 08:40:04,979 DEBUG
[org.springframework.beans.factory.support.DefaultListableBeanFactory] -
Finished creating instance of bean
'org.hibernate.validator.constraints.impl.SizeValidatorForString'
2012-06-06 08:40:04,979 DEBUG
[org.springframework.beans.factory.support.DefaultListableBeanFactory] -
Creating instance of bean
'org.hibernate.validator.constraints.impl.NotNullValidator'
2012-06-06 08:40:04,979 DEBUG
[org.springframework.beans.factory.support.DefaultListableBeanFactory] -
Finished creating instance of bean
'org.hibernate.validator.constraints.impl.NotNullValidator'
2012-06-06 08:40:04,979 DEBUG
[org.springframework.beans.factory.support.DefaultListableBeanFactory] -
Creating instance of bean
'org.hibernate.validator.constraints.impl.SizeValidatorForString'
2012-06-06 08:40:04,979 DEBUG
[org.springframework.beans.factory.support.DefaultListableBeanFactory] -
Finished creating instance of bean
'org.hibernate.validator.constraints.impl.SizeValidatorForString'
2012-06-06 08:40:04,979 DEBUG
[org.springframework.webflow.engine.ViewState] - Event 'submit' returned
from view [ServletMvcView@1e13ce3 view =
org.springframework.web.servlet.view.JstlView: name 'casLoginView'; URL
[/WEB-INF/view/jsp/default/ui/casLoginView.jsp]]
2012-06-06 08:40:04,979 DEBUG
[org.springframework.webflow.execution.ActionExecutor] - Executing
[EvaluateAction@64978b expression =
authenticationViaFormAction.doBind(flowRequestContext,
flowScope.credentials), resultExpression = [null]]
2012-06-06 08:40:04,980 DEBUG
[org.springframework.webflow.execution.AnnotatedAction] - Putting action
execution attributes map[[empty]]
2012-06-06 08:40:04,980 DEBUG
[org.springframework.beans.factory.support.DefaultListableBeanFactory] -
Returning cached instance of singleton bean 'authenticationViaFormAction'
2012-06-06 08:40:04,980 DEBUG
[org.springframework.webflow.execution.AnnotatedAction] - Clearing action
execution attributes map[[empty]]
2012-06-06 08:40:04,980 DEBUG
[org.springframework.webflow.execution.ActionExecutor] - Finished executing
[EvaluateAction@64978b expression =
authenticationViaFormAction.doBind(flowRequestContext,
flowScope.credentials), resultExpression = [null]]; result = success
2012-06-06 08:40:04,980 DEBUG
[org.springframework.webflow.engine.Transition] - Executing
[Transition@193229 on = submit, to = realSubmit]
2012-06-06 08:40:04,980 DEBUG
[org.springframework.webflow.engine.Transition] - Exiting state
'viewLoginForm'
2012-06-06 08:40:04,982 DEBUG
[org.springframework.webflow.engine.ActionState] - Entering state
'realSubmit' of flow 'login'
2012-06-06 08:40:04,982 DEBUG
[org.springframework.webflow.execution.ActionExecutor] - Executing
[EvaluateAction@16b724d expression =
authenticationViaFormAction.submit(flowRequestContext,
flowScope.credentials, messageContext), resultExpression = [null]]
2012-06-06 08:40:04,982 DEBUG
[org.springframework.webflow.execution.AnnotatedAction] - Putting action
execution attributes map[[empty]]
2012-06-06 08:40:04,982 DEBUG
[org.springframework.beans.factory.support.DefaultListableBeanFactory] -
Returning cached instance of singleton bean 'authenticationViaFormAction'
2012-06-06 08:40:04,982 DEBUG
[org.springframework.transaction.annotation.AnnotationTransactionAttributeSource]
- Adding transactional method 'createTicketGrantingTicket' with attribute:
PROPAGATION_REQUIRED,ISOLATION_DEFAULT; ''
2012-06-06 08:40:04,985 DEBUG
[org.springframework.beans.factory.support.DefaultListableBeanFactory] -
Returning cached instance of singleton bean 'transactionManager'
2012-06-06 08:40:04,985 DEBUG
[org.springframework.orm.jpa.JpaTransactionManager] - Creating new
transaction with name
[org.jasig.cas.CentralAuthenticationServiceImpl.createTicketGrantingTicket]:
PROPAGATION_REQUIRED,ISOLATION_DEFAULT; ''
2012-06-06 08:40:04,985 DEBUG
[org.springframework.orm.jpa.JpaTransactionManager] - Opened new
EntityManager [org.hibernate.ejb.EntityManagerImpl@15914f3] for JPA
transaction
2012-06-06 08:40:04,987 DEBUG
[org.springframework.orm.jpa.JpaTransactionManager] - Exposing JPA
transaction as JDBC transaction
[org.springframework.orm.jpa.vendor.HibernateJpaDialect$HibernateConnectionHandle@16e9494
]
2012-06-06 08:40:06,075 DEBUG
[org.springframework.beans.factory.support.DefaultListableBeanFactory] -
Returning cached instance of singleton bean 'auditTrailManagementAspect'
2012-06-06 08:40:06,075 DEBUG
[org.springframework.beans.factory.support.DefaultListableBeanFactory] -
Returning cached instance of singleton bean 'timingAspect'
2012-06-06 08:40:06,092 DEBUG [org.springframework.jdbc.core.JdbcTemplate]
- Executing prepared SQL query
2012-06-06 08:40:06,095 DEBUG [org.springframework.jdbc.core.JdbcTemplate]
- Executing prepared SQL statement [Select count('x') from users Where name
= ? And password = ?]
2012-06-06 08:40:09,107 INFO
[org.jasig.cas.authentication.AuthenticationManagerImpl] -
AuthenticationHandler:
org.jasig.cas.adaptors.jdbc.SearchModeSearchDatabaseAuthenticationHandler
failed to authenticate the user which provided the following credentials:
[username: test]
2012-06-06 08:40:09,111 DEBUG
[org.springframework.orm.jpa.JpaTransactionManager] - Initiating
transaction commit
2012-06-06 08:40:09,111 DEBUG
[org.springframework.orm.jpa.JpaTransactionManager] - Committing JPA
transaction on EntityManager [org.hibernate.ejb.EntityManagerImpl@15914f3]
2012-06-06 08:40:09,114 DEBUG
[org.springframework.orm.jpa.JpaTransactionManager] - Closing JPA
EntityManager [org.hibernate.ejb.EntityManagerImpl@15914f3] after
transaction
2012-06-06 08:40:09,114 DEBUG
[org.springframework.orm.jpa.EntityManagerFactoryUtils] - Closing JPA
EntityManager
2012-06-06 08:40:09,116 DEBUG
[org.springframework.binding.message.DefaultMessageContext] - Resolving
message using [DefaultMessageResolver@b41dbb source = [null], severity =
ERROR, codes = array<String>['error.authentication.credentials.bad'], args
= array<Object>[[empty]], defaultText =
'error.authentication.credentials.bad']
2012-06-06 08:40:09,116 DEBUG
[org.springframework.binding.message.DefaultMessageContext] - Adding
resolved message [Message@10c16b7 source = [null], severity = ERROR, text =
'The credentials you provided cannot be determined to be authentic.']
2012-06-06 08:40:09,116 DEBUG
[org.springframework.webflow.execution.AnnotatedAction] - Clearing action
execution attributes map[[empty]]
2012-06-06 08:40:09,116 DEBUG
[org.springframework.webflow.execution.ActionExecutor] - Finished executing
[EvaluateAction@16b724d expression =
authenticationViaFormAction.submit(flowRequestContext,
flowScope.credentials, messageContext), resultExpression = [null]]; result
= error
2012-06-06 08:40:09,116 DEBUG
[org.springframework.webflow.engine.Transition] - Executing
[Transition@a77506 on = error, to = generateLoginTicket]
2012-06-06 08:40:09,117 DEBUG
[org.springframework.webflow.engine.Transition] - Exiting state 'realSubmit'
2012-06-06 08:40:09,117 DEBUG
[org.springframework.webflow.engine.ActionState] - Entering state
'generateLoginTicket' of flow 'login'
2012-06-06 08:40:09,117 DEBUG
[org.springframework.webflow.execution.ActionExecutor] - Executing
[EvaluateAction@18a0a8 expression =
generateLoginTicketAction.generate(flowRequestContext), resultExpression =
[null]]
2012-06-06 08:40:09,117 DEBUG
[org.springframework.webflow.execution.AnnotatedAction] - Putting action
execution attributes map[[empty]]
2012-06-06 08:40:09,117 DEBUG
[org.springframework.beans.factory.support.DefaultListableBeanFactory] -
Returning cached instance of singleton bean 'generateLoginTicketAction'
2012-06-06 08:40:09,117 DEBUG
[org.springframework.webflow.execution.AnnotatedAction] - Clearing action
execution attributes map[[empty]]
2012-06-06 08:40:09,117 DEBUG
[org.springframework.webflow.execution.ActionExecutor] - Finished executing
[EvaluateAction@18a0a8 expression =
generateLoginTicketAction.generate(flowRequestContext), resultExpression =
[null]]; result = generated
2012-06-06 08:40:09,117 DEBUG
[org.springframework.webflow.engine.Transition] - Executing
[Transition@14340bb on = generated, to = viewLoginForm]
2012-06-06 08:40:09,117 DEBUG
[org.springframework.webflow.engine.Transition] - Exiting state
'generateLoginTicket'
2012-06-06 08:40:09,117 DEBUG
[org.springframework.webflow.engine.ViewState] - Entering state
'viewLoginForm' of flow 'login'
2012-06-06 08:40:09,117 DEBUG
[org.springframework.webflow.execution.ActionExecutor] - Executing
[SetAction@4ef122 name = viewScope.commandName, value = 'credentials']
2012-06-06 08:40:09,117 DEBUG
[org.springframework.webflow.execution.AnnotatedAction] - Putting action
execution attributes map[[empty]]
2012-06-06 08:40:09,117 DEBUG
[org.springframework.webflow.execution.AnnotatedAction] - Clearing action
execution attributes map[[empty]]
2012-06-06 08:40:09,117 DEBUG
[org.springframework.webflow.execution.ActionExecutor] - Finished executing
[SetAction@4ef122 name = viewScope.commandName, value = 'credentials'];
result = success
2012-06-06 08:40:09,118 DEBUG
[org.springframework.webflow.engine.impl.FlowExecutionImpl] - Assigned key
e1s2
2012-06-06 08:40:09,118 DEBUG
[org.springframework.webflow.engine.ViewState] - Rendering +
[ServletMvcView@1f40b69 view =
org.springframework.web.servlet.view.JstlView: name 'casLoginView'; URL
[/WEB-INF/view/jsp/default/ui/casLoginView.jsp]]
2012-06-06 08:40:09,118 DEBUG
[org.springframework.webflow.engine.ViewState] - Flash scope =
map[[empty]]
2012-06-06 08:40:09,118 DEBUG
[org.springframework.webflow.engine.ViewState] - Messages =
[DefaultMessageContext@1192efd sourceMessages = map[[null] ->
list[[Message@10c16b7 source = [null], severity = ERROR, text = 'The
credentials you provided cannot be determined to be authentic.']]]]
2012-06-06 08:40:09,120 DEBUG
[org.springframework.webflow.mvc.view.AbstractMvcView] - Rendering MVC
[org.springframework.web.servlet.view.JstlView: name 'casLoginView'; URL
[/WEB-INF/view/jsp/default/ui/casLoginView.jsp]] with model map
[{flowRequestContext=[RequestControlContextImpl@c62333 externalContext =
org.springframework.webflow.mvc.servlet.MvcExternalContext@db59df,
currentEvent = generated, requestScope = map[[empty]], attributes =
map[[empty]], messageContext =
[DefaultMessageContext@1192efdsourceMessages = map[[null] ->
list[[Message@10c16b7source = [null], severity = ERROR, text = 'The
credentials you provided
cannot be determined to be authentic.']]]], flowExecution =
[FlowExecutionImpl@2c3549 flow = 'login', flowSessions =
list[[FlowSessionImpl@127a1d8 flow = 'login', state = 'viewLoginForm',
scope = map['loginTicket' -> 'LT-2-7LyrsxuvqDKbSMQSYpYnPObwQyPaVe',
'service' -> [null], 'credentials' -> [username: test], 'warnCookieValue'
-> false, 'ticketGrantingTicketId' -> [null], 'viewScope' ->
map['commandName' -> 'credentials']]]]]], currentUser=null,
loginTicket=LT-2-7LyrsxuvqDKbSMQSYpYnPObwQyPaVe,
org.springframework.validation.BindingResult.credentials=org.springframework.webflow.mvc.view.BindingModel:
1 errors
Error in object 'credentials': codes []; arguments []; default message [The
credentials you provided cannot be determined to be authentic.],
flowExecutionKey=e1s2, warnCookieValue=false, flashScope=map[[empty]],
service=null, commandName=credentials, credentials=[username: test],
flowExecutionUrl=/cas/login?username=%5BLjava.lang.String%3B%401c7956b&submit=%5BLjava.lang.String%3B%4022e349&_eventId=%5BLjava.lang.String%3B%40780515<=%5BLjava.lang.String%3B%40195da41&password=%5BLjava.lang.String%3B%4012c0b3f&execution=%5BLjava.lang.String%3B%40967893,
ticketGrantingTicketId=null, viewScope=map['commandName' -> 'credentials']}]
2012-06-06 08:40:09,120 DEBUG
[org.springframework.web.servlet.view.JstlView] - Added model object
'flowRequestContext' of type
[org.springframework.webflow.engine.impl.RequestControlContextImpl] to
request in view with name 'casLoginView'
2012-06-06 08:40:09,120 DEBUG
[org.springframework.web.servlet.view.JstlView] - Removed model object
'currentUser' from request in view with name 'casLoginView'
2012-06-06 08:40:09,120 DEBUG
[org.springframework.web.servlet.view.JstlView] - Added model object
'loginTicket' of type [java.lang.String] to request in view with name
'casLoginView'
2012-06-06 08:40:09,120 DEBUG
[org.springframework.web.servlet.view.JstlView] - Added model object
'org.springframework.validation.BindingResult.credentials' of type
[org.springframework.webflow.mvc.view.BindingModel] to request in view with
name 'casLoginView'
2012-06-06 08:40:09,120 DEBUG
[org.springframework.web.servlet.view.JstlView] - Added model object
'flowExecutionKey' of type [java.lang.String] to request in view with name
'casLoginView'
2012-06-06 08:40:09,120 DEBUG
[org.springframework.web.servlet.view.JstlView] - Added model object
'warnCookieValue' of type [java.lang.Boolean] to request in view with name
'casLoginView'
2012-06-06 08:40:09,120 DEBUG
[org.springframework.web.servlet.view.JstlView] - Added model object
'flashScope' of type
[org.springframework.webflow.core.collection.LocalAttributeMap] to request
in view with name 'casLoginView'
2012-06-06 08:40:09,120 DEBUG
[org.springframework.web.servlet.view.JstlView] - Removed model object
'service' from request in view with name 'casLoginView'
2012-06-06 08:40:09,120 DEBUG
[org.springframework.web.servlet.view.JstlView] - Added model object
'commandName' of type [java.lang.String] to request in view with name
'casLoginView'
2012-06-06 08:40:09,120 DEBUG
[org.springframework.web.servlet.view.JstlView] - Added model object
'credentials' of type
[org.jasig.cas.authentication.principal.UsernamePasswordCredentials] to
request in view with name 'casLoginView'
2012-06-06 08:40:09,120 DEBUG
[org.springframework.web.servlet.view.JstlView] - Added model object
'flowExecutionUrl' of type [java.lang.String] to request in view with name
'casLoginView'
2012-06-06 08:40:09,120 DEBUG
[org.springframework.web.servlet.view.JstlView] - Removed model object
'ticketGrantingTicketId' from request in view with name 'casLoginView'
2012-06-06 08:40:09,120 DEBUG
[org.springframework.web.servlet.view.JstlView] - Added model object
'viewScope' of type
[org.springframework.webflow.core.collection.LocalAttributeMap] to request
in view with name 'casLoginView'
2012-06-06 08:40:09,120 DEBUG
[org.springframework.web.servlet.view.JstlView] - Forwarding to resource
[/WEB-INF/view/jsp/default/ui/casLoginView.jsp] in InternalResourceView
'casLoginView'
2012-06-06 08:40:09,125 DEBUG
[org.springframework.webflow.engine.Transition] - Completed transition
execution. As a result, the new state is 'viewLoginForm' in flow 'login'
2012-06-06 08:40:09,125 DEBUG
[org.springframework.webflow.engine.Transition] - Completed transition
execution. As a result, the new state is 'viewLoginForm' in flow 'login'
2012-06-06 08:40:09,125 DEBUG
[org.springframework.webflow.engine.Transition] - Completed transition
execution. As a result, the new state is 'viewLoginForm' in flow 'login'
2012-06-06 08:40:09,125 DEBUG
[org.springframework.webflow.execution.repository.impl.DefaultFlowExecutionRepository]
- Putting flow execution '[FlowExecutionImpl@2c3549 flow = 'login',
flowSessions = list[[FlowSessionImpl@127a1d8 flow = 'login', state =
'viewLoginForm', scope = map['loginTicket' ->
'LT-2-7LyrsxuvqDKbSMQSYpYnPObwQyPaVe', 'service' -> [null], 'credentials'
-> [username: test], 'warnCookieValue' -> false, 'ticketGrantingTicketId'
-> [null], 'viewScope' -> map['commandName' -> 'credentials']]]]]' into
repository
2012-06-06 08:40:09,126 DEBUG
[org.springframework.webflow.execution.repository.impl.DefaultFlowExecutionRepository]
- Adding snapshot to group with id 2
2012-06-06 08:40:09,126 DEBUG
[org.springframework.webflow.conversation.impl.SessionBindingConversationManager]
- Putting conversation attribute 'scope' with value map['flashScope' ->
map['messagesMemento' -> map[[empty]]]]
2012-06-06 08:40:09,126 DEBUG
[org.springframework.webflow.conversation.impl.SessionBindingConversationManager]
- Unlocking conversation 1
2012-06-06 08:40:09,126 DEBUG
[org.springframework.web.servlet.DispatcherServlet] - Null ModelAndView
returned to DispatcherServlet with name 'cas': assuming HandlerAdapter
completed request handling
2012-06-06 08:40:09,126 DEBUG
[org.springframework.web.servlet.DispatcherServlet] - Successfully
completed request
2012-06-06 08:41:38,061 INFO
[org.jasig.cas.services.DefaultServicesManagerImpl] - Reloading registered
services.
2012-06-06 08:41:38,062 INFO
[org.jasig.cas.services.DefaultServicesManagerImpl] - Loaded 1 services.
On Tue, Jun 5, 2012 at 3:17 PM, Marvin S. Addison
<[email protected]>wrote:
> When I try to enable the 'md5PasswordEncoder' it seems that it actually
>> influencing something and yet authentication failed.
>>
> ...
>
> Does anyone can help me to figure out why it fails??
>>
>
> I don't see anything obviously wrong with your configuration. We'll need
> to see some CAS log file output to help further. Please configure logging
> according to
> https://wiki.jasig.org/**display/CASUM/Logging<https://wiki.jasig.org/display/CASUM/Logging>and
> post the relevant log output from an authentication attempt.
>
> M
>
> --
> You are currently subscribed to [email protected] as:
> [email protected]
> To unsubscribe, change settings or access archives, see
> http://www.ja-sig.org/wiki/**display/JSG/cas-user<http://www.ja-sig.org/wiki/display/JSG/cas-user>
>
--
*
Ronen Itkin*
Taykey | www.taykey.com
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
