Hi Jérôme, I am also impacted (in a bit different way) by the new class added to CAS 3.5.1...Here is the stacktrace i get when trying to re-authenticate by re-deploying my tomcat server without logging out (hot deploy)
Aubin Rukera via<http://support.google.com/mail/bin/answer.py?hl=fr&ctx=mail&answer=1311182> lists.wisc.edu 14 déc. (Il y a 3 jours) à cas-user I have tuned logging in org.jasig.cas.web.flow, and I got this stacktrace when re-authentication fails 2012-12-14 09:32:32,400 DEBUG [org.jasig.cas.web.flow.InitialFlowSetupAction] - <Placing service in FlowScope: https://localhost:8443/test.jsf> 2012-12-14 09:32:32,402 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit trail record BEGIN ============================================================= WHO: audit:unknown WHAT: https://localhost:8443/test.jsf ACTION: SERVICE_TICKET_NOT_CREATED APPLICATION: CAS WHEN: Fri Dec 14 09:32:32 UTC 2012 CLIENT IP ADDRESS: 127.0.0.1 SERVER IP ADDRESS: 127.0.0.1 ============================================================= > 2012-12-14 09:32:32,403 DEBUG [org.jasig.cas.web.flow.GenerateLoginTicketAction] - <Generated login ticket LT-3-A7zlijRrNjZyxD3jjh0Sir7tgzql6v> 2012-12-14 09:32:37,832 DEBUG [org.jasig.cas.web.flow.TerminateWebSessionListener] - <Terminate web session D83FA19B581FB18F9CDCD840FF66DA8B in 2 seconds> 2012-12-14 09:32:39,554 DEBUG [org.jasig.cas.web.flow.TerminateWebSessionListener] - <Terminate web session D83FA19B581FB18F9CDCD840FF66DA8B in 2 seconds> 2012-12-14 09:33:51,626 DEBUG [org.jasig.cas.web.flow.TerminateWebSessionListener] - <Error getting service from flow state.> java.lang.IllegalStateException: No active FlowSession to access; this FlowExecution has ended at org.springframework.webflow.engine.impl.FlowExecutionImpl.getActiveSession(FlowExecutionImpl.java:191) at org.springframework.webflow.engine.impl.RequestControlContextImpl.getFlowScope(RequestControlContextImpl.java:134) at org.jasig.cas.web.support.WebUtils.getService_aroundBody8(WebUtils.java:87) at org.jasig.cas.web.support.WebUtils.getService_aroundBody9$advice(WebUtils.java:57) at org.jasig.cas.web.support.WebUtils.getService(WebUtils.java:1) at org.jasig.cas.web.flow.TerminateWebSessionListener.sessionStarted_aroundBody0(TerminateWebSessionListener.java:62) at org.jasig.cas.web.flow.TerminateWebSessionListener.sessionStarted_aroundBody1$advice(TerminateWebSessionListener.java:57) at org.jasig.cas.web.flow.TerminateWebSessionListener.sessionStarted(TerminateWebSessionListener.java:1) at org.springframework.webflow.engine.impl.FlowExecutionListeners.fireSessionStarted(FlowExecutionListeners.java:126) at org.springframework.webflow.engine.impl.FlowExecutionImpl.start(FlowExecutionImpl.java:367) at org.springframework.webflow.engine.impl.FlowExecutionImpl.start(FlowExecutionImpl.java:225) at org.springframework.webflow.executor.FlowExecutorImpl.launchExecution(FlowExecutorImpl.java:140) at org.springframework.webflow.mvc.servlet.FlowHandlerAdapter.handle(FlowHandlerAdapter.java:193) at org.springframework.web.servlet.DispatcherServlet.doDispatch(DispatcherServlet.java:923) at org.springframework.web.servlet.DispatcherServlet.doService(DispatcherServlet.java:852) at org.springframework.web.servlet.FrameworkServlet.processRequest(FrameworkServlet.java:882) at org.springframework.web.servlet.FrameworkServlet.doGet(FrameworkServlet.java:778) at javax.servlet.http.HttpServlet.service(HttpServlet.java:621) at javax.servlet.http.HttpServlet.service(HttpServlet.java:722) at org.jasig.cas.web.init.SafeDispatcherServlet.service_aroundBody2(SafeDispatcherServlet.java:128) at org.jasig.cas.web.init.SafeDispatcherServlet.service_aroundBody3$advice(SafeDispatcherServlet.java:57) at org.jasig.cas.web.init.SafeDispatcherServlet.service(SafeDispatcherServlet.java:1) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:305) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210) at org.springframework.web.filter.CharacterEncodingFilter.doFilterInternal(CharacterEncodingFilter.java:88) at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:76) at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:346) at org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:259) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:243) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210) at com.github.inspektr.common.web.ClientInfoThreadLocalFilter.doFilter(ClientInfoThreadLocalFilter.java:63) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:243) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:225) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:169) at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:472) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:168) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:98) at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:927) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:118) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:407) at org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:999) at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:565) at org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:307) at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908) at java.lang.Thread.run(Thread.java:662) 2012-12-14 09:33:51,632 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] - <Reloading registered services.> 2012-12-14 09:33:51,627 DEBUG [org.jasig.cas.web.flow.TerminateWebSessionListener] - <Error getting service from flow state.> java.lang.IllegalStateException: No active FlowSession to access; this FlowExecution has ended at org.springframework.webflow.engine.impl.FlowExecutionImpl.getActiveSession(FlowExecutionImpl.java:191) at org.springframework.webflow.engine.impl.RequestControlContextImpl.getFlowScope(RequestControlContextImpl.java:134) at org.jasig.cas.web.support.WebUtils.getService_aroundBody8(WebUtils.java:87) at org.jasig.cas.web.support.WebUtils.getService_aroundBody9$advice(WebUtils.java:57) at org.jasig.cas.web.support.WebUtils.getService(WebUtils.java:1) at org.jasig.cas.web.flow.TerminateWebSessionListener.sessionStarted_aroundBody0(TerminateWebSessionListener.java:62) at org.jasig.cas.web.flow.TerminateWebSessionListener.sessionStarted_aroundBody1$advice(TerminateWebSessionListener.java:57) at org.jasig.cas.web.flow.TerminateWebSessionListener.sessionStarted(TerminateWebSessionListener.java:1) at org.springframework.webflow.engine.impl.FlowExecutionListeners.fireSessionStarted(FlowExecutionListeners.java:126) at org.springframework.webflow.engine.impl.FlowExecutionImpl.start(FlowExecutionImpl.java:367) at org.springframework.webflow.engine.impl.FlowExecutionImpl.start(FlowExecutionImpl.java:225) at org.springframework.webflow.executor.FlowExecutorImpl.launchExecution(FlowExecutorImpl.java:140) at org.springframework.webflow.mvc.servlet.FlowHandlerAdapter.handle(FlowHandlerAdapter.java:193) at org.springframework.web.servlet.DispatcherServlet.doDispatch(DispatcherServlet.java:923) at org.springframework.web.servlet.DispatcherServlet.doService(DispatcherServlet.java:852) at org.springframework.web.servlet.FrameworkServlet.processRequest(FrameworkServlet.java:882) at org.springframework.web.servlet.FrameworkServlet.doGet(FrameworkServlet.java:778) at javax.servlet.http.HttpServlet.service(HttpServlet.java:621) at javax.servlet.http.HttpServlet.service(HttpServlet.java:722) at org.jasig.cas.web.init.SafeDispatcherServlet.service_aroundBody2(SafeDispatcherServlet.java:128) at org.jasig.cas.web.init.SafeDispatcherServlet.service_aroundBody3$advice(SafeDispatcherServlet.java:57) at org.jasig.cas.web.init.SafeDispatcherServlet.service(SafeDispatcherServlet.java:1) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:305) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210) at org.springframework.web.filter.CharacterEncodingFilter.doFilterInternal(CharacterEncodingFilter.java:88) at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:76) at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:346) at org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:259) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:243) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210) at com.github.inspektr.common.web.ClientInfoThreadLocalFilter.doFilter(ClientInfoThreadLocalFilter.java:63) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:243) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:225) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:169) at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:472) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:168) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:98) at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:927) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:118) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:407) at org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:999) at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:565) at org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:307) at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908) at java.lang.Thread.run(Thread.java:662) 2012-12-14 09:33:51,632 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] - <Loaded 4 services.> Aubin Rukera via<http://support.google.com/mail/bin/answer.py?hl=fr&ctx=mail&answer=1311182> lists.wisc.edu 14 déc. (Il y a 3 jours) à cas-user Here is the stacktrace on the first successful authentication : 2012-12-14 09:36:13,353 INFO [org.jasig.cas.authentication.AuthenticationManagerImpl] - <org.jasig.cas.adaptors.jdbc.QueryDatabaseAuthenticationHandler successfully authenticated [username: test]> 2012-12-14 09:36:13,354 INFO [org.jasig.cas.authentication.AuthenticationManagerImpl] - <Resolved principal test> 2012-12-14 09:36:13,354 INFO [org.jasig.cas.authentication.AuthenticationManagerImpl] - <Principal found: test> 2012-12-14 09:36:13,359 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit trail record BEGIN ============================================================= WHO: [username: test] WHAT: supplied credentials: [username: test] ACTION: AUTHENTICATION_SUCCESS APPLICATION: CAS WHEN: Fri Dec 14 09:36:13 UTC 2012 CLIENT IP ADDRESS: 127.0.0.1 SERVER IP ADDRESS: 127.0.0.1 ============================================================= > 2012-12-14 09:36:13,364 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit trail record BEGIN ============================================================= WHO: [username: test] WHAT: TGT-1-r9vjsEXj0HSO5RBcA2QDf5tRmktrj07ieqvOmYEbUwY1Lj5tMR-localhost ACTION: TICKET_GRANTING_TICKET_CREATED APPLICATION: CAS WHEN: Fri Dec 14 09:36:13 UTC 2012 CLIENT IP ADDRESS: 127.0.0.1 SERVER IP ADDRESS: 127.0.0.1 ============================================================= > 2012-12-14 09:36:13,370 INFO [org.jasig.cas.CentralAuthenticationServiceImpl] - <Granted service ticket [ST-1-YhHcPlSpax0pgRPSvxgq-localhost] for service https://localhost:8443/test.jsf for user [test]> 2012-12-14 09:36:13,371 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit trail record BEGIN ============================================================= WHO: test WHAT: ST-1-YhHcPlSpax0pgRPSvxgq-localhost for https://localhost:8443/test.jsf ACTION: SERVICE_TICKET_CREATED APPLICATION: CAS WHEN: Fri Dec 14 09:36:13 UTC 2012 CLIENT IP ADDRESS: 127.0.0.1 SERVER IP ADDRESS: 127.0.0.1 ============================================================= > 2012-12-14 09:36:20,160 DEBUG [org.jasig.cas.web.flow.TerminateWebSessionListener] - <Terminate web session 9F7A1282031B353483C59BA133E66A88 in 2 seconds> 2012-12-14 09:36:22,117 DEBUG [org.jasig.cas.web.flow.InitialFlowSetupAction] - <Placing service in FlowScope: https://localhost:8443/test.jsf> 2012-12-14 09:36:22,118 INFO [org.jasig.cas.CentralAuthenticationServiceImpl] - <Granted service ticket [ST-2-MTFx9icSCgt1UmerTMdI-localhost] for service https://localhost:8443/test.jsf for user [test]> 2012-12-14 09:36:22,118 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit trail record BEGIN ============================================================= WHO: test WHAT: ST-2-MTFx9icSCgt1UmerTMdI-localhost for https://localhost:8443/test.jsf ACTION: SERVICE_TICKET_CREATED APPLICATION: CAS WHEN: Fri Dec 14 09:36:22 UTC 2012 CLIENT IP ADDRESS: 127.0.0.1 SERVER IP ADDRESS: 127.0.0.1 ============================================================= > 2012-12-14 09:36:23,512 DEBUG [org.jasig.cas.web.flow.TerminateWebSessionListener] - <Terminate web session D982A3A1EC30DFAB90C5CF2C26B5EDEE in 2 seconds> 2012-12-14 09:36:24,073 DEBUG [org.jasig.cas.web.flow.TerminateWebSessionListener] - <Error getting service from flow state.> at org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:309) at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908) at java.lang.Thread.run(Thread.java:662) DEBUG - 2012-12-14 09:36:24,084 - FilterChainProxy.getFilters(193) Aubin Rukera via<http://support.google.com/mail/bin/answer.py?hl=fr&ctx=mail&answer=1311182> lists.wisc.edu 14 déc. (Il y a 3 jours) à cas-user As a workaround, I commented out these lines in cas-servlet.xml : <!--<webflow:flow-execution-listeners> <webflow:listener ref="terminateWebSessionListener" /> </webflow:flow-execution-listeners>--> It seems that the new class org.jasig.cas.web.flow.TerminateWebSessionListener added to CAS 3.5.1 is causing this issue. Now It works fine. Thanks, Aubin 2012/12/14 jleleu <[email protected]> > Hi, > > I did several tests but I can't reproduce the issue. > I call http://localhost:8080/cas/login?service=http://www.google.fr and > log in, I'm redirected to google with a service ticket. > I wait some time (from a few seconds to several minutes). > I call > http://localhost:8080/cas/login?service=http://www.google.fr&renew=true, > I log in and I'm redirected to google with a new service ticket. > The logs look normal. > > I did tests on a customized CAS server and on a "re-created from scratch" > CAS server : https://github.com/leleuj/cas-overlay-3.5.x. I use jetty but > Tomcat also. > > I have no explanation for your problem. > > The services management works fine as well. > > Can you test with my demo : https://github.com/leleuj/cas-overlay-3.5.xand > see if you can reproduce the issue also ? > > Best regards, > Jérôme > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
