I'm a new user of CAS. I am trying to set up a web app under Tomcat using container-level authorization (i.e., the Tomcat realm mechanism). I am defining the realm within the application's context element. This may seem strange (using container-level authentication within a single context), but the reason is that, ultimately, I will be combining this realm with another realm, in a CombinedRealm.
The user authentication itself appears to work, but when the system redirects back to the application, with a jSessionId parameter and a ticket parameter, I get a 403 error. I don't know whether I need to do something explicit in order to invoke the client ticket validator. I did try adding a filter to do that, just to see what happens even though it didn't seem appropriate with container-based authentication, but it did not work anyway. Right now I am working in a test environment on my local machine, using Tomcat 6, but eventually I have to implement this on a live machine, which is probably using Tomcat 7. (I'm just using 6 right now in order to perturb as little as possible at one time. I realize it's out of date.) Any guidance would be most appreciated! -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
