Hi,
Yep, you are right. I just capture the tomcat port and it was exact URL
(exclude service ticket) that CASE sends.
BTW, I found the problem source:
in the ticketExpirationPolicies.xml ticket expiration time = 10 seconds
<util:constant id="SECONDS"
static-field="java.util.concurrent.TimeUnit.SECONDS"/>
<bean id="serviceTicketExpirationPolicy"
class="org.jasig.cas.ticket.support.MultiTimeUseOrTimeoutExpirationPolicy"
c:numberOfUses="1" c:timeToKill="${st.timeToKillInSeconds:*10*}"
c:timeUnit-ref="SECONDS"/>
On Fri, May 9, 2014 at 2:01 AM, Jérôme LELEU <[email protected]> wrote:
> Hi,
>
> I'm a bit surprised by the url you quote: I would have expected something
> like http://myhost/myapp?ticket=ST-xxx...
>
> What you want to achieve is to redirect your user to the application with
> a service ticket, right?
>
> Best regards,
> Jérôme
>
>
>
> 2014-05-09 2:25 GMT+02:00 Alex Worker <[email protected]>:
>
>> Could you please help me with the following problem:
>>
>> I need to add in the CAD(CAS 3.5 + LDAP + JAVA/JSP) some testing for
>> TermsOfUse/Password expiration
>>
>> I modified login-webflow.xml - add testing if user requires changes
>> (termOfUsePolicyCheck) + add the new page that suggests move to the myLogin
>> & change password/accept Term of Use.
>>
>> But user has 3 attempts and not clear how to redirect to the service if
>> he decide to ignore changes this time --- I tried redirect but it doesn't
>> work.
>>
>>
>> GenerateServiceTicketAction.serviceTicketId=AAFSsPYAkNKN6Mb0Q6Li8D8gawrtLMXhLFgy1MYc3inzSUf8i8TX/Gnh
>>
>>
>> http://137.82.124.48:8081/secure/index.jsp?TARGET=http%3A%2F%2F137.82.124.48%3A8081%2Fsecure%2Findex.jsp&SAMLart=AAFSsPYAkNKN6Mb0Q6Li8D8gawrtLMXhLFgy1MYc3inzSUf8i8TX%2FGnh
>>
>> javax.servlet.ServletException:
>> org.jasig.cas.client.validation.TicketValidationException:
>> org.opensaml.SAMLException: ticket
>> 'AAFSsPYAkNKN6Mb0Q6Li8D8gawrtLMXhLFgy1MYc3inzSUf8i8TX/Gnh' not recognized
>>
>> What do I do wrong?
>> help me please :(
>>
>> --
>> You are currently subscribed to [email protected] as: [email protected]
>>
>> To unsubscribe, change settings or access archives, see
>> http://www.ja-sig.org/wiki/display/JSG/cas-user
>>
>>
> --
> You are currently subscribed to [email protected] as:
> [email protected]
> To unsubscribe, change settings or access archives, see
> http://www.ja-sig.org/wiki/display/JSG/cas-user
>
> --
> You received this message because you are subscribed to a topic in the
> Google Groups "jasig-cas-user" group.
> To unsubscribe from this topic, visit
> https://groups.google.com/d/topic/jasig-cas-user/ptReqXN_ckA/unsubscribe.
> To unsubscribe from this group and all its topics, send an email to
> [email protected].
> For more options, visit https://groups.google.com/d/optout.
>
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
