This reply should have been direct to Patrick and not Brian... Sorry. On 7/15/14, 1:25 PM, John Gasper wrote: > Hi Brian, > > It looks like you might have an extra slash in the server.name. Try > removing the trailing slash from ":7002*/*". What happens here is that > cas.securityContext.serviceProoperties.service is used by the service > manager app. It uses the two properties above it to build out the > string... Right now it is being qualified as > "http://localhost:7002//cas/services/j_acegi_cas_security_check";. I > don't know that it is the real cause... > > But I'm also curious... where does the AdminServer come from? Does > "AdminServer" have any meaning to you? > > On 7/15/14, 9:46 AM, Patrick Hunter wrote: >> Thanks for getting back to me Jérôme. I found that I can go to the log in >> page and log in. However, when I then hit >> https://localhost:7002/cas/validate I get back “no”. I also get “no” if I >> go straight to the validate page, but have used firebug to confirm that >> logging in does put a result in my browser storing a ticket. I also looked >> in the properties file and saw; >> >> “server.name=http://localhost:7002/ >> >> server.prefix=${server.name}/_cas_ >> >> cas.securityContext.serviceProperties.service=${server.prefix}/services/j_acegi_cas_security_check“ >> >> This suggested a slightly different url than what I had been using so >> I hit >> “https://localhost:7002/cas/services/j_acegi_cas_security_check”, but >> got: >> >> “Access Denied >> >> >> >> BadCredentialsException::Failed to provide a CAS service ticket to >> validate”. I was logged in at the time, and didn’t get any console >> output from hitting the services url. >> >> >> >> Stefan, have you had much success deploying CAS while manually >> configuring your services? In particular, have you been able to have >> some services only use some of the handlers for login >> >> -Patrick >> >> >> >> >> >> *From:*Stefan Paetow [mailto:[email protected]] >> *Sent:* Tuesday, July 15, 2014 10:29 AM >> *To:* [email protected] >> *Subject:* RE: [cas-user] Redirect loop from services mangagement console >> >> >> >> Welcome to my hell, Patrick. >> >> >> >> I’ve not been able to make the service management app work – ever. >> >> >> >> Stefan >> >> >> >> >> >> *From:*Patrick Hunter [mailto:[email protected]] >> *Sent:* 15 July 2014 15:32 >> *To:* [email protected] <mailto:[email protected]> >> *Subject:* RE: [cas-user] Redirect loop from services mangagement console >> >> >> >> Sorry, there is a conspicuous lack of information in the logs >> regarding this problem. Logging is enabled in the code, and when I >> go to other pages it appears to be working (e.g. I see a ticket >> granting ticket being created when I log in), but I get nothing when >> I go to the services page. >> >> >> >> *From:*Jérôme LELEU [mailto:[email protected]] >> *Sent:* Tuesday, July 15, 2014 3:50 AM >> *To:* [email protected] <mailto:[email protected]> >> *Subject:* Re: [cas-user] Redirect loop from services mangagement console >> >> >> >> Hi, >> >> >> >> Infinite loop generally comes from service ticket validation failure. >> Don't you have more relevant logs, like errors and stacktraces? It >> would help... >> >> Thanks. >> >> Best regards, >> >> >> Jérôme LELEU >> >> Founder of CAS in the cloud: www.casinthecloud.com >> <http://www.casinthecloud.com> | Twitter: @leleuj >> >> Chairman of CAS: www.jasig.org/cas <http://www.jasig.org/cas> | >> Creator of pac4j: www.pac4j.org <http://www.pac4j.org> >> >> >> >> 2014-07-15 0:00 GMT+02:00 Patrick <[email protected] >> <mailto:[email protected]>>: >> >> I am new to CAS and am trying to set up the sample overlay >> https://github.com/UniconLabs/simple-cas-overlay-template with a >> dummy app before using CAS in production. The server starts up, >> but trying to access the services management console results in >> an infinite redirect loop. Specifically, going to >> https://localhost:7002/cas/services/ takes me to >> >> https://localhost:7002/cas/services/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/login?service=AdminServer%2Fcas%2Fservices%2Fj_acegi_cas_security_check >> I have a handler for >> “A*” in the deployerConfigContext, as well as the handler >> included in the github project (which should accept all https >> requests anyway). I am running CAS in Weblogic 12, and have >> edited the properties files to use Weblogic’s port numbers >> instead of Tomcat’s. I’ve also enabled SSL using the Weblogic >> demo certificate. Does anyone know what could cause this? >> Thank You >> Patrick >> -- >> You are currently subscribed to [email protected] >> <mailto:[email protected]> as: [email protected] >> <mailto:[email protected]> >> To unsubscribe, change settings or access archives, see >> http://www.ja-sig.org/wiki/display/JSG/cas-user >> <http://www.ja-sig.org/wiki/display/JSG/cas-user> >> >> >> >> >> -- >> You are currently subscribed to [email protected] >> <mailto:[email protected]> as: [email protected] >> <mailto:[email protected]> >> To unsubscribe, change settings or access archives, see >> http://www.ja-sig.org/wiki/display/JSG/cas-user >> >> -- >> You are currently subscribed to [email protected] >> <mailto:[email protected]> as: [email protected] >> <mailto:[email protected]> >> To unsubscribe, change settings or access archives, see >> http://www.ja-sig.org/wiki/display/JSG/cas-user >> Janet(UK) is a trading name of Jisc Collections and Janet Limited, a >> not-for-profit company which is registered in England under No. 2881024 >> and whose Registered Office is at Lumen House, Library Avenue, >> Harwell Oxford, Didcot, Oxfordshire. OX11 0SG. VAT No. 614944238 >> >> -- >> You are currently subscribed to [email protected] >> <mailto:[email protected]> as: [email protected] >> <mailto:[email protected]> >> To unsubscribe, change settings or access archives, see >> http://www.ja-sig.org/wiki/display/JSG/cas-user >> -- >> You are currently subscribed to [email protected] as: >> [email protected] >> To unsubscribe, change settings or access archives, see >> http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- > *John Gasper* > IAM Consultant > Unicon, Inc. > PGP/GPG Key: 0xbafee3ef > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user
-- *John Gasper* IAM Consultant Unicon, Inc. PGP/GPG Key: 0xbafee3ef -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
