Hi John, I removed the slash, since I’m pretty sure you’re right about it being redundant, but that didn’t fix the problem. AdminServer is the name of the Weblogic server (it’s a Weblogic default for some reason). That said, I’m not sure how CAS is pulling it in.
From: John Gasper [mailto:[email protected]] Sent: Tuesday, July 15, 2014 3:26 PM To: [email protected] Subject: Re: [cas-user] Redirect loop from services mangagement console Hi Brian, It looks like you might have an extra slash in the server.name. Try removing the trailing slash from ":7002/". What happens here is that cas.securityContext.serviceProoperties.service is used by the service manager app. It uses the two properties above it to build out the string... Right now it is being qualified as "http://localhost:7002//cas/services/j_acegi_cas_security_check";. I don't know that it is the real cause... But I'm also curious... where does the AdminServer come from? Does "AdminServer" have any meaning to you? On 7/15/14, 9:46 AM, Patrick Hunter wrote: Thanks for getting back to me Jérôme. I found that I can go to the log in page and log in. However, when I then hit https://localhost:7002/cas/validate I get back “no”. I also get “no” if I go straight to the validate page, but have used firebug to confirm that logging in does put a result in my browser storing a ticket. I also looked in the properties file and saw; “server.name=http://localhost:7002/ server.prefix=${server.name}/cas cas.securityContext.serviceProperties.service=${server.prefix}/services/j_acegi_cas_security_check“ This suggested a slightly different url than what I had been using so I hit “https://localhost:7002/cas/services/j_acegi_cas_security_check”, but got: “Access Denied BadCredentialsException::Failed to provide a CAS service ticket to validate”. I was logged in at the time, and didn’t get any console output from hitting the services url. Stefan, have you had much success deploying CAS while manually configuring your services? In particular, have you been able to have some services only use some of the handlers for login -Patrick From: Stefan Paetow [mailto:[email protected]] Sent: Tuesday, July 15, 2014 10:29 AM To: [email protected]<mailto:[email protected]> Subject: RE: [cas-user] Redirect loop from services mangagement console Welcome to my hell, Patrick. I’ve not been able to make the service management app work – ever. Stefan From: Patrick Hunter [mailto:[email protected]] Sent: 15 July 2014 15:32 To: [email protected]<mailto:[email protected]> Subject: RE: [cas-user] Redirect loop from services mangagement console Sorry, there is a conspicuous lack of information in the logs regarding this problem. Logging is enabled in the code, and when I go to other pages it appears to be working (e.g. I see a ticket granting ticket being created when I log in), but I get nothing when I go to the services page. From: Jérôme LELEU [mailto:[email protected]] Sent: Tuesday, July 15, 2014 3:50 AM To: [email protected]<mailto:[email protected]> Subject: Re: [cas-user] Redirect loop from services mangagement console Hi, Infinite loop generally comes from service ticket validation failure. Don't you have more relevant logs, like errors and stacktraces? It would help... Thanks. Best regards, Jérôme LELEU Founder of CAS in the cloud: www.casinthecloud.com<http://www.casinthecloud.com> | Twitter: @leleuj Chairman of CAS: www.jasig.org/cas<http://www.jasig.org/cas> | Creator of pac4j: www.pac4j.org<http://www.pac4j.org> 2014-07-15 0:00 GMT+02:00 Patrick <[email protected]<mailto:[email protected]>>: I am new to CAS and am trying to set up the sample overlay https://github.com/UniconLabs/simple-cas-overlay-template with a dummy app before using CAS in production. The server starts up, but trying to access the services management console results in an infinite redirect loop. Specifically, going to https://localhost:7002/cas/services/ takes me to https://localhost:7002/cas/services/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/AdminServer/cas/login?service=AdminServer%2Fcas%2Fservices%2Fj_acegi_cas_security_check I have a handler for “A*” in the deployerConfigContext, as well as the handler included in the github project (which should accept all https requests anyway). I am running CAS in Weblogic 12, and have edited the properties files to use Weblogic’s port numbers instead of Tomcat’s. I’ve also enabled SSL using the Weblogic demo certificate. Does anyone know what could cause this? Thank You Patrick -- You are currently subscribed to [email protected]<mailto:[email protected]> as: [email protected]<mailto:[email protected]> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected]<mailto:[email protected]> as: [email protected]<mailto:[email protected]> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected]<mailto:[email protected]> as: [email protected]<mailto:[email protected]> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user Janet(UK) is a trading name of Jisc Collections and Janet Limited, a not-for-profit company which is registered in England under No. 2881024 and whose Registered Office is at Lumen House, Library Avenue, Harwell Oxford, Didcot, Oxfordshire. OX11 0SG. VAT No. 614944238 -- You are currently subscribed to [email protected]<mailto:[email protected]> as: [email protected]<mailto:[email protected]> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected]<mailto:[email protected]> as: [email protected]<mailto:[email protected]> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- John Gasper IAM Consultant Unicon, Inc. PGP/GPG Key: 0xbafee3ef -- You are currently subscribed to [email protected]<mailto:[email protected]> as: [email protected]<mailto:[email protected]> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
