Dave, I see the client is a plugin. It is still on the Python Package Index (PyPI)[1], so I pulled it down and can read the source.
It looks like the plugin logs to the standard `logger` module using a logger named "anz.casclient". I don't see that the settings are overridden, so it presumably has the same log levels as the root logger, which would be set up somewhere in the portal. I am not sure where your client has their Zope logs pointing to (e.g. file, syslog, something else?), but any errors ought to be in the log. Probably at the `WARN` log level if I am reading the code correctly. Thanks, Carl [1] https://pypi.python.org/pypi/anz.casclient/1.0.1 ----- Original Message ----- From: "David A. Kovacic" <[email protected]> To: [email protected] Sent: Tuesday, October 28, 2014 11:59:55 AM Subject: Re: [cas-user] Issue with Zope and CAS 4.0.0 >From what I understand. Zope IS the CAS client. It seems to be some sort of Python-based portal with CAS client support built into it. I found some very old (ca 2005-2007) references to it in the JASig CAS documentation even, so it appears to have worked with CAS at least at some point. On 10/28/14 11:39 AM, Waldbieser, Carl wrote: > Dave, > > I haven't worked with Zope before, though I have heard of it. > What CAS-client are your clients using? > I would expect that if the SSL handshake failed, you wouldn't even see it in > your server access logs. > > Thanks, > Carl Waldbieser > ITS System Programmer > Lafayette College > > ----- Original Message ----- > From: "David A. Kovacic" <[email protected]> > To: [email protected] > Sent: Tuesday, October 28, 2014 11:30:48 AM > Subject: [cas-user] Issue with Zope and CAS 4.0.0 > > All, > > We have gone live in production with CAS 4.0.0 using LDAP authentication > and a replicated ehcache in an HA environment. The deployment went > fairly smoothly with the exception of one of our clients using a Zope > portal and our CAS server to authenticate their users into a database of > some sort. > > Zope is a complete black box to us and unfortunately to our clients as > well, so we were hoping someone might have experience and/or some words > of wisdom regarding why Zope may not be working correctly. According to > our clients Zope was working with out previous rubyCAS servers. > > What we are seeing in our logs is that the service ticket gets created > and then validated, and then an attempt is immediately made to > revalidate the service ticket, which is of course failing. > > The only thing we can guess is that the validation response is never > making it back to the server for some reason, such as not trusting the > certificate. > > If anyone has successfully used Zope with ANY version of CAS we would > love to hear about it as your experience may give us insight into why it > is failing. > > Dave > > > > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
