I haven't worked with the openID stuff in CAS or Jenkins, so take this
with a grain of salt.
It looks like you'll got some missing dollar signs ($) in your Spring
property assignments somewhere. In the screenshot,
"{requestScope.response.url" doesn't look right... I'd expect that to
get converted to something else. Somewhere, I'm guessing, the code
should look like ${requestScope.response.url...}
---
*John Gasper*
IAM Consultant
Unicon, Inc.
PGP/GPG Key: 0xbafee3ef
On 11/25/14 4:21 AM, j shaik wrote:
> Hi,
>
> I have jenkins configured with openID plugin. I have CAS configured
> with openID and LDAP to match the userIDs. I am receiving an error
> after successful authentication when CAS tries to redirect back to the
> jenkins page after authentication. instead of redirecting back with
> the session ticket it just sits on the page as shown below
>
>
>
> The stack trace on the CAS side is as shown below
>
> =============================================================
> WHO: audit:unknown
> WHAT: supplied credentials: [xyz+password]
> ACTION: AUTHENTICATION_SUCCESS
> APPLICATION: CAS
> WHEN: Tue Nov 25 13:14:15 CET 2014
> CLIENT IP ADDRESS: 0:0:0:0:0:0:0:1
> SERVER IP ADDRESS: 0:0:0:0:0:0:0:1
> =============================================================
>
> >
> 2014-11-25 13:14:15,514 INFO
> [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] -
> <Audit trail record BEGIN
> =============================================================
> WHO: audit:unknown
> WHAT:
> TGT-4-5cUHdAYaSeL9vwFB61piCKsMbYSfFy7mjWHrWYzkRE202AdVhX-cas01.example.org
> ACTION: TICKET_GRANTING_TICKET_CREATED
> APPLICATION: CAS
> WHEN: Tue Nov 25 13:14:15 CET 2014
> CLIENT IP ADDRESS: 0:0:0:0:0:0:0:1
> SERVER IP ADDRESS: 0:0:0:0:0:0:0:1
> =============================================================
>
> >
> 2014-11-25 13:14:15,515 INFO
> [org.jasig.cas.CentralAuthenticationServiceImpl] - <Granted service
> ticket [ST-4-ebliHQCvMxCPrsFZQKC2-cas01.example.org] for service
> [https://localhost:443/securityRealm/finishLogin?openid.rpnonce=2014-11-25T12%3A14%3A06Z0&openid.rpsig=%2FPMHbF3YEyDjE7g3zqDJhXF%2Bn1Ibgw4iwe%2B3jcyeiNg%3D]
> for user [xyz]>
> 2014-11-25 13:14:15,515 INFO
> [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] -
> <Audit trail record BEGIN
> =============================================================
> WHO: xyz
> WHAT: ST-4-ebliHQCvMxCPrsFZQKC2-cas01.example.org for
> https://localhost:443/securityRealm/finishLogin?openid.rpnonce=2014-11-25T12%3A14%3A06Z0&openid.rpsig=%2FPMHbF3YEyDjE7g3zqDJhXF%2Bn1Ibgw4iwe%2B3jcyeiNg%3D
> ACTION: SERVICE_TICKET_CREATED
> APPLICATION: CAS
> WHEN: Tue Nov 25 13:14:15 CET 2014
> CLIENT IP ADDRESS: 0:0:0:0:0:0:0:1
> SERVER IP ADDRESS: 0:0:0:0:0:0:0:1
> =============================================================
>
> >
> 2014-11-25 13:14:15,524 INFO
> [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] -
> <Audit trail record BEGIN
> =============================================================
> WHO: audit:unknown
> WHAT: ST-4-ebliHQCvMxCPrsFZQKC2-cas01.example.org
> ACTION: SERVICE_TICKET_VALIDATED
> APPLICATION: CAS
> WHEN: Tue Nov 25 13:14:15 CET 2014
> CLIENT IP ADDRESS: 0:0:0:0:0:0:0:1
> SERVER IP ADDRESS: 0:0:0:0:0:0:0:1
> =============================================================
>
> >
> 2014-11-25 13:14:15,524 INFO
> [org.jasig.cas.support.openid.authentication.principal.OpenIdService]
> - <Validated openid ticket>
> 2014-11-25 13:14:15,524 ERROR [org.openid4java.server.ServerManager] -
> <Invalid OP-endpoint configured; cannot issue authentication
> responses.{cas.securityContext.casProcessingFilterEntryPoint.loginUrl}>
> java.net.MalformedURLException: no protocol:
> {cas.securityContext.casProcessingFilterEntryPoint.loginUrl}
> at java.net.URL.<init>(URL.java:585)
> at java.net.URL.<init>(URL.java:482)
> at java.net.URL.<init>(URL.java:431)
> at
> org.openid4java.server.ServerManager.authResponse(ServerManager.java:681)
> at
> org.openid4java.server.ServerManager.authResponse(ServerManager.java:615)
> at
> org.openid4java.server.ServerManager.authResponse(ServerManager.java:521)
> at
> org.jasig.cas.support.openid.authentication.principal.OpenIdService.getResponse(OpenIdService.java:125)
> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
> at
> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
> at
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
> at java.lang.reflect.Method.invoke(Method.java:606)
> at ognl.OgnlRuntime.invokeMethod(OgnlRuntime.java:891)
> at ognl.OgnlRuntime.callAppropriateMethod(OgnlRuntime.java:1293)
> at ognl.ObjectMethodAccessor.callMethod(ObjectMethodAccessor.java:68)
> at ognl.OgnlRuntime.callMethod(OgnlRuntime.java:1369)
> at ognl.ASTMethod.getValueBody(ASTMethod.java:90)
> at ognl.SimpleNode.evaluateGetValueBody(SimpleNode.java:212)
> at ognl.SimpleNode.getValue(SimpleNode.java:258)
> at ognl.ASTChain.getValueBody(ASTChain.java:141)
> at ognl.SimpleNode.evaluateGetValueBody(SimpleNode.java:212)
> at ognl.SimpleNode.getValue(SimpleNode.java:258)
> at ognl.Ognl.getValue(Ognl.java:494)
> at
> org.springframework.binding.expression.ognl.OgnlExpression.getValue(OgnlExpression.java:85)
> at
> org.springframework.webflow.action.EvaluateAction.doExecute(EvaluateAction.java:75)
> at
> org.springframework.webflow.action.AbstractAction.execute(AbstractAction.java:188)
> at
> org.springframework.webflow.execution.AnnotatedAction.execute(AnnotatedAction.java:145)
> at
> org.springframework.webflow.execution.ActionExecutor.execute(ActionExecutor.java:51)
> at
> org.springframework.webflow.engine.ActionState.doEnter(ActionState.java:101)
> at org.springframework.webflow.engine.State.enter(State.java:194)
> at
> org.springframework.webflow.engine.Transition.execute(Transition.java:227)
> at
> org.springframework.webflow.engine.DecisionState.doEnter(DecisionState.java:51)
> at org.springframework.webflow.engine.State.enter(State.java:194)
> at
> org.springframework.webflow.engine.Transition.execute(Transition.java:227)
> at
> org.springframework.webflow.engine.impl.FlowExecutionImpl.execute(FlowExecutionImpl.java:393)
> at
> org.springframework.webflow.engine.impl.RequestControlContextImpl.execute(RequestControlContextImpl.java:214)
> at
> org.springframework.webflow.engine.TransitionableState.handleEvent(TransitionableState.java:119)
> at org.springframework.webflow.engine.Flow.handleEvent(Flow.java:555)
> at
> org.springframework.webflow.engine.impl.FlowExecutionImpl.handleEvent(FlowExecutionImpl.java:388)
> at
> org.springframework.webflow.engine.impl.RequestControlContextImpl.handleEvent(RequestControlContextImpl.java:210)
> at
> org.springframework.webflow.engine.ActionState.doEnter(ActionState.java:105)
> at org.springframework.webflow.engine.State.enter(State.java:194)
> at
> org.springframework.webflow.engine.Transition.execute(Transition.java:227)
> at
> org.springframework.webflow.engine.DecisionState.doEnter(DecisionState.java:51)
> at org.springframework.webflow.engine.State.enter(State.java:194)
> at
> org.springframework.webflow.engine.Transition.execute(Transition.java:227)
> at
> org.springframework.webflow.engine.impl.FlowExecutionImpl.execute(FlowExecutionImpl.java:393)
> at
> org.springframework.webflow.engine.impl.RequestControlContextImpl.execute(RequestControlContextImpl.java:214)
> at
> org.springframework.webflow.engine.TransitionableState.handleEvent(TransitionableState.java:119)
> at org.springframework.webflow.engine.Flow.handleEvent(Flow.java:555)
> at
> org.springframework.webflow.engine.impl.FlowExecutionImpl.handleEvent(FlowExecutionImpl.java:388)
> at
> org.springframework.webflow.engine.impl.RequestControlContextImpl.handleEvent(RequestControlContextImpl.java:210)
> at
> org.springframework.webflow.engine.ActionState.doEnter(ActionState.java:105)
> at org.springframework.webflow.engine.State.enter(State.java:194)
> at
> org.springframework.webflow.engine.Transition.execute(Transition.java:227)
> at
> org.springframework.webflow.engine.impl.FlowExecutionImpl.execute(FlowExecutionImpl.java:393)
> at
> org.springframework.webflow.engine.impl.RequestControlContextImpl.execute(RequestControlContextImpl.java:214)
> at
> org.springframework.webflow.engine.TransitionableState.handleEvent(TransitionableState.java:119)
> at org.springframework.webflow.engine.Flow.handleEvent(Flow.java:555)
> at
> org.springframework.webflow.engine.impl.FlowExecutionImpl.handleEvent(FlowExecutionImpl.java:388)
> at
> org.springframework.webflow.engine.impl.RequestControlContextImpl.handleEvent(RequestControlContextImpl.java:210)
> at
> org.springframework.webflow.engine.ActionState.doEnter(ActionState.java:105)
> at org.springframework.webflow.engine.State.enter(State.java:194)
> at
> org.springframework.webflow.engine.Transition.execute(Transition.java:227)
> at
> org.springframework.webflow.engine.impl.FlowExecutionImpl.execute(FlowExecutionImpl.java:393)
> at
> org.springframework.webflow.engine.impl.RequestControlContextImpl.execute(RequestControlContextImpl.java:214)
> at
> org.springframework.webflow.engine.TransitionableState.handleEvent(TransitionableState.java:119)
> at org.springframework.webflow.engine.Flow.handleEvent(Flow.java:555)
> at
> org.springframework.webflow.engine.impl.FlowExecutionImpl.handleEvent(FlowExecutionImpl.java:388)
> at
> org.springframework.webflow.engine.impl.RequestControlContextImpl.handleEvent(RequestControlContextImpl.java:210)
> at
> org.springframework.webflow.engine.ViewState.handleEvent(ViewState.java:232)
> at
> org.springframework.webflow.engine.ViewState.resume(ViewState.java:196)
> at org.springframework.webflow.engine.Flow.resume(Flow.java:545)
> at
> org.springframework.webflow.engine.impl.FlowExecutionImpl.resume(FlowExecutionImpl.java:258)
> at
> org.springframework.webflow.executor.FlowExecutorImpl.resumeExecution(FlowExecutorImpl.java:169)
> at
> org.springframework.webflow.mvc.servlet.FlowHandlerAdapter.handle(FlowHandlerAdapter.java:183)
> at
> org.springframework.web.servlet.DispatcherServlet.doDispatch(DispatcherServlet.java:925)
> at
> org.springframework.web.servlet.DispatcherServlet.doService(DispatcherServlet.java:856)
> at
> org.springframework.web.servlet.FrameworkServlet.processRequest(FrameworkServlet.java:936)
> at
> org.springframework.web.servlet.FrameworkServlet.doPost(FrameworkServlet.java:838)
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:646)
> at
> org.springframework.web.servlet.FrameworkServlet.service(FrameworkServlet.java:812)
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:727)
> at
> org.jasig.cas.web.init.SafeDispatcherServlet.service(SafeDispatcherServlet.java:125)
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:303)
> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
> at
> org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52)
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
> at
> org.springframework.web.filter.CharacterEncodingFilter.doFilterInternal(CharacterEncodingFilter.java:88)
> at
> org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107)
> at
> org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:343)
> at
> org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:260)
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
> at
> com.github.inspektr.common.web.ClientInfoThreadLocalFilter.doFilter(ClientInfoThreadLocalFilter.java:63)
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
> at
> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
> at
> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
> at
> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:610)
> at
> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
> at
> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
> at
> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
> at
> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
> at
> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
> at
> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
> at
> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
> at
> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
> at
> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
> at
> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
> at
> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
> at
> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
> at java.lang.Thread.run(Thread.java:745)
> 2014-11-25 13:14:28,591 INFO
> [org.jasig.cas.services.DefaultServicesManagerImpl] - <Reloading
> registered services.>
> 2014-11-25 13:14:28,604 INFO
> [org.jasig.cas.services.DefaultServicesManagerImpl] - <Loaded 1 services.>
>
>
>
>
>
> The error shown below is thrown when I try to manually access the URL
> which CAS tries to redirect to and it looks like this
>
>
> https://localhost:443/securityRealm/finishLogin?openid.rpnonce=2014-11-25T12%3A02%3A39Z0&openid.rpsig=nAZEoPTGt7KauG16czlDb2Dqs%2BbPXP6EGJAcw%2Ft97Nw%3D
>
> The complete log of jenkins server is as below
>
> Nov 25, 2014 1:01:21 PM
> org.springframework.web.context.support.StaticWebApplicationContext
> prepareRefresh
> INFO: Refreshing
>
> org.springframework.web.context.support.StaticWebApplicationContext@12736363:
> display name [Root WebApplicationContext]; startup date
> [Tue Nov 25 13:01:21 CET 2014]; root of context hierarchy
> Nov 25, 2014 1:01:21 PM
> org.springframework.web.context.support.StaticWebApplicationContext
> obtainFreshBeanFactory
> INFO: Bean factory for application context
>
> [org.springframework.web.context.support.StaticWebApplicationContext@12736363]:
> org.springframework.beans.fa
> ctory.support.DefaultListableBeanFactory@4d858878
> Nov 25, 2014 1:01:21 PM
> org.springframework.beans.factory.support.DefaultListableBeanFactory
> preInstantiateSingletons
> INFO: Pre-instantiating singletons in
>
> org.springframework.beans.factory.support.DefaultListableBeanFactory@4d858878:
> defining beans [filter,legacy]; ro
> ot of factory hierarchy
> Nov 25, 2014 1:01:21 PM org.kohsuke.stapler.RequestImpl$TypePair
> convertJSON
> WARNING: 'stapler-class' is deprecated:
> hudson.markup.EscapedMarkupFormatter
> Nov 25, 2014 1:01:24 PM org.openid4java.server.RealmVerifier
> setEnforceRpId
> WARNING: RP discovery / realm validation disabled;
> Nov 25, 2014 1:01:24 PM org.openid4java.discovery.Discovery discover
> INFO: Starting discovery on URL identifier:
> https://localhost:5555/cfgmgnt.cas.sso/openid/
> Nov 25, 2014 1:01:24 PM
> org.openid4java.discovery.yadis.YadisResolver discover
> INFO: Yadis discovered 0 endpoints from:
> https://localhost:5555/cfgmgnt.cas.sso/openid/
> Nov 25, 2014 1:01:24 PM org.openid4java.discovery.Discovery discover
> INFO: No OpenID service endpoints discovered through Yadis;
> attempting HTML discovery...
> Nov 25, 2014 1:01:24 PM
> org.openid4java.discovery.html.HtmlResolver discoverHtml
> INFO: HTML discovery completed on:
> https://localhost:5555/cfgmgnt.cas.sso/openid/
> Nov 25, 2014 1:01:24 PM org.openid4java.discovery.Discovery discover
> INFO: Discovered 1 OpenID endpoints.
> Nov 25, 2014 1:01:24 PM org.openid4java.consumer.ConsumerManager
> associate
> INFO: Trying to associate with
> https://localhost:5555/cfgmgnt.cas.sso/login attempts left: 4
> Nov 25, 2014 1:01:24 PM org.openid4java.consumer.ConsumerManager
> associate
> INFO: Associated with https://localhost:5555/cfgmgnt.cas.sso/login
> handle: 1416916830288-0
> Nov 25, 2014 1:01:24 PM org.openid4java.consumer.ConsumerManager
> authenticate
> INFO: Creating authentication request for OP-endpoint:
> https://localhost:5555/cfgmgnt.cas.sso/login claimedID:
> https://localhost:5555/cfgmgnt.cas.sso/o
> penid/ OP-specific ID: https://localhost:5555/cfgmgnt.cas.sso/openid/
> Nov 25, 2014 1:01:24 PM org.openid4java.consumer.ConsumerManager
> insertConsumerNonce
> INFO: Inserted consumer nonce: 2014-11-25T12:01:24Z0
> Nov 25, 2014 1:01:24 PM org.openid4java.server.RealmVerifier match
> INFO: Return URL:
>
> https://localhost:443/jenkins/securityRealm/finishLogin?openid.rpnonce=2014-11-25T12%3A01%3A24Z0&openid.rpsig=WadLpqKQPfKl4j9nEq1a1dv
> cNF7SNUpXME6lbWXqb4M%3D matches realm:
> https://localhost:443/jenkins/securityRealm/finishLogin
> Nov 25, 2014 1:02:28 PM org.kohsuke.stapler.RequestImpl$TypePair
> convertJSON
> WARNING: 'stapler-class' is deprecated:
> jenkins.mvn.DefaultSettingsProvider
> Nov 25, 2014 1:02:28 PM org.kohsuke.stapler.RequestImpl$TypePair
> convertJSON
> WARNING: 'stapler-class' is deprecated:
> jenkins.mvn.DefaultGlobalSettingsProvider
> Nov 25, 2014 1:02:28 PM org.kohsuke.stapler.RequestImpl$TypePair
> convertJSON
> WARNING: 'stapler-class' is deprecated:
> hudson.maven.local_repo.DefaultLocalRepositoryLocator
> Nov 25, 2014 1:02:30 PM org.kohsuke.stapler.RequestImpl$TypePair
> convertJSON
> WARNING: 'stapler-class' is deprecated:
> jenkins.mvn.DefaultSettingsProvider
> Nov 25, 2014 1:02:30 PM org.kohsuke.stapler.RequestImpl$TypePair
> convertJSON
> WARNING: 'stapler-class' is deprecated:
> jenkins.mvn.DefaultGlobalSettingsProvider
> Nov 25, 2014 1:02:30 PM org.kohsuke.stapler.RequestImpl$TypePair
> convertJSON
> WARNING: 'stapler-class' is deprecated:
> hudson.maven.local_repo.DefaultLocalRepositoryLocator
> Nov 25, 2014 1:02:39 PM org.openid4java.discovery.Discovery discover
> INFO: Starting discovery on URL identifier:
> https://localhost:5555/cfgmgnt.cas.sso/openid/
> Nov 25, 2014 1:02:39 PM org.openid4java.util.HttpCache match
> INFO: Cache Expired at Tue Nov 25 13:02:24 CET 2014; removing
> cached copy
> Nov 25, 2014 1:02:39 PM org.openid4java.util.HttpCache head
> INFO: Removing cached HEAD for
> https://localhost:5555/cfgmgnt.cas.sso/openid/
> Nov 25, 2014 1:02:39 PM org.openid4java.util.HttpCache removeGet
> INFO: Removing cached GET response for
> https://localhost:5555/cfgmgnt.cas.sso/openid/
> Nov 25, 2014 1:02:39 PM
> org.openid4java.discovery.yadis.YadisResolver discover
> INFO: Yadis discovered 0 endpoints from:
> https://localhost:5555/cfgmgnt.cas.sso/openid/
> Nov 25, 2014 1:02:39 PM org.openid4java.discovery.Discovery discover
> INFO: No OpenID service endpoints discovered through Yadis;
> attempting HTML discovery...
> Nov 25, 2014 1:02:39 PM org.openid4java.util.HttpCache match
> INFO: Cache Expired at Tue Nov 25 13:02:24 CET 2014; removing
> cached copy
> Nov 25, 2014 1:02:39 PM org.openid4java.util.HttpCache get
> INFO: Removing cached GET for
> https://localhost:5555/cfgmgnt.cas.sso/openid/
> Nov 25, 2014 1:02:39 PM org.openid4java.util.HttpCache removeGet
> INFO: Removing cached GET response for
> https://localhost:5555/cfgmgnt.cas.sso/openid/
> Nov 25, 2014 1:02:39 PM
> org.openid4java.discovery.html.HtmlResolver discoverHtml
> INFO: HTML discovery completed on:
> https://localhost:5555/cfgmgnt.cas.sso/openid/
> Nov 25, 2014 1:02:39 PM org.openid4java.discovery.Discovery discover
> INFO: Discovered 1 OpenID endpoints.
> Nov 25, 2014 1:02:39 PM org.openid4java.consumer.ConsumerManager
> associate
> INFO: Trying to associate with
> https://localhost:5555/cfgmgnt.cas.sso/login attempts left: 4
> Nov 25, 2014 1:02:39 PM org.openid4java.consumer.ConsumerManager
> associate
> INFO: Found an existing association: 1416916830288-0
> Nov 25, 2014 1:02:39 PM org.openid4java.consumer.ConsumerManager
> authenticate
> INFO: Creating authentication request for OP-endpoint:
> https://localhost:5555/cfgmgnt.cas.sso/login claimedID:
> https://localhost:5555/cfgmgnt.cas.sso/o
> penid/ OP-specific ID: https://localhost:5555/cfgmgnt.cas.sso/openid/
> Nov 25, 2014 1:02:39 PM org.openid4java.consumer.ConsumerManager
> insertConsumerNonce
> INFO: Inserted consumer nonce: 2014-11-25T12:02:39Z0
> Nov 25, 2014 1:02:39 PM org.openid4java.server.RealmVerifier match
> INFO: Return URL:
>
> https://localhost:443/securityRealm/finishLogin?openid.rpnonce=2014-11-25T12%3A02%3A39Z0&openid.rpsig=nAZEoPTGt7KauG16czlDb2Dqs%2BbPX
> P6EGJAcw%2Ft97Nw%3D matches realm:
> https://localhost:443/securityRealm/finishLogin
> Nov 25, 2014 1:03:05 PM org.openid4java.consumer.ConsumerManager
> verify
> INFO: Verifying authentication response...
> Nov 25, 2014 1:03:05 PM org.eclipse.jetty.util.log.JavaUtilLog warn
> WARNING: Error while serving
> https://localhost/securityRealm/finishLogin
> java.lang.reflect.InvocationTargetException
> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
> at
>
> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
> at
>
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
> at java.lang.reflect.Method.invoke(Method.java:606)
> at
> org.kohsuke.stapler.Function$InstanceFunction.invoke(Function.java:298)
> at
> org.kohsuke.stapler.Function.bindAndInvoke(Function.java:161)
> at
>
> org.kohsuke.stapler.Function.bindAndInvokeAndServeResponse(Function.java:96)
> at
> org.kohsuke.stapler.MetaClass$1.doDispatch(MetaClass.java:121)
> at
>
> org.kohsuke.stapler.NameBasedDispatcher.dispatch(NameBasedDispatcher.java:53)
> at org.kohsuke.stapler.Stapler.tryInvoke(Stapler.java:746)
> at org.kohsuke.stapler.Stapler.invoke(Stapler.java:876)
> at
> org.kohsuke.stapler.MetaClass$4.doDispatch(MetaClass.java:211)
> at
>
> org.kohsuke.stapler.NameBasedDispatcher.dispatch(NameBasedDispatcher.java:53)
> at org.kohsuke.stapler.Stapler.tryInvoke(Stapler.java:746)
> at org.kohsuke.stapler.Stapler.invoke(Stapler.java:876)
> at org.kohsuke.stapler.Stapler.invoke(Stapler.java:649)
> at org.kohsuke.stapler.Stapler.service(Stapler.java:238)
> at
> javax.servlet.http.HttpServlet.service(HttpServlet.java:848)
> at
> org.eclipse.jetty.servlet.ServletHolder.handle(ServletHolder.java:686)
> at
>
> org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1494)
> at
> hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:96)
> at
> hudson.util.PluginServletFilter.doFilter(PluginServletFilter.java:88)
> at
>
> org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1482)
> at
> hudson.security.csrf.CrumbFilter.doFilter(CrumbFilter.java:48)
> at
>
> org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1482)
> at
>
> hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:84)
> at
>
> hudson.security.UnwrapSecurityExceptionFilter.doFilter(UnwrapSecurityExceptionFilter.java:51)
> at
>
> hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
> at
>
> jenkins.security.ExceptionTranslationFilter.doFilter(ExceptionTranslationFilter.java:117)
> at
>
> hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
> at
>
> org.acegisecurity.providers.anonymous.AnonymousProcessingFilter.doFilter(AnonymousProcessingFilter.java:125)
> at
>
> hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
> at
>
> org.acegisecurity.ui.rememberme.RememberMeProcessingFilter.doFilter(RememberMeProcessingFilter.java:142)
> at
>
> hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
> at
>
> org.acegisecurity.ui.AbstractProcessingFilter.doFilter(AbstractProcessingFilter.java:271)
> at
>
> hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
> at
>
> jenkins.security.BasicHeaderProcessor.doFilter(BasicHeaderProcessor.java:93)
> at
>
> hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
> at
>
> org.acegisecurity.context.HttpSessionContextIntegrationFilter.doFilter(HttpSessionContextIntegrationFilter.java:249)
> at
>
> hudson.security.HttpSessionContextIntegrationFilter2.doFilter(HttpSessionContextIntegrationFilter2.java:67)
> at
>
> hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
> at
>
> hudson.security.ChainedServletFilter.doFilter(ChainedServletFilter.java:76)
> at
> hudson.security.HudsonFilter.doFilter(HudsonFilter.java:164)
> at
>
> org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1482)
> at
>
> org.kohsuke.stapler.compression.CompressionFilter.doFilter(CompressionFilter.java:46)
> at
>
> org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1482)
> at
>
> hudson.util.CharacterEncodingFilter.doFilter(CharacterEncodingFilter.java:81)
> at
>
> org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1482)
> at
>
> org.kohsuke.stapler.DiagnosticThreadNameFilter.doFilter(DiagnosticThreadNameFilter.java:30)
> at
>
> org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1474)
> at
> org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:499)
> at
>
> org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:137)
> at
>
> org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:533)
> at
>
> org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:231)
> at
>
> org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1086)
> at
> org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:428)
> at
>
> org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:193)
> at
>
> org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1020)
> at
>
> org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:135)
> at
>
> org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:116)
> at org.eclipse.jetty.server.Server.handle(Server.java:370)
> at
>
> org.eclipse.jetty.server.AbstractHttpConnection.handleRequest(AbstractHttpConnection.java:489)
> at
>
> org.eclipse.jetty.server.AbstractHttpConnection.headerComplete(AbstractHttpConnection.java:949)
> at
>
> org.eclipse.jetty.server.AbstractHttpConnection$RequestHandler.headerComplete(AbstractHttpConnection.java:1011)
> at
> org.eclipse.jetty.http.HttpParser.parseNext(HttpParser.java:644)
> at
> org.eclipse.jetty.http.HttpParser.parseAvailable(HttpParser.java:235)
> at
>
> org.eclipse.jetty.server.AsyncHttpConnection.handle(AsyncHttpConnection.java:82)
> at
> org.eclipse.jetty.io.nio.SslConnection.handle(SslConnection.java:196)
> at
>
> org.eclipse.jetty.io.nio.SelectChannelEndPoint.handle(SelectChannelEndPoint.java:668)
> at
>
> org.eclipse.jetty.io.nio.SelectChannelEndPoint$1.run(SelectChannelEndPoint.java:52)
> at
> winstone.BoundedExecutorService$1.run(BoundedExecutorService.java:77)
> at
>
> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
> at
>
> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
> at java.lang.Thread.run(Thread.java:745)
> Caused by: org.openid4java.message.MessageException: 0x100:
> Required parameter missing: openid.mode
> at org.openid4java.message.Message.validate(Message.java:187)
> at
> org.openid4java.message.AuthSuccess.validate(AuthSuccess.java:405)
> at
>
> org.openid4java.message.AuthSuccess.createAuthSuccess(AuthSuccess.java:118)
> at
> org.openid4java.consumer.ConsumerManager.verify(ConsumerManager.java:1142)
> at
> hudson.plugins.openid.OpenIdSession.doFinishLogin(OpenIdSession.java:111)
> at
>
> hudson.plugins.openid.OpenIdSsoSecurityRealm.doFinishLogin(OpenIdSsoSecurityRealm.java:210)
> ... 74 more
>
>
>
> My guess is that there is an issue in some configuration settings but
> I am not able to figure it out. Any help would be really appreciated.
>
> Thanks
>
> Best Regards
>
> --
> You are currently subscribed to [email protected] as:
> [email protected]
> To unsubscribe, change settings or access archives, see
> http://www.ja-sig.org/wiki/display/JSG/cas-user
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
