Hi,
What can be generating the behavior described in the log below? Each
time an application tries to authenticate with CAS, it just returns
again to the CAS main page. No error, no warning, nothing. Just like if
I just accessed /cas. Especially significant seems this line:
2015-09-22 18:28:26,233 ERROR
[org.jasig.cas.ticket.registry.JpaTicketRegistry] - Error getting
ticket
[TGT-**********************************************Bd1falzoKR-mydomain.com,
javax.persistence.TransactionRequiredException: no transaction is in
progress] from registry.
What can be the problem? I followed the guide for JPA at
http://jasig.github.io/cas/4.1.x/installation/JPA-Ticket-Registry.html
for CAS 4.1.x.
2015-09-22 18:28:26,123 DEBUG
[org.jasig.cas.audit.spi.TicketOrCredentialPrincipalResolver] -
<Resolving argument [UsernamePasswordCredential] for audit>
2015-09-22 18:28:26,130 INFO
[org.jasig.inspektr.audit.support.Slf4jLoggingAuditTrailManager] -
Audit trail record BEGIN
=============================================================
WHO: myuser+password
WHAT: supplied credentials: [myuser+password]
ACTION: AUTHENTICATION_SUCCESS
APPLICATION: CAS
WHEN: Tue Sep 22 18:28:26 WEST 2015
CLIENT IP ADDRESS: 192.168.1.X
SERVER IP ADDRESS: 192.168.1.Y
=============================================================
2015-09-22 18:28:26,138 DEBUG
[org.jasig.cas.ticket.registry.JpaTicketRegistry] - Added ticket
[TGT-**********************************************Bd1falzoKR-mydomain.com]
to registry.
2015-09-22 18:28:26,138 DEBUG
[org.jasig.cas.ticket.registry.JpaTicketRegistry] - <Added ticket
[TGT-**********************************************Bd1falzoKR-mydomain.com]
to registry.>
Hibernate: insert into TICKETGRANTINGTICKET (NUMBER_OF_TIMES_USED,
CREATION_TIME, EXPIRATION_POLICY, LAST_TIME_USED,
PREVIOUS_LAST_TIME_USED, ticketGrantingTicket_ID, AUTHENTICATION,
EXPIRED, PROXIED_BY, SERVICES_GRANTED_ACCESS_TO,
SUPPLEMENTAL_AUTHENTICATIONS, ID) values (?, ?, ?, ?, ?, ?, ?, ?, ?,
?, ?, ?)
Hibernate: update TICKETGRANTINGTICKET set NUMBER_OF_TIMES_USED=?,
CREATION_TIME=?, EXPIRATION_POLICY=?, LAST_TIME_USED=?,
PREVIOUS_LAST_TIME_USED=?, ticketGrantingTicket_ID=?,
AUTHENTICATION=?, EXPIRED=?, PROXIED_BY=?,
SERVICES_GRANTED_ACCESS_TO=?, SUPPLEMENTAL_AUTHENTICATIONS=? where ID=?
2015-09-22 18:28:26,193 DEBUG
[org.jasig.cas.audit.spi.TicketOrCredentialPrincipalResolver] -
<Resolving argument [UsernamePasswordCredential] for audit>
2015-09-22 18:28:26,195 INFO
[org.jasig.inspektr.audit.support.Slf4jLoggingAuditTrailManager] -
Audit trail record BEGIN
=============================================================
WHO: myuser+password
WHAT:
TGT-**********************************************Bd1falzoKR-mydomain.com
ACTION: TICKET_GRANTING_TICKET_CREATED
APPLICATION: CAS
WHEN: Tue Sep 22 18:28:26 WEST 2015
CLIENT IP ADDRESS: 192.168.1.X
SERVER IP ADDRESS: 192.168.1.Y
=============================================================
2015-09-22 18:28:26,195 INFO
[org.jasig.inspektr.audit.support.Slf4jLoggingAuditTrailManager] -
Audit trail record BEGIN
=============================================================
WHO: myuser+password
WHAT:
TGT-**********************************************Bd1falzoKR-mydomain.com
ACTION: TICKET_GRANTING_TICKET_CREATED
APPLICATION: CAS
WHEN: Tue Sep 22 18:28:26 WEST 2015
CLIENT IP ADDRESS: 192.168.1.X
SERVER IP ADDRESS: 192.168.1.Y
=============================================================
2015-09-22 18:28:26,203 DEBUG
[org.jasig.cas.web.support.CookieRetrievingCookieGenerator] -
Removed cookie with name [CASPRIVACY]
2015-09-22 18:28:26,214 DEBUG
[org.jasig.cas.web.support.DefaultCasCookieValueManager] - Encoding
cookie value
[TGT-**********************************************[email protected]@Mozilla/5.0
(X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Ubuntu
Chromium/44.0.2403.89 Chrome/44.0.2403.89 Safari/537.36]
2015-09-22 18:28:26,214 DEBUG
[org.jasig.cas.web.support.DefaultCasCookieValueManager] - <Encoding
cookie value
[TGT-**********************************************[email protected]@Mozilla/5.0
(X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Ubuntu
Chromium/44.0.2403.89 Chrome/44.0.2403.89 Safari/537.36]>
2015-09-22 18:28:26,215 DEBUG
[org.jasig.cas.util.DefaultCipherExecutor] - <Encrypting via
[A128CBC-HS256]>
2015-09-22 18:28:26,219 DEBUG
[org.jasig.cas.web.support.CookieRetrievingCookieGenerator] - <Added
cookie with name [TGC] and value
[eyJhbGciOiJIUzUxMiJ9.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.fQonmfjuy9o_Rce6TpanOfL27J9oXmvcsivUQzBuEwf1GLhj_EhozFUAqUDITNvkwrj51eQU9IT5kJNYjND29g]>
2015-09-22 18:28:26,233 ERROR
[org.jasig.cas.ticket.registry.JpaTicketRegistry] - Error getting
ticket
[TGT-**********************************************Bd1falzoKR-mydomain.com,
javax.persistence.TransactionRequiredException: no transaction is in
progress] from registry.
2015-09-22 18:28:26,240 DEBUG
[org.jasig.cas.CentralAuthenticationServiceImpl] - Ticket
[TGT-**********************************************Bd1falzoKR-mydomain.com]
by type [TicketGrantingTicket] cannot be found in the ticket registry.
2015-09-22 18:28:26,248 DEBUG
[org.jasig.cas.audit.spi.TicketOrCredentialPrincipalResolver] -
Resolving argument [String] for audit
2015-09-22 18:28:26,250 ERROR
[org.jasig.cas.ticket.registry.JpaTicketRegistry] - Error getting
ticket
[TGT-**********************************************Bd1falzoKR-mydomain.com,
javax.persistence.TransactionRequiredException: no transaction is in
progress] from registry.
It's important to note that the ticket is indeed stored in the MySQL
database.
Thanks.
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
