I am using CAS and acegisecurity for validation of my webapp.
When I login for the first time. The app asks for the login credientials but fails with following error. But when go to the same login page again it lets me through with out any problem.
Error:
Reason: org.acegisecurity.BadCredentialsException: INVALID_SERVICE: Ticket 'ST-24868-Sum9eE9afPjdv1nlO1WQ6IMwOFmeFhOuc4s-20' does not match supplied service at org.acegisecurity.providers.cas.ticketvalidator.CasProxyTicketValidator.validateNow(CasProxyTicketValidator.java:107) at org.acegisecurity.providers.cas.ticketvalidator.CasProxyTicketValidator.confirmTicketValid(CasProxyTicketValidator.java:65) at org.acegisecurity.providers.cas.CasAuthenticationProvider.authenticateNow(CasAuthenticationProvider.java:136) at org.acegisecurity.providers.cas.CasAuthenticationProvider.authenticate(CasAuthenticationProvider.java:122) at org.acegisecurity.providers.ProviderManager.doAuthentication(ProviderManager.java:183) at org.acegisecurity.AbstractAuthenticationManager.authenticate(AbstractAuthenticationManager.java:45) at org.acegisecurity.ui.cas.CasProcessingFilter.attemptAuthentication(CasProcessingFilter.java:76) at org.acegisecurity.ui.AbstractProcessingFilter.doFilter(AbstractProcessingFilter.java:198) at org.acegisecurity.util.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:274) at org.acegisecurity.context.HttpSessionContextIntegrationFilter.doFilter(HttpSessionContextIntegrationFilter.java:195) at org.acegisecurity.util.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:274) at org.acegisecurity.util.FilterChainProxy.doFilter(FilterChainProxy.java:148) at org.acegisecurity.util.FilterToBeanProxy.doFilter(FilterToBeanProxy.java:90) at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:42) at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3151) at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321) at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:121) at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:1973) at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:1880) at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1310) at weblogic.work.ExecuteThread.execute(ExecuteThread.java:207) at weblogic.work.ExecuteThread.run(ExecuteThread.java:179)
I am using the following versions
CAS Server: 3.04,
CAS client : 2.1.1
acegisecurity 1.0.0 or 1.0.2
I followed the Proxy CAS Walkthrough (http://www.ja-sig.org/wiki/display/CAS/Proxy+CAS+Walkthrough)
step one:To start with, log in to CAS with some invented service:
https://websso-ho01/websso/login?service=http://localhost:7001/jss
I get the same error as above
Step two:So, playing the role of the first application (not a proxying application at this stage - lets just see if we can get our application authenticated without proxying for now), you need to take the ticket and turn it into a username:
https://websso-ho01/websso/serviceValidate?ticket=ST-24868-Sum9eE9afPjdv1nlO1WQ6IMwOFmeFhOuc4s-20&http://localhost:7001/jss
I get the error message:
Ticket 'ST-24868-Sum9eE9afPjdv1nlO1WQ6IMwOFmeFhOuc4s-20' not recognized
Regards,
Upasana (Anna)
_______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
