I'm using the same code with CAS 3.0.6 and Tomcat 5.5.20 and have
experienced no problems.
You an try just doing action="" but I don't believe that is technically
valid HTML.
-Scott
On 12/21/06, Vinny <[EMAIL PROTECTED]> wrote:
I haven't yet altered casLoginView.jsp at all. For some reason the
scriptlet is not producing the correct String for action=
My jsp code looks like this (under WEB-INF/view/jsp/simple/ui )
action="<%= response.encodeRedirectURL("login" + (StringUtils.hasText(
request.getQueryString()) ? "?" + request.getQueryString() : ""))%>"
and this under WEB-INF/view/jsp/default/ui :
action="<%=response.encodeRedirectURL("login" + (request.getQueryString()
!= null && request.getQueryString().length() > 0 ? "?" +
request.getQueryString() : ""))%>"
On 12/21/06, Scott Battaglia <[EMAIL PROTECTED]> wrote:
>
> This isn't going to work:
>
> <form method="post" action
> ="login">
>
> you just eliminated all of the request parameters that are needed.
>
>
>
> -Scott
>
>
>
> On 12/21/06, Vinny < [EMAIL PROTECTED]> wrote:
> >
> > I get taken to a url like this to login at the cas server (called
> > loginServer in my app)
> >
> >
https://myhost.com/loginServer/login?service=https%3A%2F%2Fmyhost.com%2FProjectBuilder%2Fj_acegi_cas_security_check%3Bjsessionid%3DaDin2QibMDA87FRoM_
> >
> > When I examine the login form page's souce I don't see a variable that
> > will post a "service" variable.
> >
> > The form has :
> >
> > <form method="post" action
> > ="login">
> > and 2 hidden variables of:
> >
> >
> > <input type="hidden"
> > name="lt" value=
> >
> >
"_c976FAEAA-E216-0AA6-4188-DD77CB6007B4_k2617A246-3C45-345A-E3FE-6CD8A8A0B0D3"
> > />
> > <input type="hidden" name
> > =
> >
> > "_eventId" value="submit" />
> >
> > I'm guessing 'lt' provides all the needed info?
> >
> >
> >
> > I may have misunderstood your question.
> >
> >
> >
> >
> >
> > On 12/21/06, Scott Battaglia < [EMAIL PROTECTED] > wrote:
> > >
> > > Have you checked your jsp page to make sure its transferring the
> > > service parameter from the GET to the POST?
> > >
> > > -Scott
> > >
> > > On 12/21/06, Vinny < [EMAIL PROTECTED]> wrote:
> > >
> > > > I should clarify what I mean by redirecting stopping. When I go to
> > > > my protected app, I get redirected to the CAS server.
> > > > I login, login is successful but instead of getting redirected
> > > > back to my original webapp, I instead end up at
> > > > https://myhost/cas/login with a success message. Any clues? I'm
> > > > sure it's something minor. From the logs which seem normal to me:
> > > >
> > > >
> > > >
> > > > 2006-12-21 12:04:36,176 DEBUG [
> > > > org.acegisecurity.securechannel.ChannelProcessingFilter] -
> > > > <Request: FilterInvocation: URL: /dwr/util.js; ConfigAttributes:
> > > > [REQUIRES_SECURE_CHANNEL]>
> > > > 2006-12-21 12:04:36,176 DEBUG [
> > > > org.acegisecurity.util.FilterChainProxy ] - </dwr/util.js at
> > > > position 2 of 6 in additional filter chain; firing Filter: '
> > > > [EMAIL PROTECTED]
> > > > '>
> > > > 2006-12-21 12:04:36,176 DEBUG [
> > > > org.acegisecurity.context.HttpSessionContextIntegrationFilter ] -
> > > > <Obtained from ACEGI_SECURITY_CONTEXT a valid SecurityContext and set to
> > > > SecurityContextHolder: '
> > > > [EMAIL PROTECTED]:
> > > > Authentication:
> > > > [EMAIL PROTECTED] :
> > > > Username: [EMAIL PROTECTED]: Username:
> > > > vstoessel; Password: [PROTECTED]; Enabled: true; AccountNonExpired:
true;
> > > > credentialsNonExpired: true; AccountNonLocked: true; Granted
Authorities:
> > > > ROLE_1; Password: [PROTECTED]; Authenticated: true; Details:
> > > > [EMAIL PROTECTED]: RemoteIpAddress:
> > > > 24.30.19.9; SessionId: avFH1HLoWFfdosV7L_; Granted Authorities:
> > > > ROLE_1; Credentials (Service/Proxy Ticket):
> > > > ST-2-sA7FPC9QEFtyJUBrvKKUdU52erW6UpRQ73N-20; Proxy-Granting Ticket IOU:
> > > > PGTIOU-2-BadSHcMQgeyZN7gTGDrV2AaxyEZGnXjFoJd; Proxy List: []'>
> > > > 2006-12-21 12:04:36,176 DEBUG [
> > > > org.acegisecurity.util.FilterChainProxy] - </dwr/util.js at
> > > > position 3 of 6 in additional filter chain; firing Filter: '
> > > > [EMAIL PROTECTED]'>
> > > > 2006-12-21 12:04:36,177 DEBUG [
> > > > org.acegisecurity.util.FilterChainProxy] - </dwr/util.js at
> > > > position 4 of 6 in additional filter chain; firing Filter: '
> > > > [EMAIL PROTECTED] '>
> > > > 2006-12-21 12:04:36,177 DEBUG [
> > > > org.acegisecurity.ui.basicauth.BasicProcessingFilter] -
> > > > <Authorization header: null>
> > > > 2006-12-21 12:04:36,177 DEBUG [
> > > > org.acegisecurity.util.FilterChainProxy] - </dwr/util.js at
> > > > position 5 of 6 in additional filter chain; firing Filter: '
> > > > [EMAIL PROTECTED]'>
> > > > 2006-12-21 12:04:36,177 DEBUG [
> > > > org.acegisecurity.util.FilterChainProxy] - </dwr/util.js at
> > > > position 6 of 6 in additional filter chain; firing Filter: '
> > > > [EMAIL PROTECTED]'>
> > > > 2006-12-21 12:04:36,177 DEBUG [
> > > > org.acegisecurity.intercept.web.PathBasedFilterInvocationDefinitionMap]
> > > > - <Candidate is: '/dwr/util.js'; pattern is /acegilogin.jsp;
matched=false>
> > > > 2006-12-21 12:04:36,177 DEBUG [
> > > > org.acegisecurity.intercept.web.PathBasedFilterInvocationDefinitionMap]
> > > > - <Candidate is: '/dwr/util.js'; pattern is /casfailed.jsp;
matched=false>
> > > > 2006-12-21 12:04:36,177 DEBUG [
> > > > org.acegisecurity.intercept.web.PathBasedFilterInvocationDefinitionMap]
> > > > - <Candidate is: '/dwr/util.js'; pattern is /logoff.jsp; matched=false>
> > > > 2006-12-21 12:04:36,177 DEBUG [
> > > > org.acegisecurity.intercept.web.PathBasedFilterInvocationDefinitionMap] -
<Candidate is: '/dwr/util.js'; pattern is /main.js; matched=false>
> > > > 2006-12-21 12:04:36,178 DEBUG [
> > > > org.acegisecurity.intercept.web.PathBasedFilterInvocationDefinitionMap]
> > > > - <Candidate is: '/dwr/util.js'; pattern is /main.css; matched=false>
> > > > 2006-12-21 12:04:36,178 DEBUG [
> > > > org.acegisecurity.intercept.web.PathBasedFilterInvocationDefinitionMap]
> > > > - <Candidate is: '/dwr/util.js'; pattern is /print.css; matched=false>
> > > > 2006-12-21 12:04:36,178 DEBUG [
> > > > org.acegisecurity.intercept.web.PathBasedFilterInvocationDefinitionMap]
> > > > - <Candidate is: '/dwr/util.js'; pattern is /js/**; matched=false>
> > > > 2006-12-21 12:04:36,178 DEBUG [
> > > > org.acegisecurity.intercept.web.PathBasedFilterInvocationDefinitionMap] -
<Candidate is: '/dwr/util.js'; pattern is /dwr/**; matched=true>
> > > > 2006-12-21 12:04:36,178 DEBUG [
> > > > org.acegisecurity.intercept.AbstractSecurityInterceptor] - <Secure
> > > > object: FilterInvocation: URL: /dwr/util.js; ConfigAttributes:
> > > > [ROLE_ANONYMOUS, ROLE_1, ROLE_2, ROLE_3, ROLE_4, ROLE_5]>
> > > > 2006-12-21 12:04:36,178 DEBUG [
> > > > org.acegisecurity.intercept.AbstractSecurityInterceptor] -
> > > > <Previously Authenticated:
> > > > [EMAIL PROTECTED]:
> > > > Username: [EMAIL PROTECTED] : Username:
> > > > vstoessel; Password: [PROTECTED]; Enabled: true; AccountNonExpired:
true;
> > > > credentialsNonExpired: true; AccountNonLocked: true; Granted
Authorities:
> > > > ROLE_1; Password: [PROTECTED]; Authenticated: true; Details:
> > > > [EMAIL PROTECTED]: RemoteIpAddress:
> > > > 24.30.19.9; SessionId: avFH1HLoWFfdosV7L_; Granted Authorities:
> > > > ROLE_1; Credentials (Service/Proxy Ticket):
> > > > ST-2-sA7FPC9QEFtyJUBrvKKUdU52erW6UpRQ73N-20; Proxy-Granting Ticket IOU:
> > > > PGTIOU-2-BadSHcMQgeyZN7gTGDrV2AaxyEZGnXjFoJd; Proxy List: []>
> > > > 2006-12-21 12:04:36,178 DEBUG [
> > > > org.acegisecurity.intercept.AbstractSecurityInterceptor] -
> > > > <Authorization successful>
> > > > 2006-12-21 12:04:36,179 DEBUG [
> > > > org.acegisecurity.intercept.AbstractSecurityInterceptor] -
> > > > <RunAsManager did not change Authentication object>
> > > > 2006-12-21 12:04:36,179 DEBUG [
> > > > org.acegisecurity.util.FilterChainProxy] - </dwr/util.js reached
> > > > end of additional filter chain; proceeding with original chain>
> > > > 2006-12-21 12:04:36,180 DEBUG [
> > > > org.acegisecurity.ui.ExceptionTranslationFilter ] - <Chain
> > > > processed normally>
> > > > 2006-12-21 12:04:36,180 DEBUG [
> > > > org.acegisecurity.context.HttpSessionContextIntegrationFilter] -
> > > > <SecurityContextHolder set to new context, as request processing
completed>
> > > >
> > > >
> > > >
> > > > On 12/21/06, Vinny < [EMAIL PROTECTED]> wrote:
> > > > >
> > > > > Hello all,
> > > > > I was having some issues with my 3.0.6 RC cas server so I
> > > > > dropped in the new 3.0.6 final.
> > > > > I use acegis
> > > > > org.acegisecurity.adapters.cas3.CasAuthenticationHandler and
> > > > > that is working well.
> > > > > I get authenticated but I am not being directed back to my
> > > > > "service" url. I had every working on my localhost
> > > > > but under the RC version but am getting stuck trying to deploy
> > > > > in production. Does the server need to know
> > > > > about the "services: that want to connect to it? Does
> > > > > services.xml in WEB-INF/classes need to be edited?
> > > > > I don't see where that file is referenced by anything.
> > > > > Thanks in advance
> > > > >
> > > > > --
> > > > > Ghetto Java: http://www.ghettojava.com
> > > >
> > > >
> > > >
> > > >
> > > > --
> > > > Ghetto Java: http://www.ghettojava.com
> > > >
> > > > _______________________________________________
> > > > Yale CAS mailing list
> > > > [email protected]
> > > > http://tp.its.yale.edu/mailman/listinfo/cas
> > > >
> > > >
> > > >
> > >
> > > _______________________________________________
> > > Yale CAS mailing list
> > > [email protected]
> > > http://tp.its.yale.edu/mailman/listinfo/cas
> > >
> > >
> > >
> >
> >
> > --
> > Ghetto Java: http://www.ghettojava.com
> >
> > _______________________________________________
> > Yale CAS mailing list
> > [email protected]
> > http://tp.its.yale.edu/mailman/listinfo/cas
> >
> >
> >
>
> _______________________________________________
> Yale CAS mailing list
> [email protected]
> http://tp.its.yale.edu/mailman/listinfo/cas
>
>
>
--
Ghetto Java: http://www.ghettojava.com
_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas
_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas
