YES! I configured and manually tried to validate it. No wonder it
complained. This begs another question- why is the ticket returned to my app
if it is already been used and won't be recognized by CAS anymore? How would
I use the ticket?
Thanks for clearing this for me.
Ray.
PS: How does one reply to the original message? Last time my reply became
another question...
----- Original Message ----
From: Scott Battaglia <[EMAIL PROTECTED]>
To: Yale CAS mailing list <[email protected]>
Sent: Tuesday, January 16, 2007 7:55:17 PM
Subject: Re: Why is my ticket not recognized?
Ray,
Have you configured the filters AND manually tried to validate the service
ticket? It looks like the ticket is being validated twice.
-Scott
On 1/16/07, t ray <[EMAIL PROTECTED]> wrote:
>
> If I use session.getAttribute(CASFilter.CAS_FILTER_USER), I am able to
> get the username correctly. This is despite the validation failure. Why
> doesn't getting the user name from ServiceTicketValidater work? I think I am
> kind of confused how CAS works. My understanding-
> 1. Make changes to web.xml and set up filters for CAS.
> 2. All access to my webapp will be redirected to CAS wherein I can
> authenticate users against any backend.
> 3. Users are redirected to my webpage with a ticket after authentication
> .
> 4. My web page validates the received ticket using the service url (its
> own url).
> 5. CAS remembers user and does not require login again (if renew=true).
>
> Am I missing anything? I don't understand why
> validator.isAuthenticationSuccesful () failing and why the username is
> not available from ServiceTicketValidater (probably related to first issue).
> The logs state that authentication was successful....
> Any thoughts please?
>
> Ray.
>
> ----- Original Message ----
> From: t ray <[EMAIL PROTECTED] >
> To: [email protected]
> Sent: Tuesday, January 16, 2007 2:37:48 PM
> Subject: Why is my ticket not recognized?
>
> I am trying to set up CAS with my application and am running into some
> basic problem. I am redirected to CAS login page and to my example JSP page
> from there after authentication. I am using the default authentication of
> username equal to password. I also get back a ticket and the correct page is
> displayed. However, the username is null when I try to query it using
> ServiceTicketValidator class. Also, error message reports that ticket is not
> recognized. However, I am redirected correctly and logs say everything is
> fine until the final eror. Can someone please comment?
>
> I use the following code to get the user name-
>
> ServiceTicketValidator validator = new ServiceTicketValidator();
> validator.setCasValidateUrl("https://localhost:8443/cas/serviceValidate
> ");
>
validator.setService("http://localhost:8080/jsp-examples/jsp2/el/NewnotLicensed.jsp
> ");
> String tic = request.getParameter("ticket");
> System.out.println("Generated TICKET="+tic);
> validator.setServiceTicket (tic);
> validator.validate();
> if (validator.isAuthenticationSuccesful())
> System.out.println("Validation is successful");
> else {
> System.out.println("Validation has failed");
> System.out.println("error code="+validator.getErrorCode());
> System.out.println("error
> message="+validator.getErrorMessage());
> }
> System.out.println("User="+validator.getUser());
>
>
> Catalina logs are as follows:
>
> 2007-01-16 14:18:37,067 DEBUG [org.apache.catalina.session.ManagerBase]
> - <Start expire sessions StandardManager at 1168985917067 sessioncount 0>
> 2007-01-16 14:18:37,067 DEBUG [ org.apache.catalina.session.ManagerBase]
> - <End expire sessions StandardManager processingTime 0 expired sessions: 0>
> 2007-01-16 14:19:04,551 DEBUG [
> org.apache.catalina.core.ApplicationDispatcher] -
> <servletPath=/WEB-INF/view/jsp/default/ui/casLoginView.jsp, pathInfo=null,
> queryString=null, name=null>
> 2007-01-16 14:19:04,551 DEBUG [
> org.apache.catalina.core.ApplicationDispatcher] - < Path Based Forward>
> 2007-01-16 14:19:04,551 DEBUG [org.apache.jasper.servlet.JspServlet] -
> <JspEngine --> /WEB-INF/view/jsp/default/ui/casLoginView.jsp>
> 2007-01-16 14:19:04,551 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < ServletPath: /WEB-INF/view/jsp/default/ui/casLoginView.jsp>
> 2007-01-16 14:19:04,551 DEBUG [org.apache.jasper.servlet.JspServlet ] -
> < PathInfo: null>
> 2007-01-16 14:19:04,551 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < RealPath: C:\Program Files\Apache Software Foundation\Tomcat
> 5.5\webapps\cas\WEB-INF\view\jsp\default\ui\casLoginView.jsp >
> 2007-01-16 14:19:04,551 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < RequestURI: /cas/WEB-INF/view/jsp/default/ui/casLoginView.jsp>
> 2007-01-16 14:19:04,551 DEBUG [org.apache.jasper.servlet.JspServlet ] -
> < QueryString:
>
service=http%3A%2F%2Flocalhost%3A8080%2Fjsp-examples%2Fjsp2%2Fel%2FNewnotLicensed.jsp>
> 2007-01-16 14:19:04,551 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < Request Params: >
> 2007-01-16 14:19:04,551 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < service =
> http://localhost:8080/jsp-examples/jsp2/el/NewnotLicensed.jsp>
> 2007-01-16 14:19:04,582 DEBUG [
> org.apache.catalina.core.ApplicationDispatcher] - < Disabling the
> response for futher output>
> 2007-01-16 14:19:04,848 DEBUG [
> org.apache.catalina.core.ApplicationDispatcher] -
> <servletPath=/index.jsp, pathInfo=null, queryString=null, name=null>
> 2007-01-16 14:19:04,848 DEBUG [
> org.apache.catalina.core.ApplicationDispatcher] - < Path Based Forward>
> 2007-01-16 14:19:04,848 DEBUG [org.apache.jasper.servlet.JspServlet] -
> <JspEngine --> /index.jsp>
> 2007-01-16 14:19:04,848 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < ServletPath: /index.jsp>
> 2007-01-16 14:19:04,848 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < PathInfo: null>
> 2007-01-16 14:19:04,848 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < RealPath: C:\Program Files\Apache Software Foundation\Tomcat
> 5.5\webapps\cas\index.jsp>
> 2007-01-16 14:19:04,848 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < RequestURI: /cas/>
> 2007-01-16 14:19:04,848 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < QueryString: null>
> 2007-01-16 14:19:04,848 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < Request Params: >
> 2007-01-16 14:19:04,848 DEBUG [
> org.apache.catalina.core.ApplicationDispatcher] - < Disabling the
> response for futher output>
> 2007-01-16 14:19:04,863 DEBUG [
> org.apache.catalina.core.ApplicationDispatcher] -
> <servletPath=/WEB-INF/view/jsp/default/ui/casLoginView.jsp, pathInfo=null,
> queryString=null, name=null>
> 2007-01-16 14:19:04,863 DEBUG [
> org.apache.catalina.core.ApplicationDispatcher] - < Path Based Forward>
> 2007-01-16 14:19:04,863 DEBUG [org.apache.jasper.servlet.JspServlet] -
> <JspEngine --> /WEB-INF/view/jsp/default/ui/casLoginView.jsp>
> 2007-01-16 14:19:04,863 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < ServletPath: /WEB-INF/view/jsp/default/ui/casLoginView.jsp>
> 2007-01-16 14:19:04,863 DEBUG [org.apache.jasper.servlet.JspServlet ] -
> < PathInfo: null>
> 2007-01-16 14:19:04,863 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < RealPath: C:\Program Files\Apache Software Foundation\Tomcat
> 5.5\webapps\cas\WEB-INF\view\jsp\default\ui\casLoginView.jsp >
> 2007-01-16 14:19:04,863 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < RequestURI: /cas/WEB-INF/view/jsp/default/ui/casLoginView.jsp>
> 2007-01-16 14:19:04,863 DEBUG [org.apache.jasper.servlet.JspServlet ] -
> < QueryString: null>
> 2007-01-16 14:19:04,863 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < Request Params: >
> 2007-01-16 14:19:04,863 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < null = >
> 2007-01-16 14:19:04,863 DEBUG [
> org.apache.catalina.core.ApplicationDispatcher] - < Disabling the
> response for futher output>
> 2007-01-16 14:19:13,192 INFO [
> org.jasig.cas.authentication.AuthenticationManagerImpl ] -
> <AuthenticationHandler:
>
org.jasig.cas.authentication.handler.support.SimpleTestUsernamePasswordAuthenticationHandlersuccessfully
authenticated the user which provided the following
> credentials: ray>
> 2007-01-16 14:19:13,192 INFO [
> org.jasig.cas.CentralAuthenticationServiceImpl] -
http://localhost:8080/jsp-examples/jsp2/el/NewnotLicensed.jsp
> ] for user [ray]>
> 2007-01-16 14:19:14,442 DEBUG [
> org.apache.catalina.core.ApplicationDispatcher] -
>
<servletPath=/WEB-INF/view/jsp/default/protocol/2.0/casServiceValidationSuccess.jsp,
> pathInfo=null, queryString=null, name=null>
> 2007-01-16 14:19:14,442 DEBUG [
> org.apache.catalina.core.ApplicationDispatcher] - < Path Based Forward>
> 2007-01-16 14:19:14,442 DEBUG [org.apache.jasper.servlet.JspServlet] -
> <JspEngine -->
> /WEB-INF/view/jsp/default/protocol/2.0/casServiceValidationSuccess.jsp>
> 2007-01-16 14:19:14,442 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < ServletPath:
> /WEB-INF/view/jsp/default/protocol/2.0/casServiceValidationSuccess.jsp>
> 2007-01-16 14:19:14,442 DEBUG [org.apache.jasper.servlet.JspServlet ] -
> < PathInfo: null>
> 2007-01-16 14:19:14,442 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < RealPath: C:\Program Files\Apache Software Foundation\Tomcat
>
5.5\webapps\cas\WEB-INF\view\jsp\default\protocol\2.0\casServiceValidationSuccess.jsp>
> 2007-01-16 14:19:14,442 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < RequestURI:
> /cas/WEB-INF/view/jsp/default/protocol/2.0/casServiceValidationSuccess.jsp>
> 2007-01-16 14:19:14,442 DEBUG [org.apache.jasper.servlet.JspServlet ] -
> < QueryString:
>
service=http%3A%2F%2Flocalhost%3A8080%2Fjsp-examples%2Fjsp2%2Fel%2FNewnotLicensed.jsp&ticket=ST-3-MAwPOIMtzxf1wUzz2fhuEy2xr2vUuWFNEtJ-20>
> 2007-01-16 14:19:14,442 DEBUG [org.apache.jasper.servlet.JspServlet ] -
> < Request Params: >
> 2007-01-16 14:19:14,442 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < service =
> http://localhost:8080/jsp-examples/jsp2/el/NewnotLicensed.jsp>
> 2007-01-16 14:19:14,442 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < ticket = ST-3-MAwPOIMtzxf1wUzz2fhuEy2xr2vUuWFNEtJ-20>
> 2007-01-16 14:19:14,457 DEBUG [
> org.apache.catalina.core.ApplicationDispatcher] - < Disabling the
> response for futher output>
> Generated TICKET=ST-3-MAwPOIMtzxf1wUzz2fhuEy2xr2vUuWFNEtJ-20
> 2007-01-16 14:19:14,488 DEBUG [
> org.apache.catalina.core.ApplicationDispatcher] -
>
<servletPath=/WEB-INF/view/jsp/default/protocol/2.0/casServiceValidationFailure.jsp,
> pathInfo=null, queryString=null, name=null>
> 2007-01-16 14:19:14,488 DEBUG [
> org.apache.catalina.core.ApplicationDispatcher ] - < Path Based Forward>
> 2007-01-16 14:19:14,488 DEBUG [org.apache.jasper.servlet.JspServlet] -
> <JspEngine -->
> /WEB-INF/view/jsp/default/protocol/2.0/casServiceValidationFailure.jsp>
> 2007-01-16 14:19:14,488 DEBUG [ org.apache.jasper.servlet.JspServlet] -
> < ServletPath:
> /WEB-INF/view/jsp/default/protocol/2.0/casServiceValidationFailure.jsp>
> 2007-01-16 14:19:14,488 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < PathInfo: null>
> 2007-01-16 14:19:14,488 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < RealPath: C:\Program Files\Apache Software Foundation\Tomcat
>
5.5\webapps\cas\WEB-INF\view\jsp\default\protocol\2.0\casServiceValidationFailure.jsp>
> 2007-01-16 14:19:14,488 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < RequestURI:
> /cas/WEB-INF/view/jsp/default/protocol/2.0/casServiceValidationFailure.jsp>
> 2007-01-16 14:19:14,488 DEBUG [ org.apache.jasper.servlet.JspServlet] -
> < QueryString:
service=http://localhost:8080/jsp-examples/jsp2/el/NewnotLicensed.jsp&ticket=ST-3-MAwPOIMtzxf1wUzz2fhuEy2xr2vUuWFNEtJ-20
> >
> 2007-01-16 14:19:14,488 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < Request Params: >
> 2007-01-16 14:19:14,488 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < service =
> http://localhost:8080/jsp-examples/jsp2/el/NewnotLicensed.jsp>
> 2007-01-16 14:19:14,488 DEBUG [org.apache.jasper.servlet.JspServlet] -
> < ticket = ST-3-MAwPOIMtzxf1wUzz2fhuEy2xr2vUuWFNEtJ-20>
> 2007-01-16 14:19:14,488 DEBUG [
> org.apache.catalina.core.ApplicationDispatcher] - < Disabling the
> response for futher output>
> Validation has failed
> error code=INVALID_TICKET
> error message=ticket 'ST-3-MAwPOIMtzxf1wUzz2fhuEy2xr2vUuWFNEtJ-20' not
> recognized
> User=null
>
>
> This is where I am correctly redirected to-
>
>
http://localhost:8080/jsp-examples/jsp2/el/NewnotLicensed.jsp?ticket=ST-3-MAwPOIMtzxf1wUzz2fhuEy2xr2vUuWFNEtJ-20
>
>
>
> ------------------------------
> Cheap Talk? Check
out<http://us.rd.yahoo.com/mail_us/taglines/postman8/*http://us.rd.yahoo.com/evt=39663/*http://voice.yahoo.com>Yahoo!
Messenger's low PC-to-Phone call rates.
> _______________________________________________
> Yale CAS mailing list
> [email protected]
> http://tp.its.yale.edu/mailman/listinfo/cas
>
>
> ------------------------------
> Now that's room service! Choose from over 150,000 hotels
> in 45,000 destinations on Yahoo!
Travel<http://travel.yahoo.com/hotelsearchpage;_ylc=X3oDMTFtaTIzNXVjBF9TAzk3NDA3NTg5BF9zAzI3MTk0ODEEcG9zAzIEc2VjA21haWx0YWdsaW5lBHNsawNxMS0wNw--%0A>to
find your fit.
>
> _______________________________________________
> Yale CAS mailing list
> [email protected]
> http://tp.its.yale.edu/mailman/listinfo/cas
>
>
>
_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas
------------------------------
Never miss an email again!
Yahoo!
Toolbar<http://us.rd.yahoo.com/evt=49938/*http://tools.search.yahoo.com/toolbar/features/mail/>alerts
you the instant new Mail arrives.Check it out.
_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas
