Re: CAS CLIENT issue on Apache-With URL patterns

Wed, 24 Jan 2007 15:30:46 -0800 

How does the CAS serviceValidate work with URL redirects, Look at my furher
observations

http://localhost/test  =goes to => http://localhost/test/index.pl


eventhough it shows as follows

http://testmachine:8443/cas/login?service=http://localhost/test and when I
enter username and pass word

CAS log says Ticket granted successfully to http://localhost/test but
eventhough I called the serviceValidate with this ST and service xml comes
with cas:authenticationFailure

How to overcome this, is this an added security feature



Tracy12 wrote:
> 
> Hi,
> 
> Lets say on Apache we have a test folder inside /var/www (e.g
> /var/www/test) inside the test folder we have a index.pl file (which
> prints some ENV variable).
> 
> Also in the httpd.conf we have a entry as follows
> 
> DirectoryIndex index.pl index.html etc
> 
> This means when we make a entry as follows http://localhost/test  this
> goes to http://localhost/test/index.pl
> 
> The problem in my CAS Client when a user hits http://localhost/test it
> will get redirected to
> https://localhost:8443/cas/login?service=http://localhost/test 
> 
> Then user enters username and password and it get redirected to
> http://localhost/test with this URL with Service Ticket.
> 
> The problem is In the verification process when I retrieve the url
> (Dynamically) it is
> http://localhost/test/index.pl but I guess ST is genearted for
> http://localhost/test  due to this reason serviceValidate Fails, how to
> overcome this kind of schenario.
> 
> (In the verification process I get the service url dynamically instead of
> hardcoded service as usercan hit with parameters. Then I remove the ST and
> get a service URL without ST and with ST I call the serviceValidate)
> 
> Waiting for a reply
> 
> Thanks
> 
> 
> 
> 
> 

-- 
View this message in context: 
http://www.nabble.com/CAS-CLIENT-issue-on-Apache-With-URL-patterns-tf3079156.html#a8584343
Sent from the CAS Users mailing list archive at Nabble.com.

_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas

Reply via email to