It may be a misconfiguration on the Acegi side. Acegi was able to authenticate you:
11:43:03,625 WARN LoggerListener,http-443-Processor25:55 - Authentication event InteractiveAuthenticationSuccessEvent: jlee; details: [EMAIL PROTECTED]: RemoteIpAddress: 132.239.230.102; SessionId: 45B3F964B4F5F328E5074FAB966F4788 Make sure your filters are in the correct order and that the roles, pattern-matched urls, etc. are correct. -Scott On Jan 8, 2008 2:49 PM, auron <[EMAIL PROTECTED]> wrote: > > Hi Scott! > > Thanks for the reply. I was searching how to resolve this issue. I added > the > following to my web xml: > > <servlet> > <servlet-name>casproxy</servlet-name> > > <servlet-class>edu.yale.its.tp.cas.proxy.ProxyTicketReceptor > </servlet-class> > </servlet> > > <servlet-mapping> > <servlet-name>casproxy</servlet-name> > <url-pattern>/casProxy/*</url-pattern> > </servlet-mapping> > > <context-param> > <param-name>edu.yale.its.tp.cas.proxyUrl</param-name> > <param-value>https://acpdev.ucsd.edu/cas/proxy</param-value> > </context-param> > > I am still getting the infinite loop page redirect problem. It seems to > make > 7 attempts and then quit. Here is the new log output, I don't see anything > out of place so I am not sure what is going on: > > 2008-01-08 11:43:03,578 DEBUG > [org.jasig.cas.web.flow.InitialFlowSetupAction] - <Action > 'InitialFlowSetupAction' beginning execution> > 2008-01-08 11:43:03,578 DEBUG > [org.jasig.cas.web.flow.InitialFlowSetupAction] - <Placing service in > FlowScope: https://acpdev.ucsd.edu/jasperserver/j_acegi_cas_security_check > > > 2008-01-08 11:43:03,578 DEBUG > [org.jasig.cas.web.flow.InitialFlowSetupAction] - <Action > 'InitialFlowSetupAction' completed execution; result is 'success'> > 2008-01-08 11:43:03,578 DEBUG > [org.jasig.cas.web.flow.GenerateServiceTicketAction] - <Action > 'GenerateServiceTicketAction' beginning execution> > 2008-01-08 11:43:03,578 DEBUG > [org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Attempting to > retrieve ticket > [TGT-1-eExG2Ibecjfwyc1jHaKZ2GUQLvunIMAgEeaIywe0QbP50rOq6U]> > 2008-01-08 11:43:03,578 DEBUG > [org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Ticket > [TGT-1-eExG2Ibecjfwyc1jHaKZ2GUQLvunIMAgEeaIywe0QbP50rOq6U] found in > registry.> > 2008-01-08 11:43:03,578 DEBUG > [org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Added ticket > [ST-7-cOIfWIKI512DfQlEIsVK] to registry.> > 2008-01-08 11:43:03,578 INFO > [org.jasig.cas.CentralAuthenticationServiceImpl] - <Granted service ticket > [ST-7-cOIfWIKI512DfQlEIsVK] for service > [https://acpdev.ucsd.edu/jasperserver/j_acegi_cas_security_check] for user > [jlee]> > 2008-01-08 11:43:03,578 DEBUG > [org.jasig.cas.web.flow.GenerateServiceTicketAction] - <Action > 'GenerateServiceTicketAction' completed execution; result is 'success'> > 2008-01-08 11:43:03,609 DEBUG > [ > org.jasig.cas.authentication.handler.support.HttpBasedServiceCredentialsAuthenticationHandler > ] > - <Attempting to resolve credentials for > https://acpdev.ucsd.edu/jasperserver/casProxy/receptor> > 2008-01-08 11:43:03,609 DEBUG [org.jasig.cas.util.HttpClient] - <Response > code from server matched 200.> > 2008-01-08 11:43:03,609 INFO > [org.jasig.cas.authentication.AuthenticationManagerImpl] - > <AuthenticationHandler: > > org.jasig.cas.authentication.handler.support.HttpBasedServiceCredentialsAuthenticationHandler > successfully authenticated the user which provided the following > credentials: https://acpdev.ucsd.edu/jasperserver/casProxy/receptor> > 2008-01-08 11:43:03,609 DEBUG > [org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Attempting to > retrieve ticket [ST-7-cOIfWIKI512DfQlEIsVK]> > 2008-01-08 11:43:03,609 DEBUG > [org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Ticket > [ST-7-cOIfWIKI512DfQlEIsVK] found in registry.> > 2008-01-08 11:43:03,609 DEBUG > [org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Added ticket > [TGT-8-exPF9vJl05bWTDrpfIm6g4bs7LXJe1RxgKwRlUedo3fgWIBZZi] to registry.> > 2008-01-08 11:43:03,609 DEBUG > [org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Attempting to > retrieve ticket [ST-7-cOIfWIKI512DfQlEIsVK]> > 2008-01-08 11:43:03,609 DEBUG > [org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Ticket > [ST-7-cOIfWIKI512DfQlEIsVK] found in registry.> > 2008-01-08 11:43:03,609 DEBUG > [org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Removing ticket > [ST-7-cOIfWIKI512DfQlEIsVK] from registry> > 2008-01-08 11:43:03,609 DEBUG [org.jasig.cas.util.HttpClient] - <Response > code from server matched 200.> > 2008-01-08 11:43:03,609 DEBUG > [org.jasig.cas.ticket.proxy.support.Cas20ProxyHandler] - <Sent ProxyIou of > PGTIOU-7-LE5mHQQtcjMdIG1ik3tPwWbphiyQEpRSR6n for service: > https://acpdev.ucsd.edu/jasperserver/casProxy/receptor> > 11:43:03,625 WARN LoggerListener,http-443-Processor25:55 - Authentication > event AuthenticationSuccessEvent: jlee; details: null > 11:43:03,625 WARN LoggerListener,http-443-Processor25:55 - Authentication > event InteractiveAuthenticationSuccessEvent: jlee; details: > [EMAIL PROTECTED]: RemoteIpAddress: > 132.239.230.102; SessionId: 45B3F964B4F5F328E5074FAB966F4788 > > Any suggestions? > > Thanks, > Jin > > > > > scott_battaglia wrote: > > > > You're attempting to generate ProxyGrantingTicket for a URL endpoint > that > > does not exist: > > > > 008-01-08 10:38:21,461 DEBUG [org.jasig.cas.util.HttpClient] - <Response > > Code did not match any of the acceptable response codes. Code returned > > was > > 404> > > 2008-01-08 10:38:21,461 INFO > > [org.jasig.cas.authentication.AuthenticationManagerImpl] - > > <AuthenticationHandler: > > > org.jasig.cas.authentication.handler.support.HttpBasedServiceCredentialsAuthenticationHandler > > failed to authenticate the user which provided the following > credentials: > > https://acpdev.ucsd.edu/jasperserver/casProxy/receptor> > > > > -Scott > > > > > > On Jan 8, 2008 2:03 PM, auron <[EMAIL PROTECTED]> wrote: > > > >> > >> Hello everyone, > >> > >> I have a problem with Firefox giving me the "Page isn't redirecting > >> properly" error and was wondering if I could get some assistance. I've > >> set > >> up SSL via a keystore and imported it into my jre's cacerts. I have > >> tomcat > >> working over SSL and everything seems fine from the CAS server end. > >> > >> I am trying to integrate JasperReports using acegi security but it is > >> giving > >> me a TicketCreationException and for the life of me I cannot understand > >> why. > >> Here is the error: > >> > >> 2008-01-08 10:38:21,461 DEBUG > >> [ > >> > org.jasig.cas.authentication.handler.support.HttpBasedServiceCredentialsAuthenticationHandler > >> ] > >> - <Attempting to resolve credentials for > >> https://acpdev.ucsd.edu/jasperserver/casProxy/receptor> > >> 2008-01-08 10:38:21,461 DEBUG [org.jasig.cas.util.HttpClient] - > <Response > >> Code did not match any of the acceptable response codes. Code returned > >> was > >> 404> > >> 2008-01-08 10:38:21,461 INFO > >> [org.jasig.cas.authentication.AuthenticationManagerImpl] - > >> <AuthenticationHandler: > >> > >> > org.jasig.cas.authentication.handler.support.HttpBasedServiceCredentialsAuthenticationHandler > >> failed to authenticate the user which provided the following > credentials: > >> https://acpdev.ucsd.edu/jasperserver/casProxy/receptor> > >> 2008-01-08 10:38:21,461 ERROR > >> [org.jasig.cas.web.ServiceValidateController > >> ] > >> - <TicketException generating ticket for: > >> https://acpdev.ucsd.edu/jasperserver/casProxy/receptor> > >> org.jasig.cas.ticket.TicketCreationException: > >> error.authentication.credentials.bad > >> at > >> > >> > org.jasig.cas.CentralAuthenticationServiceImpl.delegateTicketGrantingTicket > >> (CentralAuthenticationServiceImpl.java:271) > >> at > >> org.jasig.cas.web.ServiceValidateController.handleRequestInternal( > >> ServiceValidateController.java:125) > >> at > >> org.springframework.web.servlet.mvc.AbstractController.handleRequest( > >> AbstractController.java:153) > >> at > >> > org.springframework.web.servlet.mvc.SimpleControllerHandlerAdapter.handle( > >> SimpleControllerHandlerAdapter.java:48) > >> at > >> org.springframework.web.servlet.DispatcherServlet.doDispatch( > >> DispatcherServlet.java:857) > >> at > >> org.springframework.web.servlet.DispatcherServlet.doService( > >> DispatcherServlet.java:792) > >> at > >> org.springframework.web.servlet.FrameworkServlet.processRequest( > >> FrameworkServlet.java:475) > >> at > >> org.springframework.web.servlet.FrameworkServlet.doGet( > >> FrameworkServlet.java:430) > >> at javax.servlet.http.HttpServlet.service(HttpServlet.java:690) > >> at javax.servlet.http.HttpServlet.service(HttpServlet.java:803) > >> at > >> org.jasig.cas.web.init.SafeDispatcherServlet.service( > >> SafeDispatcherServlet.java:115) > >> at > >> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter( > >> ApplicationFilterChain.java:269) > >> at > >> org.apache.catalina.core.ApplicationFilterChain.doFilter( > >> ApplicationFilterChain.java:188) > >> at > >> org.apache.catalina.core.StandardWrapperValve.invoke( > >> StandardWrapperValve.java:213) > >> at > >> org.apache.catalina.core.StandardContextValve.invoke( > >> StandardContextValve.java:174) > >> at > >> org.apache.catalina.core.StandardHostValve.invoke( > StandardHostValve.java > >> :127) > >> at > >> org.apache.catalina.valves.ErrorReportValve.invoke( > ErrorReportValve.java > >> :117) > >> at > >> org.apache.catalina.core.StandardEngineValve.invoke( > >> StandardEngineValve.java:108) > >> at > >> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java > >> :151) > >> at > >> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java > :874) > >> at > >> > >> > org.apache.coyote.http11.Http11BaseProtocol$Http11ConnectionHandler.processConnection > >> (Http11BaseProtocol.java:665) > >> at > >> org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket( > >> PoolTcpEndpoint.java:528) > >> at > >> org.apache.tomcat.util.net.LeaderFollowerWorkerThread.runIt( > >> LeaderFollowerWorkerThread.java:81) > >> at > >> org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run( > >> ThreadPool.java:689) > >> at java.lang.Thread.run(Unknown Source) > >> Caused by: error.authentication.credentials.bad > >> at > >> > org.jasig.cas.authentication.handler.BadCredentialsAuthenticationException > >> .<clinit>(BadCredentialsAuthenticationException.java:25) > >> at > >> org.jasig.cas.authentication.AuthenticationManagerImpl.authenticate( > >> AuthenticationManagerImpl.java:108) > >> at > >> > >> > org.jasig.cas.CentralAuthenticationServiceImpl.delegateTicketGrantingTicket > >> (CentralAuthenticationServiceImpl.java:242) > >> ... 24 more > >> 2008-01-08 10:38:21,461 DEBUG > >> [org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Attempting to > >> retrieve ticket [ST-7-dKQza4JWLrE4J301HacJ]> > >> 2008-01-08 10:38:21,461 DEBUG > >> [org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Ticket > >> [ST-7-dKQza4JWLrE4J301HacJ] found in registry.> > >> 2008-01-08 10:38:21,461 DEBUG > >> [org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Removing > ticket > >> [ST-7-dKQza4JWLrE4J301HacJ] from registry> > >> 10:38:21,476 WARN LoggerListener,http-443-Processor25:55 - > >> Authentication > >> event AuthenticationSuccessEvent: jlee; details: null > >> 10:38:21,476 WARN LoggerListener,http-443-Processor25:55 - > >> Authentication > >> event InteractiveAuthenticationSuccessEvent: jlee; details: > >> [EMAIL PROTECTED]: RemoteIpAddress: > >> 132.239.230.102; SessionId: A0C79C5C118E0A2FC410DBB7C41EB34E > >> > >> Does anyone know if/how I can get more insight into this error? > >> > >> Thank you very much, > >> Jin Lee > >> -- > >> View this message in context: > >> > http://www.nabble.com/page-redirect-problem-in-firefox%2C-ssl-seems-fine-though-tp14696390p14696390.html > >> Sent from the CAS Users mailing list archive at Nabble.com. > >> > >> _______________________________________________ > >> Yale CAS mailing list > >> [email protected] > >> http://tp.its.yale.edu/mailman/listinfo/cas > >> > > > > > > > > -- > > -Scott Battaglia > > > > LinkedIn: http://www.linkedin.com/in/scottbattaglia > > > > _______________________________________________ > > Yale CAS mailing list > > [email protected] > > http://tp.its.yale.edu/mailman/listinfo/cas > > > > > > -- > View this message in context: > http://www.nabble.com/page-redirect-problem-in-firefox%2C-ssl-seems-fine-though-tp14696390p14697349.html > Sent from the CAS Users mailing list archive at Nabble.com. > > _______________________________________________ > Yale CAS mailing list > [email protected] > http://tp.its.yale.edu/mailman/listinfo/cas > -- -Scott Battaglia LinkedIn: http://www.linkedin.com/in/scottbattaglia
_______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
