Hi All ,
I tried to run demo application available on CAS Wiki demo page [1] .first
I got a problem saying "File not found " for keystoreFile in the setting
from server.xml file . I resolved this by running following command and
editing server.xml file .
keytool -genkey -alias tomcat -keyalg RSA -keystore keystorefile.kdb (
password -Changeit)
<Connector port="8443" maxHttpHeaderSize="8192"
maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
enableLookups="false" disableUploadTimeout="true"
acceptCount="100" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS"
keystoreFile="/home/sagara/key/keystorefile.kdb"
keystorePass="changeit"
truststoreFile="/usr/lib/jvm/java-1.5.0-sun-1.5.0.13/jre/lib/security/cacerts"
/>
After that when I run the HelloWorld example I got CAS login page , I tried
to login with same user name and password (sagara,sagara) but got following
error .
*exception*
javax.servlet.ServletException: Unable to validate ProxyTicketValidator [[
edu.yale.its.tp.cas.client.ProxyTicketValidator proxyList=[null] [
edu.yale.its.tp.cas.client.ServiceTicketValidator casValidateUrl=[
https://localhost:8443/cas/serviceValidate]
ticket=[ST-1-oX9CCWQM5eKZhw6Rwbef-cas]
service=[http%3A%2F%2Flocalhost%3A8080%2Fservlets-examples%2Fservlet%2FHelloWorldExample]
renew=false]]]
edu.yale.its.tp.cas.client.filter.CASFilter.doFilter(CASFilter.java
:381)
filters.ExampleFilter.doFilter(ExampleFilter.java:101)
*root cause *
edu.yale.its.tp.cas.client.CASAuthenticationException: Unable to validate
ProxyTicketValidator
[[edu.yale.its.tp.cas.client.ProxyTicketValidatorproxyList=[null] [
edu.yale.its.tp.cas.client.ServiceTicketValidator casValidateUrl=[
https://localhost:8443/cas/serviceValidate]
ticket=[ST-1-oX9CCWQM5eKZhw6Rwbef-cas]
service=[http%3A%2F%2Flocalhost%3A8080%2Fservlets-examples%2Fservlet%2FHelloWorldExample]
renew=false]]]
edu.yale.its.tp.cas.client.CASReceipt.getReceipt(CASReceipt.java:52)
edu.yale.its.tp.cas.client.filter.CASFilter.getAuthenticatedUser(
CASFilter.java:455)
edu.yale.its.tp.cas.client.filter.CASFilter.doFilter(CASFilter.java
:378)
filters.ExampleFilter.doFilter(ExampleFilter.java:101)
please help me to solve this issue .
Thanks
Sagara Gunathunga
[1]- http://www.ja-sig.org/wiki/display/CASUM/Demo
Std.out
-----------------------------------------------------------------------------------------------------------------------------------------
Apr 1, 2008 4:22:41 PM org.apache.catalina.startup.Catalina start
INFO: Server startup in 12344 ms
2008-04-01 16:22:57,949 INFO [
org.jasig.cas.ticket.registry.support.DefaultTicketRegistryCleaner] -
<Starting cleaning of expired tickets from ticket registry at [Tue Apr 01
16:22:57 LKT 2008]>
2008-04-01 16:22:57,950 INFO [
org.jasig.cas.ticket.registry.support.DefaultTicketRegistryCleaner] - <0
found to be removed. Removing now.>
2008-04-01 16:22:57,950 INFO [
org.jasig.cas.ticket.registry.support.DefaultTicketRegistryCleaner] -
<Finished cleaning of expired tickets from ticket registry at [Tue Apr 01
16:22:57 LKT 2008]>
2008-04-01 16:24:33,642 INFO [org.jasig.cas.web.flow.InitialFlowSetupAction]
- <Setting ContextPath for cookies to: /cas>
2008-04-01 16:25:49,028 INFO [
org.jasig.cas.authentication.AuthenticationManagerImpl] -
<AuthenticationHandler:
org.jasig.cas.authentication.handler.support.SimpleTestUsernamePasswordAuthenticationHandlersuccessfully
authenticated the user which provided the following
credentials: sagara>
2008-04-01 16:25:49,038 INFO [org.jasig.cas.CentralAuthenticationServiceImpl]
- <Granted service ticket [ST-1-oX9CCWQM5eKZhw6Rwbef-cas] for service [
http://localhost:8080/servlets-examples/servlet/HelloWorldExample] for user
[sagara]>
Apr 1, 2008 4:25:49 PM edu.yale.its.tp.cas.client.CASReceipt getReceipt
SEVERE: edu.yale.its.tp.cas.client.CASAuthenticationException: Unable to
validate ProxyTicketValidator [[
edu.yale.its.tp.cas.client.ProxyTicketValidator proxyList=[null] [
edu.yale.its.tp.cas.client.ServiceTicketValidator casValidateUrl=[
https://localhost:8443/cas/serviceValidate]
ticket=[ST-1-oX9CCWQM5eKZhw6Rwbef-cas]
service=[http%3A%2F%2Flocalhost%3A8080%2Fservlets-examples%2Fservlet%2FHelloWorldExample]
renew=false]]]
Apr 1, 2008 4:25:49 PM edu.yale.its.tp.cas.client.filter.CASFilter doFilter
SEVERE: edu.yale.its.tp.cas.client.CASAuthenticationException: Unable to
validate ProxyTicketValidator [[
edu.yale.its.tp.cas.client.ProxyTicketValidator proxyList=[null] [
edu.yale.its.tp.cas.client.ServiceTicketValidator casValidateUrl=[
https://localhost:8443/cas/serviceValidate]
ticket=[ST-1-oX9CCWQM5eKZhw6Rwbef-cas]
service=[http%3A%2F%2Flocalhost%3A8080%2Fservlets-examples%2Fservlet%2FHelloWorldExample]
renew=false]]]
----------------------------------------------------------------------------------------------------------------------------------------------------
command used for create keystore File
-------------------------------------------------------------------------------------------------------------------------------------------------------
[EMAIL PROTECTED]:~/key$ keytool -genkey -alias tomcat -keyalg RSA
-keystore keystorefile.kdb
Enter keystore password: changeit
What is your first and last name?
[Unknown]: sagara sagara
What is the name of your organizational unit?
[Unknown]: sagara
What is the name of your organization?
[Unknown]: sagara
What is the name of your City or Locality?
[Unknown]: colombo
What is the name of your State or Province?
[Unknown]: western
What is the two-letter country code for this unit?
[Unknown]: sL
Is CN=sagara sagara, OU=sagara, O=sagara, L=colombo, ST=western, C=sL
correct?
[no]: yes
Enter key password for <tomcat>
(RETURN if same as keystore password):
[EMAIL PROTECTED]:~/key$ ls
keystorefile.kdb
[EMAIL PROTECTED]:~/key$
_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas
