Can you turn on debugging to see what the actual message being sent is? -Scott
On Tue, Jun 17, 2008 at 4:10 PM, tedzo <[EMAIL PROTECTED]> wrote: > Scott, > > Thanks for your response. > > I am using java client 3.1.3 and I am now seeing a different exception due > to premature end-of-file.... > > > > Any ideas? > > javax.servlet.ServletException: > org.jasig.cas.client.validation.TicketValidationException: > org.xml.sax.SAXParseException: Premature end of file. > > org.jasig.cas.client.validation.AbstractTicketValidationFilter.doFilter(AbstractTicketValidationFilter.java:155) > > org.jasig.cas.client.authentication.AuthenticationFilter.doFilter(AuthenticationFilter.java:111) > > *root cause* > > org.jasig.cas.client.validation.TicketValidationException: > org.xml.sax.SAXParseException: Premature end of file. > > org.jasig.cas.client.validation.Saml11TicketValidator.parseResponseFromServer(Saml11TicketValidator.java:93) > > org.jasig.cas.client.validation.AbstractUrlBasedTicketValidator.validate(AbstractUrlBasedTicketValidator.java:188) > > org.jasig.cas.client.validation.AbstractTicketValidationFilter.doFilter(AbstractTicketValidationFilter.java:132) > > org.jasig.cas.client.authentication.AuthenticationFilter.doFilter(AuthenticationFilter.java:111) > > *root cause* > > org.xml.sax.SAXParseException: Premature end of file. > org.opensaml.SAMLObject.fromStream(Unknown Source) > org.opensaml.SAMLResponse.<init>(Unknown Source) > > org.jasig.cas.client.validation.Saml11TicketValidator.parseResponseFromServer(Saml11TicketValidator.java:48) > > org.jasig.cas.client.validation.AbstractUrlBasedTicketValidator.validate(AbstractUrlBasedTicketValidator.java:188) > > org.jasig.cas.client.validation.AbstractTicketValidationFilter.doFilter(AbstractTicketValidationFilter.java:132) > > org.jasig.cas.client.authentication.AuthenticationFilter.doFilter(AuthenticationFilter.java:111) > > *root cause* > > org.xml.sax.SAXParseException: Premature end of file. > > org.apache.xerces.util.ErrorHandlerWrapper.createSAXParseException(Unknown > Source) > org.apache.xerces.util.ErrorHandlerWrapper.fatalError(Unknown Source) > org.apache.xerces.impl.XMLErrorReporter.reportError(Unknown Source) > org.apache.xerces.impl.XMLErrorReporter.reportError(Unknown Source) > org.apache.xerces.impl.XMLVersionDetector.determineDocVersion(Unknown > Source) > org.apache.xerces.parsers.XML11Configuration.parse(Unknown Source) > org.apache.xerces.parsers.XML11Configuration.parse(Unknown Source) > org.apache.xerces.parsers.XMLParser.parse(Unknown Source) > org.apache.xerces.parsers.DOMParser.parse(Unknown Source) > org.apache.xerces.jaxp.DocumentBuilderImpl.parse(Unknown Source) > org.opensaml.XML$ParserPool.parse(Unknown Source) > org.opensaml.XML$ParserPool.parse(Unknown Source) > org.opensaml.SAMLObject.fromStream(Unknown Source) > org.opensaml.SAMLResponse.<init>(Unknown Source) > > org.jasig.cas.client.validation.Saml11TicketValidator.parseResponseFromServer(Saml11TicketValidator.java:48) > > org.jasig.cas.client.validation.AbstractUrlBasedTicketValidator.validate(AbstractUrlBasedTicketValidator.java:188) > > org.jasig.cas.client.validation.AbstractTicketValidationFilter.doFilter(AbstractTicketValidationFilter.java:132) > > org.jasig.cas.client.authentication.AuthenticationFilter.doFilter(AuthenticationFilter.java:111) > > > > ----- Original Message ---- > From: Scott Battaglia <[EMAIL PROTECTED]> > To: Yale CAS mailing list <[email protected]> > Sent: Tuesday, June 17, 2008 12:19:55 PM > Subject: Re: NumberFormatException in Saml11TicketValidationFilter > > All of our GA releases are available from the public Maven2 repo: > > http://repo1.maven.org/maven2/org/jasig/cas/cas-client-core/3.1.3/ > > -Scott > > -Scott Battaglia > PGP Public Key Id: 0x383733AA > LinkedIn: http://www.linkedin.com/in/scottbattaglia > > On Tue, Jun 17, 2008 at 3:07 PM, tedzo <[EMAIL PROTECTED]> wrote: > >> I am trying to use the Saml11TicketValidationFilter to try and get a >> demo of some sort work. I am using Cas client 3.1.1. I get the following >> exception after authentication- >> >> java.lang.NumberFormatException: For input string: "" >> >> java.lang.NumberFormatException.forInputString(NumberFormatException.java:48) >> java.lang.Integer.parseInt(Integer.java:468) >> java.lang.Integer.parseInt(Integer.java:497) >> org.opensaml.SAMLResponse.fromDOM(Unknown Source) >> org.opensaml.SAMLResponse.<init>(Unknown Source) >> >> org.jasig.cas.client.validation.Saml11TicketValidator.parseResponseFromServer(Saml11TicketValidator.java:46) >> >> org.jasig.cas.client.validation.AbstractUrlBasedTicketValidator.validate(AbstractUrlBasedTicketValidator.java:165) >> >> org.jasig.cas.client.validation.AbstractTicketValidationFilter.doFilter(AbstractTicketValidationFilter.java:129) >> >> org.jasig.cas.client.authentication.AuthenticationFilter.doFilter(AuthenticationFilter.java:103) >> >> >> Another thread suggests that Cas10TicketValidationFilter si broken and >> Cas20TicketValidationFilter should be used. However, I need to use the >> Saml11TicketValidationFilter and I guess thats broken too. >> >> http://www.ja-sig.org/issues/browse/CASC-41 suggests that the problem is >> fixed in 3.1.2. >> >> However, I am not able to find Java client 3.1.2. >> >> Any tips? >> >> Thanks. >> >> ----- Original Message ---- >> From: tedzo <[EMAIL PROTECTED]> >> >> To: Yale CAS mailing list <[email protected]> >> Sent: Monday, June 16, 2008 10:32:12 AM >> Subject: Re: Asml >> >> Any ideas? >> >> ----- Original Message ---- >> From: tedzo <[EMAIL PROTECTED]> >> To: Yale CAS mailing list <[email protected]> >> Sent: Thursday, June 12, 2008 3:30:21 PM >> Subject: Re: Asml >> >> Hmm. So who is actually making the AuthnRequest and parsing the >> response? Or, are you saying that an attempt to access webappB will always >> be redirected to CAS (because of the cas client) and the AuthRequest is sent >> to and the response parsed by the CAS server? >> >> >> >> Thanks. >> >> >> ----- Original Message ---- >> From: Scott Battaglia <[EMAIL PROTECTED]> >> To: Yale CAS mailing list <[email protected]> >> Sent: Thursday, June 12, 2008 2:22:51 PM >> Subject: Re: Asml >> >> I'm not sure I follow. If you've protected webapp B with the CAS client (a >> SAML client) and configured it to speak with CAS then it should always >> redirect to CAS. >> >> We're just using SAML to send back additional attributes if they are >> available. >> >> -Scott >> >> -Scott Battaglia >> PGP Public Key Id: 0x383733AA >> LinkedIn <http://www.linkedin.com/>: >> http://www.linkedin.com/in/scottbattaglia >> >> On Thu, Jun 12, 2008 at 2:10 PM, tedzo <[EMAIL PROTECTED]> wrote: >> >>> Scott, thanks for your response. >>> >>> I think I am stuck trying to demo Saml capability, mainly due to my lack >>> of understanding of how things work... >>> Let me first make sure what I understand is correct- >>> 1. There is a webappA on ServerA that is protected by some entity (not >>> CAS). >>> 2. There is a webappB on ServerB that is protected by CAS (3.2.1) >>> 3. The SamlTicketValidationFilter is setup on ServerB for webappB, >>> meaning, the filter is triggered when a user attempts to access webappB. >>> 4. The user accesses webappA, is asked to login by whatever is protecting >>> webappA. User logsin successfully. >>> 5. User clicks on a link to webappB from webappA. >>> 6. At this point, normally, CAS would ask the user to login. However, I >>> think I want CAS to make an authRequest to the entity that authenticated the >>> user on webappA, parse the response it gets (essentially that the user is >>> already authenticated and whatever details that go with it), and log the >>> user in and provide access to webappB. >>> >>> That would make the entity on serverA that authenticated the user to >>> webappA the IdProvider and CAS the ServiceProvider. >>> >>> Does this sound right or am I way of base? In order for me to demo CAS >>> saml capability, I would at most require an entity that responds to an >>> authRequest from CAS, is that correct? >>> >>> Thanks. I appreciate your time and interest. >>> >>> >>> >>> ----- Original Message ---- >>> From: Scott Battaglia <[EMAIL PROTECTED]> >>> To: Yale CAS mailing list <[email protected]> >>> Sent: Thursday, May 22, 2008 10:04:50 AM >>> Subject: Re: >>> >>> Hi, >>> >>> If you are using the latest CAS client, you should actually only need to >>> configure the Saml Ticket Validation Filter on the client-side (the server >>> should already handle it). >>> >>> -Scott >>> >>> On Tue, May 20, 2008 at 7:16 PM, tedzo <[EMAIL PROTECTED]> wrote: >>> >>>> I have downloaded the new cas-server and client versions and I want to >>>> check out saml support. How do I go about it? Specifically, I was thinking >>>> I >>>> would >>>> 1. get a hold of a saml client >>>> 2. figure out what kind of message needs to be sent to cas in order to >>>> login/set up a session >>>> 3. read the response from cas >>>> 4. figure out the username from the response. >>>> >>>> I am not familiar with saml, so excuse my naivety. What I am looking >>>> for- >>>> 1. suggestions for a client, if any. >>>> 2. What message I need to send to CAS in order to elicit a response. >>>> 3. What kind of response can I expect. >>>> 4. Any documents about cas/saml integration. I have been searching the >>>> archives and haven't found anything particularly useful... >>>> >>>> Appreciate you time. >>>> >>>> >>>> >>>> _______________________________________________ >>>> Yale CAS mailing list >>>> [email protected] >>>> http://tp.its.yale.edu/mailman/listinfo/cas >>>> >>>> >>> >>> >>> -- >>> -Scott Battaglia >>> PGP Public Key Id: 0x383733AA >>> LinkedIn <http://www.linkedin.com/>: >>> http://www.linkedin.com/in/scottbattaglia >>> >>> >>> _______________________________________________ >>> Yale CAS mailing list >>> [email protected] >>> http://tp.its.yale.edu/mailman/listinfo/cas >>> >>> >> >> >> >> >> _______________________________________________ >> Yale CAS mailing list >> [email protected] >> http://tp.its.yale.edu/mailman/listinfo/cas >> >> > > > _______________________________________________ > Yale CAS mailing list > [email protected] > http://tp.its.yale.edu/mailman/listinfo/cas > >
_______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
