Re: Logout problem

Scott Battaglia Fri, 11 Jul 2008 09:45:47 -0700

Your problem is your certificate doesn't match the host name.  You need to
generate a certificate for the appropriate host.


-Scott

-Scott Battaglia
PGP Public Key Id: 0x383733AA
LinkedIn: http://www.linkedin.com/in/scottbattaglia

On Fri, Jul 11, 2008 at 12:04 PM, SMallik <[EMAIL PROTECTED]> wrote:

>
> Hi All,
> I have 2 web-apps configured with CAS and Acegi Security for Spring where
> CAS is used for SSO and Acegi for Authn and Authz. For logout in both the
> applications I am calling a logout.jsp which has the following codes :
> <[EMAIL PROTECTED] import="org.acegisecurity.context.SecurityContextHolder"%>
> <%@ page import="org.acegisecurity.*" %>
> <%
> session.invalidate();
> SecurityContextHolder.getContext().setAuthentication(null);
> response.sendRedirect("https://testcas:8443/cas/logout";);
> %>
> testcas is the machine where both CAS and application1(testcas) is
> running.I
> can successfully logout from application 1( testcas) but when I am trying
> to
> logout from application2 (testcasa) it is giving me the following error :
>
> -------------------------------
> 2008-07-11 10:16:36,930 ERROR [org.jasig.cas.util.HttpClient] -
> java.io.IOException: HTTPS hostname wrong:  should be <testcasa>
> java.io.IOException: HTTPS hostname wrong:  should be <testcasa>
>        at sun.net.www.protocol.https.HttpsClient.checkURLSpoofing(Unknown
> Source)
>        at sun.net.www.protocol.https.HttpsClient.afterConnect(Unknown
> Source)
>        at
>
> sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.connect(Unknown
> Source)
>        at
> sun.net.www.protocol.http.HttpURLConnection.getOutputStream(Unknown
> Source)
>        at
> sun.net.www.protocol.https.HttpsURLConnectionImpl.getOutputStream(Unknown
> Source)
>        at
> org.jasig.cas.util.HttpClient.sendMessageToEndPoint(HttpClient.java:70)
>        at
>
> org.jasig.cas.authentication.principal.AbstractWebApplicationService.logOutOfService(AbstractWebApplicationService.java:147)
>        at
>
> org.jasig.cas.ticket.TicketGrantingTicketImpl.logOutOfServices(TicketGrantingTicketImpl.java:116)
>        at
>
> org.jasig.cas.ticket.TicketGrantingTicketImpl.expire(TicketGrantingTicketImpl.java:126)
>        at
>
> org.jasig.cas.CentralAuthenticationServiceImpl.destroyTicketGrantingTicket(CentralAuthenticationServiceImpl.java:153)
>        at
>
> org.jasig.cas.web.LogoutController.handleRequestInternal(LogoutController.java:63)
>        at
>
> org.springframework.web.servlet.mvc.AbstractController.handleRequest(AbstractController.java:153)
>        at
>
> org.springframework.web.servlet.mvc.SimpleControllerHandlerAdapter.handle(SimpleControllerHandlerAdapter.java:48)
>        at
>
> org.springframework.web.servlet.DispatcherServlet.doDispatch(DispatcherServlet.java:875)
>        at
>
> org.springframework.web.servlet.DispatcherServlet.doService(DispatcherServlet.java:809)
>        at
>
> org.springframework.web.servlet.FrameworkServlet.processRequest(FrameworkServlet.java:476)
>        at
>
> org.springframework.web.servlet.FrameworkServlet.doGet(FrameworkServlet.java:431)
>        at javax.servlet.http.HttpServlet.service(HttpServlet.java:690)
>        at javax.servlet.http.HttpServlet.service(HttpServlet.java:803)
>        at
>
> org.jasig.cas.web.init.SafeDispatcherServlet.service(SafeDispatcherServlet.java:115)
>        at
>
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269)
>        at
>
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188)
>        at
>
> org.inspektr.common.web.ClientInfoThreadLocalFilter.doFilterInternal(ClientInfoThreadLocalFilter.java:48)
>        at
>
> org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:75)
>        at
>
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:215)
>        at
>
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188)
>        at
>
> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213)
>        at
>
> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174)
>        at
>
> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>        at
>
> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117)
>        at
>
> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108)
>        at
> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:174)
>        at
> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:874)
>        at
>
> org.apache.coyote.http11.Http11BaseProtocol$Http11ConnectionHandler.processConnection(Http11BaseProtocol.java:665)
>        at
>
> org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket(PoolTcpEndpoint.java:528)
>        at
>
> org.apache.tomcat.util.net.LeaderFollowerWorkerThread.runIt(LeaderFollowerWorkerThread.java:81)
>        at
>
> org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689)
>        at java.lang.Thread.run(Unknown Source)
>
> -------------------------------
> Though it was working fine when I was using CAS 3.0.7 but started giving me
> problem when I shifted to CAS 3.2.1 .
> I have attached the config files. Can anyone please tell me as to where I
> am
> wrong in configuring ?
>
> For application1 : http://www.nabble.com/file/p18407195/acegi-config.xml
> acegi-config.xml
>
> For application2 : http://www.nabble.com/file/p18407195/acegi-config2.xml
> acegi-config2.xml
> http://www.nabble.com/file/p18407195/deployerConfigContext.xml
> deployerConfigContext.xml
> http://www.nabble.com/file/p18407195/cas.properties cas.properties
>
> Also, can you please tell me whats the significance of host.name=cas in
> cas.properties file ?
>
> Thanks
> --
> View this message in context:
> http://www.nabble.com/Logout-problem-tp18407195p18407195.html
> Sent from the CAS Users mailing list archive at Nabble.com.
>
> _______________________________________________
> Yale CAS mailing list
> [email protected]
> http://tp.its.yale.edu/mailman/listinfo/cas
>

_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas

Re: Logout problem

Reply via email to