Ok, pilot error. The serverName was misconfigured for one of the filters in web.xml. All is well on both IE (6.029) and firefox (3.05).
________________________________ From: tedzo <[email protected]> To: Yale CAS mailing list <[email protected]> Sent: Friday, January 16, 2009 5:31:54 PM Subject: Re: ntlm using firefox problem. Ok, so it seems that I didn't notice- on IE, when I try to go to http://testsys-xp.bling.com:8080/TestApp/Test.jsp I actually end up going to http://testsys-xp.bling.com:8443/TestApp/Test.jsp?ticket=ST-20-XU2bdqd1f6HsrgClhMqN-cas So, the same problem exists on IE, but for some reason IE displays the page (Test.jsp) where as Firefox tries to save the page. Although IE displays the page, the url is wrong which is bad. I have the following message in tomcat's logs- 2009-01-16 17:09:12,151 INFO [org.jasig.cas.authentication.AuthenticationManagerImpl] - <AuthenticationHandler:org.jasig.cas.support.spnego.authentication.handler.support.JCIFSSpnegoAuthenticationHandler failed to authenticate the user which provided the following credentials: Principal is null> 2009-01-16 17:09:12,167 INFO [org.jasig.cas.authentication.AuthenticationManagerImpl] - <AuthenticationHandler: org.jasig.cas.support.spnego.authentication.handler.support.JCIFSSpnegoAuthenticationHandler successfully authenticated the user which provided the following credentials: john> 2009-01-16 17:09:12,167 INFO [org.jasig.cas.CentralAuthenticationServiceImpl] -<Granted service ticket [ST-20-XU2bdqd1f6HsrgClhMqN-cas] for service [http://testsys-xp.cisco.com:8443/TestApp/Test.jsp] for user [john]> Jan 16, 2009 5:09:12 PM org.apache.tomcat.util.http.Parameters processParameters ________________________________ From: tedzo <[email protected]> To: Yale CAS mailing list <[email protected]> Sent: Friday, January 16, 2009 4:39:19 PM Subject: ntlm using firefox problem. Hello, I am trying to use NTLM authentication with CAS and have been successful with IE as the browser. However, when I try the same using firefox (v3), something funny happens- 1. I attempt to get to a page- http://testsys-xp.bling.com:8080/TestApp/Test.jsp 2. The browser displays a dialog box that says "You have chosen to open Test.jsp which is a jsp file from http://testsys-xp.bling.com:8443. What should Firefox do with this file - open or save" etc On the console, I see- 2009-01-16 15:56:36,365 INFO [org.jasig.cas.CentralAuthenticationServiceImpl] - <Granted service ticket [ST-12-2nnlBKQKwcqKfxYtsBOY-cas] for service [http://testsys-xp.bling.com:8443/TestApp/Test.jsp] for user [john]> The user name is correctly identified from the windows login. However, the service URL seems mixed up- The ticket appears to be granted for port number is 8443 whereas I specified 8080. I am not sure why that hapenned. I tried adding the server's url to network.negotiate-auth.trusted-uris as suggested in http://www.ja-sig.org/wiki/display/CASUM/SPNEGO and that didn't help. Infact, I tried a few different one- https://testsys-xp.bling.com, https://testsys-xp.bling.com:8443, https://testsys-xp.bling.com:8443/cas-server-3.3, http://testsys-xp.bling.com, but none of them worked. Any ideas to get this working on Firefox? Thanks for your time.
_______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
