Tu as mis quoi dans ton auth-pipeline.xml ? Car la valve de cas est déjà présente non?
Nicolas Nicolas LAFAURY Ingénieur étude et développement. Smile- Motoriste Internet 01-41-40-11-05 [EMAIL PROTECTED] J-295 -----Message d'origine----- De : Arnaud RUPIN [mailto:[EMAIL PROTECTED] Envoyé : jeudi 16 février 2006 16:25 À : [email protected] Objet : Re: CASification de Jahia5.0 * Accueil Jahia : http://esco-as-test.in.ac-rennes.fr:8080/jahia/ * Arrivée sur la mire de login CAS : https://auth.toutatice.fr/cas/login?service=http://esco-as-test.in.ac-rennes.fr:8080/jahia/Jahia/pid/1 * Retour à Jahia après le login CAS : http://esco-as-test.in.ac-rennes.fr:8080/jahia/Jahia/pid/1?ticket=ST-15279-ccBeeD5UL8MUVjDOFihM Après vérification dans les logs du server CAS, j'ai bien un "Authentication succeeded" donc je suis bien loggé sur CAS mais d'après les logs Jahia le ST n'est pas validé et je ne suis pas authentifié sous Jahia. Mon cas.properties : cas.jahia.serviceUrl=http://esco-as-test.in.ac-rennes.fr:8080/jahia cas.server.validateUrl=https://auth.toutatice.fr/cas/serviceValidate cas.server.loginUrl=https://auth.toutatice.fr/cas/login Dans les sources Jahia, on peut voir dans CasService.validateTicket : logger.debug(JAHIA_SERVICE_URL_PROP + " = " + serviceUrl); Il se traduit dans mon catalina.out par : 4550877 [2006-02-16 16:11:15,620] [org.jahia.services.sso.CasService] DEBUG - cas.jahia.serviceUrl = http://esco-as-test.in.ac-rennes.fr:8080/jahia/Jahia/pid/-1 Et là je ne comprends pas pourquoi je récupère ce "-1". A noter que je n'ai touché qu'au auth-pipeline.xml et au cas.properties. Je n'ai pas ajouté de Filter dans mon web.xml (je n'ai pas jugé ça utile d'après ce que j'ai vu des sources). Merci beaucoup Cordialement -- Arnaud RUPIN Rectorat de Rennes SERvice Informatique Académique(SERIA) Département Etablissement, Bureau des études techniques (SERIA-E3) Thomas Draier a écrit : > Sur la page de login de cas, quel url est specifiee dans le parametre > service ? Vers quelle url etes vous rediriges apres le login ? > > Le 16 févr. 06 à 15:24, Arnaud RUPIN a écrit : > >> En activant le mode DEBUG sur "org.jahia.services.sso" j'obtiens une >> chose bizarre : >> --- >> 1330692 [2006-02-16 15:17:35,435] >> [org.jahia.services.sso.CasService] >> DEBUG - cas.server.validateUrl = >> https://auth.toutatice.fr/cas/serviceValidate >> 1330694 [2006-02-16 15:17:35,437] >> [org.jahia.services.sso.CasService] >> DEBUG - cas.jahia.serviceUrl = >> http://esco-as-test.in.ac-rennes.fr:8080/jahia/Jahia/pid/-1 >> org.jahia.exceptions.JahiaException: User message=Cannot validate >> CAS credentials, System message=Cannot validate CAS credentials, >> root cause:error #INVALID_SERVICE while validating ticket 'ST-15160- >> G1kGJtbepXAlYmqn9XrY': ticket 'ST-15160-G1kGJtbepXAlYmqn9XrY' does >> not match supplied service root >> cause=edu.yale.its.tp.cas.client.CASAuthenticationException: error >> #INVALID_SERVICE while validating ticket 'ST-15160- >> G1kGJtbepXAlYmqn9XrY': ticket 'ST-15160-G1kGJtbepXAlYmqn9XrY' does >> not match supplied service >> --- >> Le cas.jahia.serviceUrl serait "http://esco-as-test.in.ac-rennes.fr: >> 8080/jahia/Jahia/pid/-1" au lieu de "http://esco-as-test.in.ac- >> rennes.fr:8080/jahia/Jahia/pid/1" >> >> Quelqu'un sait pourquoi mon pageID passe de 1 à -1 ? >> Cela pourrait expliquer le problème de non validation de ST. >> >> Cordialement >> >> -- >> Arnaud RUPIN >> Rectorat de Rennes >> SERvice Informatique Académique(SERIA) Département Etablissement, >> Bureau des études techniques (SERIA-E3) >> >> Arnaud RUPIN a écrit : >> >>> J'ai effectivement des erreurs dans mon catalina.out. >>> Si qq'un a une piste je suis preneur ;) : >>> ---------- >>> org.jahia.exceptions.JahiaException: User message=Cannot validate >>> CAS credentials, System message=Cannot validate CAS credentials, >>> root cause:error #INVALID_SERVICE while validating ticket >>> 'ST-15013-QhrZDIl2PseWFvBPPf4Q': ticket 'ST-15013- >>> QhrZDIl2PseWFvBPPf4Q' does not match supplied service root >>> cause=edu.yale.its.tp.cas.client.CASAuthenticationException: error >>> #INVALID_SERVICE while validating ticket 'ST-15013- >>> QhrZDIl2PseWFvBPPf4Q': ticket 'ST-15013-QhrZDIl2PseWFvBPPf4Q' does >>> not match supplied service >>> at org.jahia.params.valves.CasAuthValveImpl.validateCredentials >>> (CasAuthValveImpl.java:60) at >>> org.jahia.pipelines.valves.SsoValve.invoke(SsoValve.java:77) >>> at org.jahia.pipelines.impl.GenericPipeline.invokeNext >>> (GenericPipeline.java:192) at >>> org.jahia.pipelines.impl.GenericPipeline.invoke >>> (GenericPipeline.java:179) >>> at org.jahia.params.ParamBean.resolveUser(ParamBean.java:3353) >>> at org.jahia.params.ParamBean.<init>(ParamBean.java:431) >>> at org.jahia.params.ParamBean.<init>(ParamBean.java:360) >>> at org.jahia.params.ProcessingContextFactoryImpl.getContext >>> (ProcessingContextFactoryImpl.java:36) at >>> org.jahia.bin.Jahia.createParamBean(Jahia.java:878) >>> at org.jahia.bin.Jahia.service(Jahia.java:786) >>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter >>> (ApplicationFilterChain.java:252) at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter >>> (ApplicationFilterChain.java:173) at >>> org.jahia.bin.filters.ntlm.NtlmHttpFilter.doFilter >>> (NtlmHttpFilter.java:135) >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter >>> (ApplicationFilterChain.java:202) at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter >>> (ApplicationFilterChain.java:173) at >>> org.jahia.bin.filters.esi.ESIFilter.doFilter(ESIFilter.java:83) >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter >>> (ApplicationFilterChain.java:202) at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter >>> (ApplicationFilterChain.java:173) at >>> org.apache.catalina.core.StandardWrapperValve.invoke >>> (StandardWrapperValve.java:213) at >>> org.apache.catalina.core.StandardContextValve.invoke >>> (StandardContextValve.java:178) at >>> org.apache.catalina.core.StandardHostValve.invoke >>> (StandardHostValve.java:126) at >>> org.apache.catalina.valves.ErrorReportValve.invoke >>> (ErrorReportValve.java:105) at >>> org.apache.catalina.core.StandardEngineValve.invoke >>> (StandardEngineValve.java:107) at >>> org.apache.catalina.connector.CoyoteAdapter.service >>> (CoyoteAdapter.java:148) >>> at org.apache.coyote.http11.Http11Processor.process >>> (Http11Processor.java:869) >>> at org.apache.coyote.http11.Http11BaseProtocol >>> $Http11ConnectionHandler.processConnection(Http11BaseProtocol.java: >>> 667) at org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket >>> (PoolTcpEndpoint.java:527) at >>> org.apache.tomcat.util.net.LeaderFollowerWorkerThread.runIt >>> (LeaderFollowerWorkerThread.java:80) at >>> org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run >>> (ThreadPool.java:684) at java.lang.Thread.run(Thread.java:534) >>> edu.yale.its.tp.cas.client.CASAuthenticationException: error >>> #INVALID_SERVICE while validating ticket 'ST-15013- >>> QhrZDIl2PseWFvBPPf4Q': ticket 'ST-15013-QhrZDIl2PseWFvBPPf4Q' does >>> not match supplied service >>> at org.jahia.services.sso.CasService.validateTicket >>> (CasService.java:191) >>> at org.jahia.params.valves.CasAuthValveImpl.validateCredentials >>> (CasAuthValveImpl.java:58) at >>> org.jahia.pipelines.valves.SsoValve.invoke(SsoValve.java:77) >>> at org.jahia.pipelines.impl.GenericPipeline.invokeNext >>> (GenericPipeline.java:192) at >>> org.jahia.pipelines.impl.GenericPipeline.invoke >>> (GenericPipeline.java:179) >>> at org.jahia.params.ParamBean.resolveUser(ParamBean.java:3353) >>> at org.jahia.params.ParamBean.<init>(ParamBean.java:431) >>> at org.jahia.params.ParamBean.<init>(ParamBean.java:360) >>> at org.jahia.params.ProcessingContextFactoryImpl.getContext >>> (ProcessingContextFactoryImpl.java:36) at >>> org.jahia.bin.Jahia.createParamBean(Jahia.java:878) >>> at org.jahia.bin.Jahia.service(Jahia.java:786) >>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter >>> (ApplicationFilterChain.java:252) at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter >>> (ApplicationFilterChain.java:173) at >>> org.jahia.bin.filters.ntlm.NtlmHttpFilter.doFilter >>> (NtlmHttpFilter.java:135) >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter >>> (ApplicationFilterChain.java:202) at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter >>> (ApplicationFilterChain.java:173) at >>> org.jahia.bin.filters.esi.ESIFilter.doFilter(ESIFilter.java:83) >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter >>> (ApplicationFilterChain.java:202) at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter >>> (ApplicationFilterChain.java:173) at >>> org.apache.catalina.core.StandardWrapperValve.invoke >>> (StandardWrapperValve.java:213) at >>> org.apache.catalina.core.StandardContextValve.invoke >>> (StandardContextValve.java:178) at >>> org.apache.catalina.core.StandardHostValve.invoke >>> (StandardHostValve.java:126) at >>> org.apache.catalina.valves.ErrorReportValve.invoke >>> (ErrorReportValve.java:105) at >>> org.apache.catalina.core.StandardEngineValve.invoke >>> (StandardEngineValve.java:107) at >>> org.apache.catalina.connector.CoyoteAdapter.service >>> (CoyoteAdapter.java:148) >>> at org.apache.coyote.http11.Http11Processor.process >>> (Http11Processor.java:869) >>> at org.apache.coyote.http11.Http11BaseProtocol >>> $Http11ConnectionHandler.processConnection(Http11BaseProtocol.java: >>> 667) at org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket >>> (PoolTcpEndpoint.java:527) at >>> org.apache.tomcat.util.net.LeaderFollowerWorkerThread.runIt >>> (LeaderFollowerWorkerThread.java:80) at >>> org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run >>> (ThreadPool.java:684) at java.lang.Thread.run(Thread.java:534) >>> edu.yale.its.tp.cas.client.CASAuthenticationException: error >>> #INVALID_SERVICE while validating ticket 'ST-15013- >>> QhrZDIl2PseWFvBPPf4Q': ticket 'ST-15013-QhrZDIl2PseWFvBPPf4Q' does >>> not match supplied service >>> at org.jahia.services.sso.CasService.validateTicket >>> (CasService.java:191) >>> at org.jahia.params.valves.CasAuthValveImpl.validateCredentials >>> (CasAuthValveImpl.java:58) at >>> org.jahia.pipelines.valves.SsoValve.invoke(SsoValve.java:77) >>> at org.jahia.pipelines.impl.GenericPipeline.invokeNext >>> (GenericPipeline.java:192) at >>> org.jahia.pipelines.impl.GenericPipeline.invoke >>> (GenericPipeline.java:179) >>> at org.jahia.params.ParamBean.resolveUser(ParamBean.java:3353) >>> at org.jahia.params.ParamBean.<init>(ParamBean.java:431) >>> at org.jahia.params.ParamBean.<init>(ParamBean.java:360) >>> at org.jahia.params.ProcessingContextFactoryImpl.getContext >>> (ProcessingContextFactoryImpl.java:36) at >>> org.jahia.bin.Jahia.createParamBean(Jahia.java:878) >>> at org.jahia.bin.Jahia.service(Jahia.java:786) >>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter >>> (ApplicationFilterChain.java:252) at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter >>> (ApplicationFilterChain.java:173) at >>> org.jahia.bin.filters.ntlm.NtlmHttpFilter.doFilter >>> (NtlmHttpFilter.java:135) >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter >>> (ApplicationFilterChain.java:202) at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter >>> (ApplicationFilterChain.java:173) at >>> org.jahia.bin.filters.esi.ESIFilter.doFilter(ESIFilter.java:83) >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter >>> (ApplicationFilterChain.java:202) at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter >>> (ApplicationFilterChain.java:173) at >>> org.apache.catalina.core.StandardWrapperValve.invoke >>> (StandardWrapperValve.java:213) at >>> org.apache.catalina.core.StandardContextValve.invoke >>> (StandardContextValve.java:178) at >>> org.apache.catalina.core.StandardHostValve.invoke >>> (StandardHostValve.java:126) at >>> org.apache.catalina.valves.ErrorReportValve.invoke >>> (ErrorReportValve.java:105) at >>> org.apache.catalina.core.StandardEngineValve.invoke >>> (StandardEngineValve.java:107) at >>> org.apache.catalina.connector.CoyoteAdapter.service >>> (CoyoteAdapter.java:148) >>> at org.apache.coyote.http11.Http11Processor.process >>> (Http11Processor.java:869) >>> at org.apache.coyote.http11.Http11BaseProtocol >>> $Http11ConnectionHandler.processConnection(Http11BaseProtocol.java: >>> 667) at org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket >>> (PoolTcpEndpoint.java:527) at >>> org.apache.tomcat.util.net.LeaderFollowerWorkerThread.runIt >>> (LeaderFollowerWorkerThread.java:80) at >>> org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run >>> (ThreadPool.java:684) at java.lang.Thread.run(Thread.java:534) >>> 184003 [2006-02-16 12:34:55,714] >>> [org.jahia.pipelines.valves.SsoValve] ERROR - >>> org.jahia.exceptions.JahiaException: User message=Cannot validate >>> CAS credentials, System message=Cannot validate CAS credentials, >>> root cause:error #INVALID_SERVICE while validating ticket >>> 'ST-15013-QhrZDIl2PseWFvBPPf4Q': ticket 'ST-15013- >>> QhrZDIl2PseWFvBPPf4Q' does not match supplied service root >>> cause=edu.yale.its.tp.cas.client.CASAuthenticationException: error >>> #INVALID_SERVICE while validating ticket 'ST-15013- >>> QhrZDIl2PseWFvBPPf4Q': ticket 'ST-15013-QhrZDIl2PseWFvBPPf4Q' does >>> not match supplied service >>> 184031 [2006-02-16 12:34:55,742] [org.jahia.params.ParamBean] ERROR >>> - Error while authorizing user >>> org.jahia.pipelines.PipelineException: exception was thrown while >>> validating credentials! >>> at org.jahia.pipelines.valves.SsoValve.invoke(SsoValve.java:81) >>> at org.jahia.pipelines.impl.GenericPipeline.invokeNext >>> (GenericPipeline.java:192) at >>> org.jahia.pipelines.impl.GenericPipeline.invoke >>> (GenericPipeline.java:179) >>> at org.jahia.params.ParamBean.resolveUser(ParamBean.java:3353) >>> at org.jahia.params.ParamBean.<init>(ParamBean.java:431) >>> at org.jahia.params.ParamBean.<init>(ParamBean.java:360) >>> at org.jahia.params.ProcessingContextFactoryImpl.getContext >>> (ProcessingContextFactoryImpl.java:36) at >>> org.jahia.bin.Jahia.createParamBean(Jahia.java:878) >>> at org.jahia.bin.Jahia.service(Jahia.java:786) >>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter >>> (ApplicationFilterChain.java:252) at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter >>> (ApplicationFilterChain.java:173) at >>> org.jahia.bin.filters.ntlm.NtlmHttpFilter.doFilter >>> (NtlmHttpFilter.java:135) >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter >>> (ApplicationFilterChain.java:202) at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter >>> (ApplicationFilterChain.java:173) at >>> org.jahia.bin.filters.esi.ESIFilter.doFilter(ESIFilter.java:83) >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter >>> (ApplicationFilterChain.java:202) at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter >>> (ApplicationFilterChain.java:173) at >>> org.apache.catalina.core.StandardWrapperValve.invoke >>> (StandardWrapperValve.java:213) at >>> org.apache.catalina.core.StandardContextValve.invoke >>> (StandardContextValve.java:178) at >>> org.apache.catalina.core.StandardHostValve.invoke >>> (StandardHostValve.java:126) at >>> org.apache.catalina.valves.ErrorReportValve.invoke >>> (ErrorReportValve.java:105) at >>> org.apache.catalina.core.StandardEngineValve.invoke >>> (StandardEngineValve.java:107) at >>> org.apache.catalina.connector.CoyoteAdapter.service >>> (CoyoteAdapter.java:148) >>> at org.apache.coyote.http11.Http11Processor.process >>> (Http11Processor.java:869) >>> at org.apache.coyote.http11.Http11BaseProtocol >>> $Http11ConnectionHandler.processConnection(Http11BaseProtocol.java: >>> 667) at org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket >>> (PoolTcpEndpoint.java:527) at >>> org.apache.tomcat.util.net.LeaderFollowerWorkerThread.runIt >>> (LeaderFollowerWorkerThread.java:80) at >>> org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run >>> (ThreadPool.java:684) at java.lang.Thread.run(Thread.java:534) >>> 184052 [2006-02-16 12:34:55,763] [org.jahia.bin.Jahia] INFO - >>> Processed [/jahia/Jahia/pid/1] user=[guest] ip=[172.29.212.171] in >>> [375ms] >>> ---------- >>> Cordialement > > >
