Re: [cas-user] Re: Unauthorized After Login

2018-09-24 Thread Ramakrishna G 
https://cas.domain.com:8443/cas/serviceValidate

Can you curl the above url and see what response you are getting?

Check if the above url is accessible first?

Along with apache logs can you also post cas server logs


Sent from my iPhone

> On 24-Sep-2018, at 6:41 PM, Fahmi L. Ramdhani 
>  wrote:
> 
> I don't know why wp-content is loaded, even though the web content is only 
> index.php. There is no link that points to the wp-content.
> 
> The following is apache web settings:
> 
> ServerName cas.domain.com
> ServerAdmin ad...@domain.com
> 
> 
> 
> 
> AuthType CAS
> 
> # Options Indexes FollowSymLinks
> # AllowOverride All
> # Require all granted
> Require valid-user
> 
> 
> 
> 
> CASLoginUrl   https://cas.domain.com:8443/cas/login
> CASValidateUrl
> https://cas.domain.com:8443/cas/serviceValidate
> CASCookiePath /var/cache/apache2/mod_auth_cas/
> CASCertificatePath/etc/pki/tls/certs/cas.crt
> CASSSOEnabled On
> CASDebug  On
> 
> 
> 
> ErrorLog ${APACHE_LOG_DIR}/error.log
> CustomLog ${APACHE_LOG_DIR}/access.log combined
> 
> 
> SSLCertificateFile /etc/pki/tls/certs/cas.crt
> SSLCertificateKeyFile /etc/pki/tls/private/cas.key
> 
> 
> The main problem with this topic is error Unauthorized content after logging 
> in using the static user: casuser, Mellon. Can anyone help Unauthorized 
> problems?
> -- 
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> --- 
> You received this message because you are subscribed to the Google Groups 
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an 
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit 
> https://groups.google.com/a/apereo.org/d/msgid/cas-user/c4317599-bf00-45b3-9f81-86160dd487ea%40apereo.org.

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/B9E9983E-0587-47B4-9A22-4D3A08D36C91%40teligenz.in.

Re: [cas-user] Re: Unauthorized After Login

2018-09-24 Thread Fahmi L. Ramdhani 
I don't know why wp-content is loaded, even though the web content is only 
index.php. There is no link that points to the wp-content.

The following is apache web settings:

ServerName cas.domain.com
ServerAdmin ad...@domain.com



AuthType CAS

# Options Indexes FollowSymLinks
# AllowOverride All
# Require all granted
Require valid-user



CASLoginUrl   https://cas.domain.com:8443/cas/login
CASValidateUrl   
 https://cas.domain.com:8443/cas/serviceValidate
CASCookiePath /var/cache/apache2/mod_auth_cas/
CASCertificatePath/etc/pki/tls/certs/cas.crt
CASSSOEnabled On
CASDebug  On


ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined

SSLCertificateFile /etc/pki/tls/certs/cas.crt
SSLCertificateKeyFile /etc/pki/tls/private/cas.key



The main problem with this topic is *error Unauthorized* content after 
logging in using the static user: *casuser*, *Mellon*. Can anyone help 
Unauthorized problems?

Pada Senin, 24 September 2018 12.40.24 UTC+7, Ramakrishna G menulis:
>
> Fahmi,
>
> I your *HTTPSandIMAPSwildcard-1503925297.json *you have specified https 
> and trying to validate http. "http://
> cas.domain.com/wp-content/uploads/alternative.jpg"
>
> You can ignore js, css and images service validation by doing this in your 
> ssl.conf
>
>  "^/sso(/images/.*|/js/.*|/css/.*|/files/.*|/fonts/.*|/html/.*|/webjars/.*)*$">
> Require all granted
> ProxyPass http://localhost/sso/$1/
> ProxyPassReverse http://localhost/sso/$1/
>  
>
> Thanks
> Ramakrishna G
> +91 8792114542
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/f95c0586-c1ec-477f-b1e6-cdb87e01ef95%40apereo.org.

Re: [cas-user] Re: Unauthorized After Login

2018-09-23 Thread David Curry 
Using casuer/Mellon shouldn't make any difference.

Try turning mod_auth_cas debug logging on (CASDebug on) and see what it
tells you. Note that you also need to set the Apache logging level on the
virtual host to Debug to see the logs.

--

DAVID A. CURRY, CISSP
*DIRECTOR OF INFORMATION SECURITY*
INFORMATION TECHNOLOGY

71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
+1 212 229-5300 x4728 • david.cu...@newschool.edu

[image: The New School]


On Sun, Sep 23, 2018 at 12:33 PM Fahmi L. Ramdhani <
fahmilestianramdh...@gmail.com> wrote:

> I forgot to tell. I am logged in using the static cas user that is user:
> *casuser* and password: *Mellon*. Is there a problem from that?
>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit
> https://groups.google.com/a/apereo.org/d/msgid/cas-user/8ef9424d-c357-4654-b9ec-0f5fc3dd9c68%40apereo.org
> 
> .
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CA%2Bd9XAN0p6qTREYWW61jZpXfOOptg%2B6mXWJnD0r%2BL3iUsczVxw%40mail.gmail.com.