Sorry for bothering you! I'm evaluating web testing tools and like Canoo Webtest. However, I have trouble to get through Two-Factor Authentication. It's a 3rd party tool, probably using WebSEAL. Basically, it accepts name and password to verify authentication and then redirect to a user site. I checked both webtest log and browser http session data. In a browser, it has no problem. It seems that the WebTest can be authenticated and then redirected to the user site. I could see complete correct response from the user site in the log. However, it then was kicked back to WebSEAL form.
I couldn't figure it out after spending fair amount of time and am ready to give up. Hope some smart guy can help me out, thanks! Following is the part of the log: [clickButton] INFO (com.canoo.webtest.steps.Step) - >>>> Start Step: clickButton (12/23) [clickButton] INFO (com.canoo.webtest.steps.request.ClickButton) - -> findTarget(by input): name=submit value= [clickButton] DEBUG (com.gargoylesoftware.htmlunit.javascript.host.EventListenersContainer) - Executing submit handler for HtmlForm[<form name="LoginPage" method="POST" action="/pkmslogin.form" onsubmit="return validate_form();">] [clickButton] DEBUG (httpclient.wire.header) - >> "POST /pkmslogin.form HTTP/1.1[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - >> "User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows 98)[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - >> "Accept-Language: en-us,en;q=0.5[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - >> "Referer: https://dev.cbfisap.ed.gov/devadmin/CBSWebApp/servlet/AdminServlet?SALogin.x=0&SALogin.y=0[\r][\n]"; [clickButton] DEBUG (httpclient.wire.header) - >> "Host: dev.cbfisap.ed.gov[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - >> "Cookie: AMWEBJCT!%2Fdevadmin!JSESSIONID=0000lpVbenkDzZP5aT7IOixzAvk:-1; IV_JCT=%2Fdevadmin; PD-H-SESSION-ID=4_10yPogQyR70affZbiK8LAnKB+tHTv7nbhShqR10thuynPVVH[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - >> "Content-Length: 57[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - >> "Content-Type: application/x-www-form-urlencoded[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - >> "[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "HTTP/1.1 302 Moved Temporarily[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "HTTP/1.1 302 Moved Temporarily[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "content-length: 1342[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "content-type: text/html[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "date: Wed, 15 Jul 2009 19:58:29 GMT[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "location: https://dev.cbfisap.ed.gov/devadmin/CBSWebApp/servlet/AdminServlet?SALogin.x=0&SALogin.y=0[\r][\n]"; [clickButton] DEBUG (httpclient.wire.header) - << "p3p: CP="NON CUR OTPi OUR NOR UNI"[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "cache-control: no-cache[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "pragma: no-cache[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "Set-Cookie: PD-H-SESSION-ID=4_KYeO5jxU031gLMQl9PYgCjVo7IwAlP9T3TBtg0Yx1P463gva; Path=/[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "Set-Cookie: PD-ID=LGeLpKO11EyAhIVtg9tOOKAbeEv651TYFlNJA6rygFJhfz9FMDqvnQ5rpkVb56Eif4b/yjDrWMAXvLQChJlSczQHZA/T0s92dwazxoiUPL0Xnxbn7ObqRUKQxK5z8LUpVfKaUKWEKZj/hfyP9shzyY+R3tIBc45fYF7SOGGgz7j00TDGzZsZAx96VgnRU0PNl5TJlldn+4PiIV02TqMBy2B6KcHoBIpnYeZ0t+0Xoj6RBkW4Sb8hWIOxG0oE2G0ZPAEwOr0p7DmcKcYIfm1JoA==; Domain=.ed.gov; Path=/; Secure[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - >> "GET /devadmin/CBSWebApp/servlet/AdminServlet?SALogin.x=0&SALogin.y=0 HTTP/1.1[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - >> "User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows 98)[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - >> "Accept-Language: en-us,en;q=0.5[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - >> "Referer: https://dev.cbfisap.ed.gov/devadmin/CBSWebApp/servlet/AdminServlet?SALogin.x=0&SALogin.y=0[\r][\n]"; [clickButton] DEBUG (httpclient.wire.header) - >> "Host: dev.cbfisap.ed.gov[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - >> "Cookie: AMWEBJCT!%2Fdevadmin!JSESSIONID=0000lpVbenkDzZP5aT7IOixzAvk:-1; IV_JCT=%2Fdevadmin; PD-H-SESSION-ID=4_KYeO5jxU031gLMQl9PYgCjVo7IwAlP9T3TBtg0Yx1P463gva; PD-ID=LGeLpKO11EyAhIVtg9tOOKAbeEv651TYFlNJA6rygFJhfz9FMDqvnQ5rpkVb56Eif4b/yjDrWMAXvLQChJlSczQHZA/T0s92dwazxoiUPL0Xnxbn7ObqRUKQxK5z8LUpVfKaUKWEKZj/hfyP9shzyY+R3tIBc45fYF7SOGGgz7j00TDGzZsZAx96VgnRU0PNl5TJlldn+4PiIV02TqMBy2B6KcHoBIpnYeZ0t+0Xoj6RBkW4Sb8hWIOxG0oE2G0ZPAEwOr0p7DmcKcYIfm1JoA==[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - >> "[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "HTTP/1.1 200 OK[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "HTTP/1.1 200 OK[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "content-language: en[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "content-type: text/html;charset=ISO-8859-1[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "date: Wed, 15 Jul 2009 19:58:30 GMT[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "p3p: CP="NON CUR OTPi OUR NOR UNI"[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "transfer-encoding: chunked[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "Set-Cookie: PD-H-SESSION-ID=4_KYeO5jxU031gLMQl9PYgCjVo7IwAlP9T3TBtg0Yx1P463gva; Path=/[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "Set-Cookie: PD-ID=LGeLpKO11EyAhIVtg9tOOKAbeEv651TYFlNJA6rygFJhfz9FMDqvnQ5rpkVb56Eif4b/yjDrWMAXvLQChJlSczQHZA/T0s92dwazxoiUPL0Xnxbn7ObqRUKQxK5z8LUpVfKaUKWEKZj/hfyP9shzyY+R3tIBc45fYF7SOGGgz7j00TDGzZsZAx96VgnRU0PNl5TJlldn+4PiIV02TqMBy2B6KcHoBIpnYeZ0t+0Xoj6RBkW4Sb8hWIOxG0oE2G0ZPAEwOr0p7DmcKcYIfm1JoA==; Domain=.ed.gov; Path=/; Secure[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "[\r][\n]" [clickButton] DEBUG (com.gargoylesoftware.htmlunit.javascript.host.HTMLDocument) - Added cookie: IV_JCT=%2Fdevadmin [clickButton] DEBUG (com.gargoylesoftware.htmlunit.javascript.host.HTMLDocument) - Added cookie: IV_JCT=%2Fdevadmin [clickButton] DEBUG (httpclient.wire.header) - >> "GET /devadmin/CBSWebApp/includes/popup.js HTTP/1.1[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - >> "User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows 98)[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - >> "Accept-Language: en-us,en;q=0.5[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - >> "Referer: https://dev.cbfisap.ed.gov/devadmin/CBSWebApp/servlet/AdminServlet?SALogin.x=0&SALogin.y=0[\r][\n]"; [clickButton] DEBUG (httpclient.wire.header) - >> "Host: dev.cbfisap.ed.gov[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - >> "Cookie: AMWEBJCT!%2Fdevadmin!JSESSIONID=0000lpVbenkDzZP5aT7IOixzAvk:-1; PD-H-SESSION-ID=4_KYeO5jxU031gLMQl9PYgCjVo7IwAlP9T3TBtg0Yx1P463gva; PD-ID=LGeLpKO11EyAhIVtg9tOOKAbeEv651TYFlNJA6rygFJhfz9FMDqvnQ5rpkVb56Eif4b/yjDrWMAXvLQChJlSczQHZA/T0s92dwazxoiUPL0Xnxbn7ObqRUKQxK5z8LUpVfKaUKWEKZj/hfyP9shzyY+R3tIBc45fYF7SOGGgz7j00TDGzZsZAx96VgnRU0PNl5TJlldn+4PiIV02TqMBy2B6KcHoBIpnYeZ0t+0Xoj6RBkW4Sb8hWIOxG0oE2G0ZPAEwOr0p7DmcKcYIfm1JoA==; IV_JCT=%2Fdevadmin[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - >> "[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "HTTP/1.1 200 OK[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "HTTP/1.1 200 OK[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "content-language: en[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "content-length: 1356[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "content-type: application/x-javascript[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "date: Wed, 15 Jul 2009 19:58:38 GMT[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "last-modified: Tue, 12 May 2009 15:54:36 GMT[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "p3p: CP="NON CUR OTPi OUR NOR UNI"[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "Set-Cookie: PD-H-SESSION-ID=4_KYeO5jxU031gLMQl9PYgCjVo7IwAlP9T3TBtg0Yx1P463gva; Path=/[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "Set-Cookie: PD-ID=LGeLpKO11EyAhIVtg9tOOKAbeEv651TYFlNJA6rygFJhfz9FMDqvnQ5rpkVb56Eif4b/yjDrWMAXvLQChJlSczQHZA/T0s92dwazxoiUPL0Xnxbn7ObqRUKQxK5z8LUpVfKaUKWEKZj/hfyP9shzyY+R3tIBc45fYF7SOGGgz7j00TDGzZsZAx96VgnRU0PNl5TJlldn+4PiIV02TqMBy2B6KcHoBIpnYeZ0t+0Xoj6RBkW4Sb8hWIOxG0oE2G0ZPAEwOr0p7DmcKcYIfm1JoA==; Domain=.ed.gov; Path=/; Secure[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "[\r][\n]" [clickButton] WARN (com.gargoylesoftware.htmlunit.html.HtmlPage) - Expected content type of 'application/javascript' or 'application/ecmascript' for remotely loaded JavaScript element at ' https://dev.cbfisap.ed.gov/devadmin/CBSWebApp/includes/popup.js', but got 'application/x-javascript'. [clickButton] INFO (com.canoo.webtest.engine.WebClientContext) - Content of window changed to https://dev.cbfisap.ed.gov/devadmin/CBSWebApp/servlet/AdminServlet?SALogin.x=0&SALogin.y=0(text/html) [clickButton] INFO (com.canoo.webtest.engine.WebClientContext) - Content of current window changed, it will become current response [clickButton] INFO (com.canoo.webtest.engine.WebClientContext) - Current form set to none [clickButton] INFO (com.canoo.webtest.engine.WebClientContext) - Current response now: https://dev.cbfisap.ed.gov/devadmin/CBSWebApp/servlet/AdminServlet?SALogin.x=0&SALogin.y=0[clickButton] DEBUG (httpclient.wire.header) - >> "POST /pkmslogin.form HTTP/1.1[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - >> "User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows 98)[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - >> "Accept-Language: en-us,en;q=0.5[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - >> "Referer: https://dev.cbfisap.ed.gov/devadmin/CBSWebApp/servlet/AdminServlet?SALogin.x=0&SALogin.y=0[\r][\n]"; [clickButton] DEBUG (httpclient.wire.header) - >> "Host: dev.cbfisap.ed.gov[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - >> "Cookie: AMWEBJCT!%2Fdevadmin!JSESSIONID=0000lpVbenkDzZP5aT7IOixzAvk:-1; IV_JCT=%2Fdevadmin; PD-H-SESSION-ID=4_KYeO5jxU031gLMQl9PYgCjVo7IwAlP9T3TBtg0Yx1P463gva; PD-ID=LGeLpKO11EyAhIVtg9tOOKAbeEv651TYFlNJA6rygFJhfz9FMDqvnQ5rpkVb56Eif4b/yjDrWMAXvLQChJlSczQHZA/T0s92dwazxoiUPL0Xnxbn7ObqRUKQxK5z8LUpVfKaUKWEKZj/hfyP9shzyY+R3tIBc45fYF7SOGGgz7j00TDGzZsZAx96VgnRU0PNl5TJlldn+4PiIV02TqMBy2B6KcHoBIpnYeZ0t+0Xoj6RBkW4Sb8hWIOxG0oE2G0ZPAEwOr0p7DmcKcYIfm1JoA==[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - >> "Content-Length: 79[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - >> "Content-Type: application/x-www-form-urlencoded[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - >> "[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "HTTP/1.1 200 OK[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "HTTP/1.1 200 OK[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "content-length: 480[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "content-type: text/html[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "date: Wed, 15 Jul 2009 19:58:39 GMT[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "p3p: CP="NON CUR OTPi OUR NOR UNI"[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "cache-control: no-cache[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "pragma: no-cache[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "Set-Cookie: PD-H-SESSION-ID=4_KYeO5jxU031gLMQl9PYgCjVo7IwAlP9T3TBtg0Yx1P463gva; Path=/[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "Set-Cookie: PD-ID=LGeLpKO11EyAhIVtg9tOOKAbeEv651TYFlNJA6rygFJhfz9FMDqvnQ5rpkVb56Eif4b/yjDrWMAXvLQChJlSczQHZA/T0s92dwazxoiUPL0Xnxbn7ObqRUKQxK5z8LUpVfKaUKWEKZj/hfyP9shzyY+R3tIBc45fYF7SOGGgz7j00TDGzZsZAx96VgnRU0PNl5TJlldn+4PiIV02TqMBy2B6KcHoBIpnYeZ0t+0Xoj6RBkW4Sb8hWIOxG0oE2G0ZPAEwOr0p7DmcKcYIfm1JoA==; Domain=.ed.gov; Path=/; Secure[\r][\n]" [clickButton] DEBUG (httpclient.wire.header) - << "[\r][\n]" [clickButton] INFO (com.canoo.webtest.engine.WebClientContext) - Content of window changed to https://dev.cbfisap.ed.gov/pkmslogin.form (text/html) [clickButton] INFO (com.canoo.webtest.engine.WebClientContext) - Content of current window changed, it will become current response [clickButton] INFO (com.canoo.webtest.engine.WebClientContext) - Current form set to none [clickButton] INFO (com.canoo.webtest.engine.WebClientContext) - Current response now: https://dev.cbfisap.ed.gov/pkmslogin.form [clickButton] DEBUG (com.gargoylesoftware.htmlunit.javascript.host.EventListenersContainer) - Executing load handler for HtmlPage( https://dev.cbfisap.ed.gov/pkmslogin.form)@17957281 [clickButton] DEBUG (com.gargoylesoftware.htmlunit.javascript.host.History) - javascript: history.go(String) not implemented yet [verifyTitle] INFO (com.canoo.webtest.steps.Step) - >>>> Start Step: verifyTitle "login in correctly" (13/23) Felix
