Versions Compared

Old Version 43

changes.mady.by.user Apereo Infrastructure

Saved on

compared with

New Version 44

changes.mady.by.user Apereo Infrastructure

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Migrated to Confluence 4.0

[07:54:24 CDT(-0500)] <RaviJK> Hi
[07:54:43 CDT(-0500)] <RaviJK> Anyone here that has used CAS with RESTful ?
[07:54:58 CDT(-0500)] <RaviJK> JASIGLogBot ?
[07:55:20 CDT(-0500)] <RaviJK> Ozy_work2 hi
[08:46:44 CDT(-0500)] <RaviJK> It will really be great if there is someone that knows install of of CAS
[08:46:44 CDT(-0500)] <RaviJK> or someone says "Hi" (smile)
[08:47:16 CDT(-0500)] <serac> Hi
[08:47:20 CDT(-0500)] <serac> We know how to install CAS.
[08:47:26 CDT(-0500)] <serac> We're developers.
[08:53:40 CDT(-0500)] <RaviJK> Serac Hi
[08:53:40 CDT(-0500)] <RaviJK> i have been having some issues with CAS RESTful
[08:54:16 CDT(-0500)] <serac> I can't provide real-time support at this moment.
[08:54:25 CDT(-0500)] <serac> Maybe someone else can.
[08:54:44 CDT(-0500)] <RaviJK> been not getting very far with it..
[08:54:44 CDT(-0500)] <RaviJK> and been desperately looking for help
[08:54:45 CDT(-0500)] <RaviJK> Do you have a few moments to help ?
[08:54:47 CDT(-0500)] <serac> Or I'll try to provide feedback later today (US EDT time) if you post to cas-user.
[09:08:34 CDT(-0500)] <RaviJK> yes thats the thing i have been struggling with..
[09:30:52 CDT(-0500)] <RaviJK> https://lists.wisc.edu/read/messages?id=15313874#15313874
[16:41:07 CDT(-0500)] <serac1> Hello ravijk
[16:41:30 CDT(-0500)] <RaviJK> Hi Marvin ?
[16:41:47 CDT(-0500)] <serac1> That's me. serac is my Virginia Tech username. Old habits die hard.
[16:42:11 CDT(-0500)] <RaviJK> nice, thank you so much for helping me out on this
[16:42:26 CDT(-0500)] <serac1> Sure. You need to share some logs.
[16:42:37 CDT(-0500)] <RaviJK> what do you want to see
[16:43:00 CDT(-0500)] <RaviJK> cas.log ?
[16:43:26 CDT(-0500)] <serac1> Yes. Does it show any output at all?
[16:43:56 CDT(-0500)] <RaviJK> 2011-09-14 20:02:34,155 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] - Reloading registered services.
[16:43:56 CDT(-0500)] <RaviJK> 2011-09-14 20:02:34,155 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] - Loaded 5 services.
[16:43:56 CDT(-0500)] <RaviJK> 2011-09-14 20:02:38,772 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] - Reloading registered services.
[16:43:57 CDT(-0500)] <RaviJK> 2011-09-14 20:02:38,772 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] - Loaded 5 services.
[16:43:57 CDT(-0500)] <RaviJK> 2011-09-14 20:04:01,113 INFO [org.jasig.cas.util.AutowiringSchedulerFactoryBean] - Shutting down Quartz Scheduler
[16:43:57 CDT(-0500)] <RaviJK> 2011-09-14 20:04:02,025 INFO [org.jasig.cas.util.AutowiringSchedulerFactoryBean] - Shutting down Quartz Scheduler
[16:43:58 CDT(-0500)] <RaviJK> 2011-09-14 22:32:24,239 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] - Loaded 5 services.
[16:43:58 CDT(-0500)] <RaviJK> 2011-09-14 22:32:25,131 INFO [org.jasig.cas.util.AutowiringSchedulerFactoryBean] - Starting Quartz Scheduler now
[16:43:59 CDT(-0500)] <RaviJK> 2011-09-14 22:32:28,045 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] - Loaded 5 services.
[16:43:59 CDT(-0500)] <RaviJK> 2011-09-14 22:32:28,934 INFO [org.jasig.cas.util.AutowiringSchedulerFactoryBean] - Starting Quartz Scheduler now
[16:44:00 CDT(-0500)] <RaviJK> 2011-09-14 22:32:31,057 INFO [org.jasig.cas.util.AutowiringSchedulerFactoryBean] - Shutting down Quartz Scheduler
[16:44:00 CDT(-0500)] <RaviJK> 2011-09-14 22:32:31,334 INFO [org.jasig.cas.util.AutowiringSchedulerFactoryBean] - Shutting down Quartz Scheduler
[16:44:02 CDT(-0500)] <RaviJK> not very helpful
[16:44:38 CDT(-0500)] <serac1> Problem most likely is in web.xml.
[16:44:54 CDT(-0500)] <serac1> Echo your servlet and servlet mapping for CAS.
[16:46:07 CDT(-0500)] <RaviJK> <servlet>
[16:46:07 CDT(-0500)] <RaviJK> <servlet-name>cas</servlet-name>
[16:46:07 CDT(-0500)] <RaviJK> <servlet-class>
[16:46:08 CDT(-0500)] <RaviJK> org.jasig.cas.web.init.SafeDispatcherServlet
[16:46:08 CDT(-0500)] <RaviJK> </servlet-class>
[16:46:08 CDT(-0500)] <RaviJK> <init-param>
[16:46:09 CDT(-0500)] <RaviJK> <param-name>publishContext</param-name>
[16:46:09 CDT(-0500)] <RaviJK> <param-value>false</param-value>
[16:46:09 CDT(-0500)] <RaviJK> </init-param>
[16:46:10 CDT(-0500)] <RaviJK> <load-on-startup>1</load-on-startup>
[16:46:10 CDT(-0500)] <RaviJK> </servlet>
[16:46:25 CDT(-0500)] <serac1> servlet-mapping?
[16:47:44 CDT(-0500)] <RaviJK> <servlet-mapping>
[16:47:45 CDT(-0500)] <RaviJK> <servlet-name>cas</servlet-name>
[16:47:45 CDT(-0500)] <RaviJK> <url-pattern>/login</url-pattern>
[16:47:47 CDT(-0500)] <serac1> Can you post the whole file to pastebin or similar?
[16:47:47 CDT(-0500)] <RaviJK> </servlet-mapping>
[16:47:49 CDT(-0500)] <RaviJK> <servlet-mapping>
[16:47:50 CDT(-0500)] <RaviJK> <servlet-name>cas</servlet-name>
[16:47:52 CDT(-0500)] <RaviJK> <url-pattern>/logout</url-pattern>
[16:47:53 CDT(-0500)] <RaviJK> </servlet-mapping>
[16:47:55 CDT(-0500)] <RaviJK> <servlet-mapping>
[16:47:57 CDT(-0500)] <RaviJK> <servlet-name>cas</servlet-name>
[16:47:58 CDT(-0500)] <RaviJK> <url-pattern>/validate</url-pattern>
[16:48:00 CDT(-0500)] <RaviJK> </servlet-mapping>
[16:48:01 CDT(-0500)] <RaviJK> <servlet-mapping>
[16:48:03 CDT(-0500)] <RaviJK> <servlet-name>cas</servlet-name>
[16:48:04 CDT(-0500)] <RaviJK> <url-pattern>/serviceValidate</url-pattern>
[16:48:06 CDT(-0500)] <RaviJK> </servlet-mapping>
[16:48:07 CDT(-0500)] <RaviJK>
[16:48:09 CDT(-0500)] <RaviJK> <servlet-mapping>
[16:48:10 CDT(-0500)] <RaviJK> <servlet-name>cas</servlet-name>
[16:48:11 CDT(-0500)] <RaviJK> <url-pattern>/samlValidate</url-pattern>
[16:48:13 CDT(-0500)] <RaviJK> </servlet-mapping>
[16:48:14 CDT(-0500)] <RaviJK> <servlet-mapping>
[16:48:16 CDT(-0500)] <RaviJK> <servlet-name>cas</servlet-name>
[16:48:17 CDT(-0500)] <RaviJK> <url-pattern>/proxy</url-pattern>
[16:48:18 CDT(-0500)] <RaviJK> </servlet-mapping>
[16:48:19 CDT(-0500)] <RaviJK> <servlet-mapping>
[16:48:21 CDT(-0500)] <RaviJK> <servlet-name>cas</servlet-name>
[16:48:22 CDT(-0500)] <RaviJK> <url-pattern>/proxyValidate</url-pattern>
[16:48:23 CDT(-0500)] <RaviJK> </servlet-mapping>
[16:48:24 CDT(-0500)] <RaviJK> <servlet-mapping>
[16:48:26 CDT(-0500)] <RaviJK> <servlet-name>cas</servlet-name>
[16:48:27 CDT(-0500)] <RaviJK> <url-pattern>/CentralAuthenticationService</url-pattern>
[16:48:28 CDT(-0500)] <RaviJK> </servlet-mapping>
[16:48:29 CDT(-0500)] <RaviJK>
[16:48:30 CDT(-0500)] <RaviJK> <servlet-mapping>
[16:48:31 CDT(-0500)] <RaviJK> <servlet-name>cas</servlet-name>
[16:48:32 CDT(-0500)] <RaviJK> <url-pattern>/services/add.html</url-pattern>
[16:48:34 CDT(-0500)] <RaviJK> </servlet-mapping>
[16:48:35 CDT(-0500)] <RaviJK> <servlet-mapping>
[16:48:36 CDT(-0500)] <RaviJK> <servlet-name>cas</servlet-name>
[16:48:37 CDT(-0500)] <RaviJK> <url-pattern>/services/viewStatistics.html</url-pattern>
[16:48:38 CDT(-0500)] <RaviJK> </servlet-mapping>
[16:48:39 CDT(-0500)] <RaviJK> <servlet-mapping>
[16:48:40 CDT(-0500)] <RaviJK> <servlet-name>cas</servlet-name>
[16:48:40 CDT(-0500)] <RaviJK> <url-pattern>/services/logout.html</url-pattern>
[16:48:41 CDT(-0500)] <RaviJK> </servlet-mapping>
[16:48:42 CDT(-0500)] <RaviJK>
[16:48:43 CDT(-0500)] <RaviJK> <servlet-mapping>
[16:48:44 CDT(-0500)] <RaviJK> <servlet-name>cas</servlet-name>
[16:48:45 CDT(-0500)] <RaviJK> <url-pattern>/services/loggedOut.html</url-pattern>
[16:48:45 CDT(-0500)] <RaviJK> </servlet-mapping>
[16:48:46 CDT(-0500)] <RaviJK>
[16:48:47 CDT(-0500)] <RaviJK> <servlet-mapping>
[16:48:48 CDT(-0500)] <RaviJK> <servlet-name>cas</servlet-name>
[16:48:48 CDT(-0500)] <RaviJK> <url-pattern>/services/manage.html</url-pattern>
[16:48:49 CDT(-0500)] <RaviJK> </servlet-mapping>
[16:48:50 CDT(-0500)] <RaviJK>
[16:48:51 CDT(-0500)] <RaviJK> <servlet-mapping>
[16:48:51 CDT(-0500)] <RaviJK> <servlet-name>cas</servlet-name>
[16:48:52 CDT(-0500)] <RaviJK> <url-pattern>/services/edit.html</url-pattern>
[16:48:52 CDT(-0500)] <RaviJK> </servlet-mapping>
[16:48:53 CDT(-0500)] <RaviJK> <servlet-mapping>
[16:48:54 CDT(-0500)] <RaviJK> <servlet-name>cas</servlet-name>
[16:48:54 CDT(-0500)] <RaviJK> <url-pattern>/openid/*</url-pattern>
[16:48:55 CDT(-0500)] <RaviJK> </servlet-mapping>
[16:48:55 CDT(-0500)] <RaviJK> <servlet-mapping>
[16:48:56 CDT(-0500)] <RaviJK> <servlet-name>cas</servlet-name>
[16:48:56 CDT(-0500)] <RaviJK> <url-pattern>/services/deleteRegisteredService.html</url-pattern>
[16:48:56 CDT(-0500)] <RaviJK> </servlet-mapping>
[16:49:28 CDT(-0500)] <RaviJK> http://pastebin.com/WiKKU6zW
[16:50:21 CDT(-0500)] <serac1> What URL are you using to invoke the service?
[16:51:41 CDT(-0500)] <serac1> Based on your config it should be https://some.host/cas/v1/tickets
[16:52:04 CDT(-0500)] <RaviJK> https://localhost:8443/cas/v1/tickets
[16:52:33 CDT(-0500)] <RaviJK> i had one question .. the part where we put in version number
[16:52:35 CDT(-0500)] <RaviJK> for restlet
[16:52:40 CDT(-0500)] <RaviJK> can that be in web.xml
[16:52:53 CDT(-0500)] <RaviJK> on documentation it was shown as pom.xml
[16:53:58 CDT(-0500)] <serac1> We assume you're using Maven war overlay to build your custom deployable.
[16:54:14 CDT(-0500)] <serac1> The pom excerpt in the docs is for that use case.
[16:54:40 CDT(-0500)] <serac1> One way or another you need to include the -integration-restlet library in your deployable.
[16:55:22 CDT(-0500)] <RaviJK> okay
[16:55:48 CDT(-0500)] <RaviJK> I am a PHP dev.. providing integration into Drupal over webservices
[16:55:51 CDT(-0500)] <serac1> Is that jar in your WEB-INF/lib directory.
[16:56:02 CDT(-0500)] <RaviJK> restlet ?
[16:56:02 CDT(-0500)] <serac1> Trying to translate.
[16:56:07 CDT(-0500)] <RaviJK> checking one sec
[16:56:19 CDT(-0500)] <serac1> It's one of the CAS modules.
[16:56:34 CDT(-0500)] <serac1> cas-server-integration-restlet-3.4.10.jar or similar
[16:56:51 CDT(-0500)] <serac1> That pom excerpt is just one way to get it in your war file.
[16:57:22 CDT(-0500)] <RaviJK> i don't see that in /lib folder
[16:57:28 CDT(-0500)] <serac1> I would expect there to be deployment failures in that case.
[16:57:58 CDT(-0500)] <serac1> In any case it needs to be in there.
[16:58:38 CDT(-0500)] <RaviJK> do i need to build again
[16:58:47 CDT(-0500)] <RaviJK> or is there a place i can get the jar file from ?
[16:59:46 CDT(-0500)] <RaviJK> http://mavenhub.com/mvn/central/org.jasig.cas/cas-server-integration-restlet/3.4.10
[17:00:12 CDT(-0500)] <serac1> Get it from the official download tarball.
[17:00:44 CDT(-0500)] <serac1> http://www.jasig.org/cas/download
[17:05:45 CDT(-0500)] <RaviJK> getting now
[17:10:32 CDT(-0500)] <RaviJK> okay have it now
[17:11:25 CDT(-0500)] <RaviJK> guess i also need to copy over the pom.xml file ?
[17:13:02 CDT(-0500)] <RaviJK> sarac1 ?
[17:13:08 CDT(-0500)] <RaviJK> serac1 ?
[17:14:18 CDT(-0500)] <serac1> sry
[17:14:37 CDT(-0500)] <serac1> The pom has nothing to do with it unless you're building using maven.
[17:15:05 CDT(-0500)] <serac1> This is a fairly straightforward integration, so you can hopefully get by without a maven overlay.
[17:15:28 CDT(-0500)] <serac1> If you find yourself customizing CAS beyond this, I'd invest the time.
[17:16:19 CDT(-0500)] <RaviJK> i am not customizing much
[17:16:36 CDT(-0500)] <RaviJK> restarting tomcat now.. about to try again
[17:16:43 CDT(-0500)] <serac1> ack
[17:17:53 CDT(-0500)] <RaviJK> still does redirect
[17:18:54 CDT(-0500)] <serac1> Turn up org.springframework category to DEBUG.
[17:19:14 CDT(-0500)] <serac1> See https://wiki.jasig.org/display/CASUM/Logging if you need help on logging config.
[17:19:16 CDT(-0500)] <serac1> (likely)
[17:19:52 CDT(-0500)] <serac1> Delete the existing log file, redeploy, and then post the whole log file after redaction to pastebin.
[17:20:55 CDT(-0500)] <RaviJK> <logger name="org.springframework">
[17:20:56 CDT(-0500)] <RaviJK> <level value="DEBUG" />
[17:20:56 CDT(-0500)] <RaviJK> </logger>
[17:21:00 CDT(-0500)] <serac1> Correct.
[17:21:17 CDT(-0500)] <serac1> In $TOMCAT_HOME/webapps/cas/WEB-INF/classes/log4j.xml
[17:21:58 CDT(-0500)] <serac1> It's worth noting again that cleartext passwords will be logged with that setting, so please sanitize the log file before posting publicly.
[17:23:35 CDT(-0500)] <RaviJK> okay
[17:23:51 CDT(-0500)] <RaviJK> i guess debug info is logged in cas.log ?
[17:23:56 CDT(-0500)] <serac1> Correct.
[17:24:46 CDT(-0500)] <serac1> I'm gonna have to drop off at 1830. Is there a good stopping point for today?
[17:25:10 CDT(-0500)] <RaviJK> how long is that from now?
[17:25:14 CDT(-0500)] <serac1> 5m
[17:27:12 CDT(-0500)] <apetro> anybody want to talk about SAML?
[17:27:27 CDT(-0500)] <RaviJK> serac1 , 5m is fine
[17:27:27 CDT(-0500)] <serac1> I can't right now. Tomorrow?
[17:27:37 CDT(-0500)] <RaviJK> can you look at the log once before you finish
[17:27:39 CDT(-0500)] <apetro> sure
[17:27:46 CDT(-0500)] <serac1> ravijk — sure
[17:27:52 CDT(-0500)] <apetro> but on very fast look, serac1 , is this page missing a step? https://wiki.jasig.org/display/CASUM/SAML+2.0+%28Google+Accounts+Integration%29
[17:27:54 CDT(-0500)] <serac1> apetro — talk to you tomorrow
[17:28:14 CDT(-0500)] <apetro> as in, really, I just add the argument extractor, or also that argument extractor needed to be wired into a validate controller? (smile)
[17:28:19 CDT(-0500)] <apetro> catch you tomorrow, serac1
[17:28:20 CDT(-0500)] <serac1> Pretty sure I followed that verbatim for our setup.
[17:28:46 CDT(-0500)] <apetro> k. I'm missing some nuance then.
[17:29:20 CDT(-0500)] <serac1> Could be wrong. I could have read between lines.
[17:29:55 CDT(-0500)] <RaviJK> serac1
[17:29:58 CDT(-0500)] <serac1> Pretty sure it's complete. If you're having trouble, let's sync up tomorrow.
[17:30:02 CDT(-0500)] <RaviJK> posted on pastebin
[17:30:06 CDT(-0500)] <serac1> Link?
[17:30:13 CDT(-0500)] <apetro> yeah. The xValidateController declarations reference specific argument extractors, not the list of them. https://github.com/Jasig/cas/blob/v3.4.10/cas-server-webapp/src/main/webapp/WEB-INF/cas-servlet.xml
[17:30:22 CDT(-0500)] <apetro> so I don't see what would discover having added another extractor.
[17:30:52 CDT(-0500)] <RaviJK> http://pastebin.com/VJSTUT7s
[17:30:58 CDT(-0500)] <RaviJK> noticed something
[17:31:07 CDT(-0500)] <RaviJK> when i use browser, it seems to work
[17:31:09 CDT(-0500)] <RaviJK> and log info
[17:31:27 CDT(-0500)] <RaviJK> but when i try over webservices REST, there is no trace of request
[17:31:31 CDT(-0500)] <RaviJK> it just redirects
[17:31:36 CDT(-0500)] <RaviJK> 302
[17:31:39 CDT(-0500)] <RaviJK> 200
[17:32:02 CDT(-0500)] <serac1> I don't see spring framework logging in any case. The startup logging should tell us what controllers get wired up to which URIs.
[17:32:13 CDT(-0500)] <serac1> Work on that in the meantime and catch up with me here tomorrow am.
[17:32:23 CDT(-0500)] <RaviJK> sure thak you very much
[18:12:11 CDT(-0500)] <apetro> for anyone following along from the logs: it turns out the InitialFlowSetupAction of the login web flow takes the agumentExtractors list as a dependency.
[18:12:21 CDT(-0500)] <apetro> <bean id="initialFlowSetupAction" class="org.jasig.cas.web.flow.InitialFlowSetupAction" p:argumentExtractors-ref="argumentExtractors" p:warnCookieGenerator-ref="warnCookieGenerator" p:ticketGrantingTicketCookieGenerator-ref="ticketGrantingTicketCookieGenerator" />
[18:13:33 CDT(-0500)] <apetro> and uses them to get the Service and stick it into the flow scope: final Service service = WebUtils.getService(this.argumentExtractors,            context);
[18:19:28 CDT(-0500)] <apetro> the redirect action state then interrogates this Service to get a response. In the case of the GoogleAccountsService, that response is a SAML assertion conveying the username (email address).
[18:21:06 CDT(-0500)] <apetro> which the casPostResponseView then posts as a form field.