jasig-cas IRC Logs-2011-11-16
- Apereo Infrastructure
[07:52:03 CST(-0600)] <brandon__> cas devs still at a conference?
[08:02:16 CST(-0600)] <foxnesn> i thought that was last week
[08:02:18 CST(-0600)] <foxnesn> could be wrong tho
[08:06:57 CST(-0600)] <brandon__> hmm
[08:07:09 CST(-0600)] <brandon__> is this chat usually active?
[08:07:48 CST(-0600)] <brandon__> have a problem, looking for help
[08:10:49 CST(-0600)] <kickehy> sometimes it's active
[08:12:53 CST(-0600)] <foxnesn> yea sometimes
[08:14:04 CST(-0600)] <brandon___> ok, well I am having a problem when I try to log into CAS
[08:14:13 CST(-0600)] <foxnesn> o?
[08:14:24 CST(-0600)] <brandon___> I am pretty sure it is a dependency problem, i'll get my log
[08:15:00 CST(-0600)] <brandon___> http://pastebin.com/tnpn6Aui
[08:15:24 CST(-0600)] <brandon___> i'm on 3.4.2.1
[08:16:16 CST(-0600)] <foxnesn> uh oh, sungard. what are you trying to do?
[08:16:45 CST(-0600)] <brandon___> using the BEIS components to do SSO into Banner SSB
[08:17:46 CST(-0600)] <foxnesn> ew
[08:17:48 CST(-0600)] <brandon___> but for this I am just trying to turn on CAS proxying
[08:17:53 CST(-0600)] <foxnesn> honestly i dont know how that works
[08:18:04 CST(-0600)] <foxnesn> but i do know recently you dont have to use BEIS
[08:18:06 CST(-0600)] <brandon___> I followed the guides to set it up and eventually got to this
[08:19:42 CST(-0600)] <foxnesn> have you tried just using the SOO Manager?
[08:19:48 CST(-0600)] <brandon___> could it be a problem with the slf4j logger?
[08:20:12 CST(-0600)] <foxnesn> SSO
[08:20:15 CST(-0600)] <foxnesn> i dont know
[08:20:38 CST(-0600)] <brandon___> yeah, it was working fine until i tried to get CAS proxying setup
[08:21:05 CST(-0600)] <foxnesn> well what is it exactly you are trying to do?
[08:21:22 CST(-0600)] <foxnesn> because BEIS is sungards hacked up CAS
[08:21:29 CST(-0600)] <foxnesn> which i am currently unfamiliar with
[08:23:07 CST(-0600)] <brandon___> well we have the banner cas client setup and it is working to do a sso into banner ssb
[08:23:35 CST(-0600)] <brandon___> i want to get car proxying setup so that we can use clearpass for the services that can't be casified
[08:23:40 CST(-0600)] <brandon___> *CAS
[08:24:33 CST(-0600)] <brandon___> don't exactly know what the NoSuchFieldError means
[08:24:47 CST(-0600)] <foxnesn> i believe it means you are missing something in your deployer
[08:24:55 CST(-0600)] <foxnesn> http://download.oracle.com/javase/1.4.2/docs/api/java/lang/NoSuchFieldError.html
[08:25:19 CST(-0600)] <brandon___> hmm
[08:25:35 CST(-0600)] <brandon___> so it's trying to use mismatched code?
[08:26:32 CST(-0600)] <brandon___> here's my dependency tree for my overlay http://pastebin.com/SVBYFrRZ
[08:27:56 CST(-0600)] <brandon___> here's my deployerConfig http://pastebin.com/ab8GZmxj
[08:31:48 CST(-0600)] <foxnesn> so SSO was working until you started working with clearpass?
[08:38:56 CST(-0600)] <brandon___> sorry, yes it was
[08:39:19 CST(-0600)] <foxnesn> i have gotten clearpass to work and it was pretty straight forward
[08:39:21 CST(-0600)] <foxnesn> did you look at
[08:39:32 CST(-0600)] <foxnesn> https://wiki.jasig.org/display/CASUM/ClearPass
[08:40:51 CST(-0600)] <brandon___> yeah, i followed all the steps, it is built but i am getting that NoSuchFieldError now
[08:41:26 CST(-0600)] <foxnesn> so what happens in the login process?
[08:41:37 CST(-0600)] <foxnesn> you go to banner and it redirects to cas
[08:41:44 CST(-0600)] <foxnesn> you enter your credentials
[08:41:45 CST(-0600)] <foxnesn> then what
[08:42:11 CST(-0600)] <brandon___> not even
[08:42:22 CST(-0600)] <foxnesn> so it doesnt even deploy?
[08:42:36 CST(-0600)] <brandon___> oops, i meant no banner
[08:42:52 CST(-0600)] <brandon___> i just go to /cas/login, enter credentials and get the error
[08:43:35 CST(-0600)] <foxnesn> so cas does deploy
[08:43:42 CST(-0600)] <foxnesn> but the authentication is broken
[08:44:22 CST(-0600)] <foxnesn> unfortunately i dont have a lot of experience with banner
[08:44:36 CST(-0600)] <brandon___> yeah, i looked at the line in the source code that it was failing at in CredentialsToLDAPAttributePrincipalResolver.java
[08:44:45 CST(-0600)] <brandon___> and it is because of the log variable
[08:46:22 CST(-0600)] <foxnesn> it could be that one of your dependcies requires you add a log variable to one of the bean properties
[08:46:39 CST(-0600)] <foxnesn> so it is looking for the log and doesnt find it and throws the nosuchfield error
[08:47:02 CST(-0600)] <foxnesn> you may have to look in your banner docs about adding a log value in whatever bean you are using
[08:47:58 CST(-0600)] <brandon___> well there is a log variable in AbstractPersonDirectoryCredentialsToPrincipalResolver.java which CredentialsToLDAPAttributePrincipalResolver.java implements
[08:48:07 CST(-0600)] <atilling> you are attempting to CASify Sungard Banner? SSB or INB?
[08:48:14 CST(-0600)] <brandon___> SSB
[08:48:20 CST(-0600)] <brandon___> all that was working before
[08:48:36 CST(-0600)] <brandon___> just when I started to setup clearpass did i get this error
[08:48:41 CST(-0600)] <atilling> Is there a reason you aren't using the CAS/Banner integration?
[08:49:01 CST(-0600)] <atilling> The BEIS based solution?
[08:49:30 CST(-0600)] <brandon___> that what i am using
[08:49:34 CST(-0600)] <brandon___> sorry about the confusion
[08:49:43 CST(-0600)] <brandon___> banner-cas-client
[08:49:54 CST(-0600)] <brandon___> that's why we are on 3.4.2.1
[08:50:28 CST(-0600)] <foxnesn> atilling is herem he can help you better than i can 
[08:50:36 CST(-0600)] <foxnesn> here*
[08:50:55 CST(-0600)] <brandon___> hopefully, thank you for trying 
[08:51:09 CST(-0600)] <foxnesn> my experience with banner is minimal
[08:51:30 CST(-0600)] <foxnesn> but i do know for future reference you dont need BEIS to get SSO working
[08:51:44 CST(-0600)] <foxnesn> as long as the GUID are the same in banner and your ldap
[08:51:50 CST(-0600)] <foxnesn> but that is off topic
[08:51:53 CST(-0600)] <atilling> I haven't done the banner-cas-client yet myself. But I don't beleive it you need clearpass
[08:51:55 CST(-0600)] <brandon___> ok
[08:52:42 CST(-0600)] <brandon___> yeah it doesn't need clearpass, this is for something separate
[08:53:04 CST(-0600)] <foxnesn> he is tring to add clearpass to his cas configuration and it is breaking it
[08:53:30 CST(-0600)] <brandon___> log: http://pastebin.com/tnpn6Aui
[08:53:41 CST(-0600)] <brandon___> dependency tree: http://pastebin.com/SVBYFrRZ
[08:53:53 CST(-0600)] <brandon___> deployerConfig: http://pastebin.com/ab8GZmxj
[08:54:54 CST(-0600)] <atilling> ok sorry for the confusion then, so you had cas running and the banner-cas-client. Now you are attempting to add clear pass for a different service and the banner-cas-client is breaking?
[08:56:19 CST(-0600)] <brandon___> i think so? it was letting me authenticate before, after i added clearpass configs i started seeing this error when i tried to login to cas
[09:00:41 CST(-0600)] <atilling> Ok as I said I haven't deployed a clear pass CAS solution, nor the Banner one though that may be happening soon
[09:01:30 CST(-0600)] <foxnesn> atilling: i saw you are working to add ehcache as a module?
[09:03:30 CST(-0600)] <atilling> however, it looks to me like you are having problems where the field that clearpass requires isn't in the ldap context
[09:04:29 CST(-0600)] <brandon___> how did you figure that out?
[09:05:05 CST(-0600)] <atilling> is the clearpass module your implimenting for 3.4.2?
[09:05:44 CST(-0600)] <brandon___> yeah, using 1.0.5.GA
[09:07:04 CST(-0600)] <atilling> the error is being thrown in org.jasig.cas.authentication.principal.CredentialsToLDAPAttributePrincipalResolver.extractPrincipalId
[09:07:05 CST(-0600)] <brandon___> hold on, be right back
[09:07:47 CST(-0600)] <atilling> foxnesn: I have proposed to have ehache added as a standard distribution module
[09:11:37 CST(-0600)] <foxnesn> that would be nice
[09:11:46 CST(-0600)] <foxnesn> i still need to set that up
[09:11:51 CST(-0600)] <foxnesn> however
[09:12:06 CST(-0600)] <foxnesn> if im going to setup HA would i need to even bother with ehcache?
[09:12:19 CST(-0600)] <foxnesn> because the HA doc goes into setting up the ticket reg for HA
[09:13:02 CST(-0600)] <atilling> HA = high Availablity or clustered servers ehCache is a method for Clustering
[09:14:04 CST(-0600)] <atilling> Which "HA doc" were you reffering to?
[09:14:27 CST(-0600)] <foxnesn> the "clustering cas" doc
[09:14:39 CST(-0600)] <foxnesn> at the end of the doc
[09:15:05 CST(-0600)] <atilling> ok that's not the clearest doc there is
[09:15:38 CST(-0600)] <foxnesn> ahh ok
[09:16:06 CST(-0600)] <foxnesn> it was confusing me
[09:16:07 CST(-0600)] <atilling> That doc is really the TicketRegistry via JBoss TreeCache
[09:16:26 CST(-0600)] <foxnesn> so lets say i have two cas nodes setup
[09:16:31 CST(-0600)] <foxnesn> both with echcache talking to eachother
[09:16:45 CST(-0600)] <foxnesn> next step is to setup tomcat clustering
[09:17:00 CST(-0600)] <foxnesn> and then mod_proxy
[09:17:00 CST(-0600)] <atilling> if in the lefthand side of the CAS manual page you will see a section entitled "TicketRegistry"
[09:17:22 CST(-0600)] <foxnesn> yea i see the ehcache
[09:17:34 CST(-0600)] <atilling> Under TicketRegistry all of those solutions are HA except Default
[09:18:37 CST(-0600)] <atilling> Simply to cluster CAS you need to configure two CAS servers sharing a ticketRegistry
[09:18:50 CST(-0600)] <foxnesn> yea so in theory i wouldnt have to bother with the ticket reg section in the HA doc if i already have ehchache setup
[09:19:01 CST(-0600)] <foxnesn> well not in theory, but in practice
[09:19:28 CST(-0600)] <atilling> in practice I would completely ignore the clustering Cas document
[09:19:30 CST(-0600)] <atilling> period
[09:20:04 CST(-0600)] <brandon___> ok back, it throws the error at this line: if (log.isDebugEnabled()) in CredentialsToLDAPAttributePrincipalResolver.java
[09:20:27 CST(-0600)] <brandon___> because log is no longer set?
[09:21:14 CST(-0600)] <foxnesn> lol k
[09:21:49 CST(-0600)] <atilling> It looks like whatever log class you are using doesn't have a method isDebugEnabled()
[09:22:20 CST(-0600)] <atilling> or that you have log declared but not set
[09:22:50 CST(-0600)] <brandon___> slf4j is being used, 1.5.8 is a dependency
[09:23:16 CST(-0600)] <atilling> Really to cluster CAS you don't need tomcat clustered, that just covers you if one of the servers goes down during the actual login form
[09:24:08 CST(-0600)] <brandon___> it should be set in the class it extends (AbstractLdapPersonDirectoryCredentialsToPrincipalResolver) on this line protected final Logger log = LoggerFactory.getLogger(this.getClass());
[09:24:58 CST(-0600)] <atilling> Maybe it's not getting the log levels from your log4j.xml
[09:25:35 CST(-0600)] <atilling> have you modified CredentialsToLDAPAttributePrincipalResolver.java ?
[09:25:47 CST(-0600)] <brandon___> hmm, it seems to be working everywhere else if i change log levels
[09:25:48 CST(-0600)] <brandon___> nope
[09:27:01 CST(-0600)] <atilling> very odd - you might try scanning the cas-user archive to see if anyone has had a problem with 3.4.2 and clearpass
[09:27:23 CST(-0600)] <brandon___> would something at runtime be unsetting log?
[09:27:25 CST(-0600)] <brandon___> ok
[09:36:28 CST(-0600)] <atilling> foxnesn: Could you point me at some documentation showing CAS SSO to Banner SSB without BEIS?
[09:37:53 CST(-0600)] <foxnesn> i got it in an email
[09:37:56 CST(-0600)] <foxnesn> one sec
[09:39:31 CST(-0600)] <foxnesn> it is in the latest BEIS handbook since the update
[09:39:37 CST(-0600)] <foxnesn> i will just pastebin the secion
[09:40:37 CST(-0600)] <foxnesn> this is for BEIS 8.1.5
[09:40:39 CST(-0600)] <foxnesn> http://pastie.org/2872780
[09:41:20 CST(-0600)] <foxnesn> brandon___: i use 1.0.7 GA for clearpass in case you want to try that version
[09:41:59 CST(-0600)] <brandon___> even if i'm on 3.4.2.1 for CAS?
[09:43:03 CST(-0600)] <atilling> foxnesn: Wich Sungard pdf is that in? I hate their naming convention.
[09:43:40 CST(-0600)] <atilling> beis80100hb.pdf
[09:43:42 CST(-0600)] <atilling> ?
[09:44:13 CST(-0600)] <atilling> err sorry beis80105hb.pdf ?
[09:47:32 CST(-0600)] <foxnesn> i havnt looked
[09:47:40 CST(-0600)] <foxnesn> sorry it was just emailed to me
[09:47:43 CST(-0600)] <foxnesn> i can check tho
[09:50:10 CST(-0600)] <foxnesn> cant find it
[09:50:16 CST(-0600)] <foxnesn> where do they keep their docs?
[09:50:22 CST(-0600)] <foxnesn> must be members only or something
[09:52:48 CST(-0600)] <atilling> It is, I grabbed the doc I'll verify it's in there, thanks
[09:58:54 CST(-0600)] <foxnesn> if i setup ehcache what do i have to change in the deployer?
[09:59:31 CST(-0600)] <foxnesn> i guess nothing
[09:59:35 CST(-0600)] <foxnesn> if the doc is correct
[09:59:55 CST(-0600)] <atilling> right
[10:00:08 CST(-0600)] <foxnesn> so nothing needs to be added to the pom either?
[10:00:22 CST(-0600)] <atilling> just need to update the ticket configuration and add the file
[10:00:54 CST(-0600)] <atilling> depends, how are you adding the java classes to your deploy?
[10:01:24 CST(-0600)] <foxnesn> uh
[10:02:12 CST(-0600)] <foxnesn> im not sure what you mean
[10:04:33 CST(-0600)] <atilling> are you downloading my proposed cas-integration-ehcache module? or are you adding the java src from the wiki to your maven overlay?
[10:05:54 CST(-0600)] <foxnesn> the latter
[10:06:00 CST(-0600)] <atilling> the file EhcacheTicketRegistry.java
[10:06:10 CST(-0600)] <atilling> ok
[10:06:36 CST(-0600)] <foxnesn> im guessing your proposed module would be easier to setup
[10:06:42 CST(-0600)] <foxnesn> ??
[10:06:48 CST(-0600)] <foxnesn> not that the wiki is difficult
[10:06:59 CST(-0600)] <atilling> yes, but the wiki isn't bad
[10:07:05 CST(-0600)] <foxnesn> but simply adding the module in my pom and rebuilding would be key
[10:07:28 CST(-0600)] <atilling> you need to add a dependancy to your pom if you are adding the src to your overlay
[10:07:30 CST(-0600)] <atilling> <dependency>
[10:07:30 CST(-0600)] <atilling> <groupId>net.sf.ehcache</groupId>
[10:07:30 CST(-0600)] <atilling> <artifactId>ehcache-core</artifactId>
[10:07:30 CST(-0600)] <atilling> <version>$ </version>
[10:07:30 CST(-0600)] <atilling> <scope>compile</scope>
[10:07:31 CST(-0600)] <atilling> </dependency>
[10:07:54 CST(-0600)] <atilling> and a property: <ehcache.version>2.2.0</ehcache.version>
[10:09:07 CST(-0600)] <foxnesn> oh
[10:09:14 CST(-0600)] <foxnesn> that should be added to the wiki i think
[10:09:30 CST(-0600)] <atilling> it is
[10:09:46 CST(-0600)] <atilling> the wiki has a sample pom.xml attached
[10:09:57 CST(-0600)] <atilling> I just coppied the relivant sections for you
[10:10:41 CST(-0600)] <foxnesn> o
[10:11:00 CST(-0600)] <foxnesn> will i also require spring beans in the pom?
[10:11:33 CST(-0600)] <atilling> Spring beans is already in your pom by including cas
[10:11:47 CST(-0600)] <foxnesn> i see
[10:11:55 CST(-0600)] <foxnesn> i always wondered about that
[10:11:58 CST(-0600)] <atilling> I don't think you need to specify it for this to work
[10:12:30 CST(-0600)] <foxnesn> now as far as ehcache.xml
[10:12:36 CST(-0600)] <foxnesn> i did a bit of reading on ehcache
[10:12:49 CST(-0600)] <foxnesn> i have a small setup so im going to do auto peer discovery
[10:13:00 CST(-0600)] <foxnesn> for providerfactory
[10:13:13 CST(-0600)] <foxnesn> but can i do the exact same for the listener factory?
[10:13:13 CST(-0600)] <atilling> ok
[10:14:41 CST(-0600)] <atilling> this is what we have - doing multicast
[10:14:42 CST(-0600)] <atilling> http://pastie.org/2872940
[10:15:52 CST(-0600)] <foxnesn> ok
[10:16:15 CST(-0600)] <foxnesn> networking linux question, did you use netstat -g to find your multicast group?
[10:16:25 CST(-0600)] <foxnesn> cause im assuming that is mine
[10:16:31 CST(-0600)] <foxnesn> dont want to bother networking people yet
[10:19:59 CST(-0600)] <foxnesn> [ERROR] Failed to execute goal org.apache.maven.plugins:maven-compiler-plugin:2.3.2:compile (default-compile) on p roject local-cas: Compilation failure
[10:20:03 CST(-0600)] <foxnesn> [ERROR] /home/tomcat/workspace/local-cas/src/main/java/org/jasig/cas/ticket/registry/EhcacheTicketRegistry.java:[3 6,7] error: EhcacheTicketRegistry is not abstract and does not override abstract method needsCallback() in Abstrac tDistributedTicketRegistry
[10:20:08 CST(-0600)] <foxnesn> woops
[10:21:03 CST(-0600)] <atilling> https://github.com/atilling/cas/tree/feature-ehcache
[10:21:17 CST(-0600)] <foxnesn> i need the maven compiler dependency in my pom i guess
[10:21:32 CST(-0600)] <atilling> https://github.com/atilling/cas/blob/feature-ehcache/cas-server-integration-ehcache/src/main/java/org/jasig/cas/ticket/registry/EhCacheTicketRegistry.java
[10:22:20 CST(-0600)] <foxnesn> hrm?
[10:24:29 CST(-0600)] <atilling> that's the version of the java file that's in my proposed module
[10:30:35 CST(-0600)] <foxnesn> error: class EhCacheTicketRegistry is public, should be declared in a file named EhCacheTicketRegistry.java
[10:30:38 CST(-0600)] <foxnesn> weird
[10:32:53 CST(-0600)] <atilling> check case on the file name
[10:33:04 CST(-0600)] <atilling> I saw this with what's in the wiki
[10:33:08 CST(-0600)] <foxnesn> yea heh
[10:33:10 CST(-0600)] <foxnesn> just check that
[10:33:18 CST(-0600)] <foxnesn> ok it built
[10:33:18 CST(-0600)] <atilling> EHCache vs EhCache
[10:33:21 CST(-0600)] <foxnesn> yup
[10:34:54 CST(-0600)] <atilling> check that the bean class in the config files to be sure case matches there too
[10:37:37 CST(-0600)] <foxnesn> yea it all matches, i got it to build
[10:39:51 CST(-0600)] <foxnesn> wont deploy
[10:39:52 CST(-0600)] <foxnesn> SEVERE: Error filterStart
[10:39:52 CST(-0600)] <foxnesn> Nov 16, 2011 11:38:04 AM org.apache.catalina.core.StandardContext startInternal
[10:39:56 CST(-0600)] <foxnesn> SEVERE: Context [/cas] startup failed due to previous errors
[10:39:58 CST(-0600)] <foxnesn> Nov 16, 2011 11:38:04 AM org.apache.catalina.loader.WebappClassLoader clearReferencesThreads
[10:40:34 CST(-0600)] <atilling> <bean id="ticketRegistry" class="org.jasig.cas.ticket.registry.EhCacheTicketRegistry">
[10:40:35 CST(-0600)] <atilling> <property name="serviceTicketsCache" ref="serviceTicketsCache" />
[10:40:35 CST(-0600)] <atilling> <property name="ticketGrantingTicketsCache" ref="ticketGrantingTicketsCache" />
[10:40:35 CST(-0600)] <atilling> </bean>
[10:41:29 CST(-0600)] <atilling> check that the class is correct case wise - wouldn't prevent you from building and deploying but would cause start up to fail
[10:42:28 CST(-0600)] <foxnesn> i didnt know i had to add that bean into my deployer
[10:42:42 CST(-0600)] <atilling> not to deployer
[10:42:56 CST(-0600)] <foxnesn> in the java source?
[10:43:06 CST(-0600)] <foxnesn> i see
[10:43:09 CST(-0600)] <atilling> you need to update ticketRegistry.xml
[10:43:36 CST(-0600)] <atilling> Ticket Registry Configuration
[10:43:36 CST(-0600)] <atilling> The configuration file included below takes care of configuring the ticket caches and uses Ehcache to take care of ticket expiration. This results of having no need for a Ticket Registry Cleaner. It should be sufficient to use the file below as a replacement to the version that com
[10:43:58 CST(-0600)] <atilling> from the wiki https://wiki.jasig.org/display/CASUM/EhcacheTicketRegistry
[10:44:42 CST(-0600)] <atilling> then your configLocation need to be correct
[10:44:46 CST(-0600)] <foxnesn> crap sorry
[10:45:00 CST(-0600)] <atilling> I use <bean id="cacheManager" class="org.springframework.cache.ehcache.EhCacheManagerFactoryBean">
[10:45:00 CST(-0600)] <atilling> <property name="configLocation" value="/WEB-INF/spring-configuration/ehcache-replicated.xml" />
[10:45:00 CST(-0600)] <atilling> <property name="cacheManagerName" value="CAS.cacheManager" />
[10:45:00 CST(-0600)] <atilling> </bean>
[10:45:37 CST(-0600)] <atilling> cause I like having the ehache config file in the spring-configuration
[10:46:47 CST(-0600)] <atilling> this is what I have for ticketRegistry.xml http://pastie.org/2873077
[10:48:18 CST(-0600)] <foxnesn> well the inital problem with me following the wiki is that the java file provided wont compile
[10:48:34 CST(-0600)] <foxnesn> so i used your java file and forgot to change the .java name to match the class name
[10:49:02 CST(-0600)] <foxnesn> but now it is still throwing errors
[10:50:54 CST(-0600)] <atilling> what errors? you updated ticket registry? https://github.com/atilling/cas/blob/conncoll/cas-server-cc/src/main/webapp/WEB-INF/spring-configuration/ticketRegistry.xml
[10:51:05 CST(-0600)] <atilling> where is your ehache.xml file?
[10:51:19 CST(-0600)] <foxnesn> in WEB-INF/spring-configuration
[10:51:28 CST(-0600)] <foxnesn> i have not tried your ticketReg.xml yet
[10:51:36 CST(-0600)] <foxnesn> im using the one from the wiki
[10:51:39 CST(-0600)] <foxnesn> and using your java file
[10:51:57 CST(-0600)] <foxnesn> sorry ehcache
[10:51:59 CST(-0600)] <foxnesn> is in
[10:52:13 CST(-0600)] <atilling> ok the one from the wiki has the ehache file in your class path, not spring-configuration
[10:52:19 CST(-0600)] <foxnesn> is in classes dir
[10:52:34 CST(-0600)] <foxnesn> heh i should have taken a break at 11:15
[10:52:38 CST(-0600)] <foxnesn> that is what i get
[10:52:51 CST(-0600)] <foxnesn> working 4 straight hours without getting up
[10:52:58 CST(-0600)] <foxnesn> making dumb errors
[10:53:04 CST(-0600)] <atilling> lol
[10:53:49 CST(-0600)] <foxnesn> so im giong to move my ehcache.xml file to WEB-INF/spring-configuration
[10:53:59 CST(-0600)] <foxnesn> since i dont feel like editing the java file you provided lol
[10:54:13 CST(-0600)] <atilling> the java file isn't the issue
[10:54:23 CST(-0600)] <foxnesn> er ticketreg file
[10:54:24 CST(-0600)] <atilling> the java file doesn't know where the xml is
[10:54:44 CST(-0600)] <atilling> the ticketRegistry file tells the java where it is
[10:56:13 CST(-0600)] <foxnesn> the ticketreg xml in the wiki has ehcache.xml in the same directory that it is in
[10:57:23 CST(-0600)] <foxnesn> <property name="configLocation" value="classpath:/ehcache.xml" />
[10:57:33 CST(-0600)] <atilling> <property name="configLocation" value="classpath:/ehcache.xml" /> yeah, I'm not sure if that means the classes directory or it means the lib directory - though with the / it could be the server root
[10:57:45 CST(-0600)] <foxnesn> ok
[10:57:51 CST(-0600)] <foxnesn> that confuses me too
[10:57:58 CST(-0600)] <foxnesn> cause the wiki shows where to put all of these files
[10:58:13 CST(-0600)] <foxnesn> i have ticketreg in spring-configuration
[10:58:19 CST(-0600)] <foxnesn> i have ehcache in classes
[10:59:06 CST(-0600)] <atilling> actually the wiki entry doesn't tell you where to put the ehcache.xml file
[10:59:31 CST(-0600)] <atilling> that's why I'd suggest <property name="configLocation" value="/WEB-INF/spring-configuration/ehcache.xml" />
[10:59:37 CST(-0600)] <foxnesn> File
[10:59:37 CST(-0600)] <foxnesn> Directory
[10:59:37 CST(-0600)] <foxnesn> EhcacheTicketRegistry.java
[10:59:37 CST(-0600)] <foxnesn> src/main/java/org/jasig/cas/ticket/registry
[10:59:37 CST(-0600)] <foxnesn> ticketRegistry.xml
[10:59:39 CST(-0600)] <foxnesn> src/main/webapp/WEB-INF/spring-configuration
[10:59:42 CST(-0600)] <foxnesn> ehcache.xml
[10:59:44 CST(-0600)] <foxnesn> src/main/webapp/WEB-INF/classesthat is at the bottom of the wiki
[11:00:07 CST(-0600)] <atilling> oh - missed that
[11:00:08 CST(-0600)] <foxnesn> table didnt paste heh
[11:00:36 CST(-0600)] <atilling> anyways, personally I like it in spring-configuration
[11:04:28 CST(-0600)] <atilling> Well I have to run out - I'll be back in a little while
[11:05:55 CST(-0600)] <foxnesn> ok thanks
[11:58:58 CST(-0600)] <atilling> back
[12:00:28 CST(-0600)] <brandon___> hey guys
[12:00:44 CST(-0600)] <brandon___> i think i found the real problem that i'm having
[12:01:04 CST(-0600)] <atilling> ok, something we can help on?
[12:02:11 CST(-0600)] <brandon___> i don't know, it is coming from a sghe extension but it might be an ldap problem like you said?
[12:02:17 CST(-0600)] <brandon___> it's a NullPointerException in UDCIDLdapAuthenticationMetaDataPopulator
[12:02:48 CST(-0600)] <brandon___> looks like a problem with the authentication principal
[12:03:12 CST(-0600)] <brandon___> so possibly it isn't getting/setting ldap attributes correctly?
[12:05:04 CST(-0600)] <atilling> maybe, or maybe you've got an attribute in your mappng that doesn't exist in your ldap
[12:05:08 CST(-0600)] <brandon___> log: http://pastebin.com/w7YjWskM
[12:07:49 CST(-0600)] <foxnesn> what's wrong with this bean
[12:07:52 CST(-0600)] <foxnesn> <beans xmlns="http://www.springframework.org/schema/beans" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/p" xsi:schemaLocation="http://www.springframework.org/schema/beans >
[12:07:56 CST(-0600)] <foxnesn> that is in the wiki
[12:08:11 CST(-0600)] <foxnesn> notice no closing "/> just >
[12:09:00 CST(-0600)] <foxnesn> when i fixed that
[12:09:12 CST(-0600)] <foxnesn> i now get the same error but in ehcache.xml
[12:09:16 CST(-0600)] <foxnesn> for this line
[12:09:18 CST(-0600)] <foxnesn> <ehcache updateCheck="false" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation=">
[12:09:24 CST(-0600)] <foxnesn> it doesnt like ">
[12:09:24 CST(-0600)] <atilling> it shouldn't have a />
[12:09:38 CST(-0600)] <atilling> if it has a /> you invalidate your entire xml
[12:09:43 CST(-0600)] <foxnesn> i mean ">
[12:09:50 CST(-0600)] <foxnesn> right
[12:09:57 CST(-0600)] <foxnesn> it doesnt have ">
[12:09:59 CST(-0600)] <foxnesn> just >
[12:09:59 CST(-0600)] <atilling> OH!
[12:10:11 CST(-0600)] <atilling> I bet it's that stupid wiki issue
[12:10:38 CST(-0600)] <atilling> it should be <beans xmlns="http://www.springframework.org/schema/beans"
[12:10:38 CST(-0600)] <atilling> xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
[12:10:38 CST(-0600)] <atilling> xmlns="http://www.springframework.org/schema/p"
[12:10:38 CST(-0600)] <atilling> xsi:schemaLocation="http://www.springframework.org/schema/beans
[12:10:38 CST(-0600)] <atilling> http://www.springframework.org/schema/beans/spring-beans-2.0.xsd">
[12:10:57 CST(-0600)] <atilling> But the wiki doesn't format it right and you end up with a bad schema
[12:11:51 CST(-0600)] <atilling> or for the echache.xml <ehcache updateCheck="false" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="http://ehcache.sf.net/ehcache.xsd">
[12:12:17 CST(-0600)] <foxnesn> yea
[12:12:51 CST(-0600)] <atilling> for some reason the wiki eats part of the schema in most wiki posts of xml
[12:13:14 CST(-0600)] <foxnesn> heh
[12:15:05 CST(-0600)] <foxnesn> i would have been here all day
[12:15:46 CST(-0600)] <atilling> I might have been too, except that I've seen that problem with the wiki already
[12:16:11 CST(-0600)] <foxnesn> ok well it is deployed
[12:16:23 CST(-0600)] <foxnesn> is there a way to check if it is functioning at least on this one setup?
[12:16:33 CST(-0600)] <foxnesn> or shoud i do it on the other node first?
[12:17:51 CST(-0600)] <atilling> I don't know of a way to test without two nodes, but there might be
[12:18:47 CST(-0600)] <foxnesn> ok so once i set this up on the other node how can i test?
[12:19:01 CST(-0600)] <foxnesn> there isnt any load balancing
[12:19:08 CST(-0600)] <foxnesn> just the two nodes sharing tickets i guess
[12:19:20 CST(-0600)] <atilling> Login to one cas server and then force your service to validate you on the other
[12:20:02 CST(-0600)] <foxnesn> ahhh ok
[12:20:35 CST(-0600)] <foxnesn> ill login to nolijweb which is setup for cas0 and then move to moodle which is cas1
[12:20:47 CST(-0600)] <atilling> ok
[12:20:52 CST(-0600)] <foxnesn> that would work too i guess
[12:25:20 CST(-0600)] <foxnesn> do you happen to know if setting up multiple ldap urls in the deployer works for failover?
[12:25:38 CST(-0600)] <foxnesn> does CAS search BOTH ldaps for the name?
[12:26:19 CST(-0600)] <atilling> so not a case of one ldap or the other being down, but two ldaps the use might be in?
[12:33:28 CST(-0600)] <foxnesn> yea
[12:33:50 CST(-0600)] <foxnesn> does CAS by default only check the first LDAP listed?
[12:33:57 CST(-0600)] <foxnesn> and then work its way down?
[12:36:08 CST(-0600)] <atilling> I haven't done the two ldap thing myself, but my understanding is that you need to have two LdapCredentialtoPrincipalResolver configured
[12:36:23 CST(-0600)] <atilling> both with a seperate context
[12:36:43 CST(-0600)] <atilling> if you successfully auth on either you will be able to log in
[12:37:41 CST(-0600)] <foxnesn> ok that makes sense
[12:38:50 CST(-0600)] <foxnesn> the thing is my boss wants god mode
[12:39:04 CST(-0600)] <foxnesn> he wants to be able to login as himself and then proxy in as any user for debugging purposes
[12:39:09 CST(-0600)] <foxnesn> i have no idea how that would work
[12:39:31 CST(-0600)] <foxnesn> if user X is having an issue he wants to be able to login as the admin and then proxy in as user X without knowing their password
[12:39:32 CST(-0600)] <atilling> don't know
[12:39:52 CST(-0600)] <foxnesn> that sounds like a third party program not something cas can or SHOULD do
[12:39:55 CST(-0600)] <atilling> actually I do know
[12:40:13 CST(-0600)] <atilling> I could make it happen - but I don't think I'd want it to
[12:40:45 CST(-0600)] <atilling> you could do it all in webflow
[12:41:41 CST(-0600)] <foxnesn> oh yea?
[12:42:05 CST(-0600)] <foxnesn> if admin is authenticated then take him to a different view?
[12:42:13 CST(-0600)] <foxnesn> or have the admin be granted a ticket as anybody?
[12:42:30 CST(-0600)] <atilling> soemthing like that
[12:42:49 CST(-0600)] <foxnesn> that's something i wil have to think about
[12:43:11 CST(-0600)] <foxnesn> ok so the other node has ehcache all setup
[12:43:18 CST(-0600)] <atilling> I wouldn't want it to be in CAS so I'll leave it to you to figure out
[12:43:19 CST(-0600)] <atilling>
[12:43:25 CST(-0600)] <foxnesn> but its not behaving like i want
[12:43:38 CST(-0600)] <foxnesn> it is not sharing tickets i guess
[12:43:54 CST(-0600)] <foxnesn> is there a place in the log to check if they are talking?
[12:44:57 CST(-0600)] <atilling> try increasing logging to debug on ehcache.sf.net
[12:48:27 CST(-0600)] <foxnesn> so add this to log4j.xml
[12:48:28 CST(-0600)] <foxnesn> <logger name="ehcache.sf.net" additivity="true">
[12:48:28 CST(-0600)] <foxnesn> <level value="DEBUG" />
[12:48:28 CST(-0600)] <foxnesn> <appender-ref ref="cas" />
[12:48:29 CST(-0600)] <foxnesn> </logger>
[12:48:36 CST(-0600)] <foxnesn> currently that doesnt exist at all
[12:48:59 CST(-0600)] <atilling> seems correct
[12:49:19 CST(-0600)] <atilling> then you should see if the servers are finding each other communicating
[12:49:56 CST(-0600)] <atilling> you might also try debug on org.jasig.cas.ticket.registry.
[12:53:29 CST(-0600)] <foxnesn> uh oh
[12:54:17 CST(-0600)] <foxnesn> INFO: Illegal access: this web application instance has been stopped already. Could not load com.sun.org.apache.xerces.internal.jaxp.DocumentBuilderFactor
[12:54:23 CST(-0600)] <foxnesn> ive got about 100 of those in catalina.out
[12:54:36 CST(-0600)] <atilling> weird
[12:54:51 CST(-0600)] <atilling> sounds like war redeploy failure
[12:54:59 CST(-0600)] <foxnesn> but CAS works
[12:55:43 CST(-0600)] <foxnesn> essentially it cannot load anything from the org.apache.log4j.*
[12:55:58 CST(-0600)] <foxnesn> from that entire class
[12:56:11 CST(-0600)] <foxnesn> must have been me adding that debug line
[12:56:26 CST(-0600)] <atilling> hmm must be a miss formatted entry
[12:57:17 CST(-0600)] <foxnesn> yea or ehcache.sf.net is not a proper class
[12:57:41 CST(-0600)] <atilling> umm you have to enter it backwards you know?
[12:58:09 CST(-0600)] <atilling> net.sf.ehcache
[12:58:35 CST(-0600)] <foxnesn> lal
[13:00:50 CST(-0600)] <foxnesn> same
[13:01:17 CST(-0600)] <foxnesn> thankfully it doesnt break CAS
[13:05:56 CST(-0600)] <foxnesn> CAS uses so many different technologies
[13:06:09 CST(-0600)] <foxnesn> im digging through logging.apache.org
[13:12:17 CST(-0600)] <KWhat_Work> can i ask questions here?
[13:13:07 CST(-0600)] <atilling> you can ask, we'll try to answer - no promises though
[13:13:55 CST(-0600)] <KWhat_Work> haha, ok. I am attempting to upgrade cas. Everything appears to be working except Clear pass. .
[13:14:16 CST(-0600)] <KWhat_Work> clearpass keeps requiring that I first login to cas, then relogin to cas for clear pass then everythign works
[13:14:46 CST(-0600)] <atilling> clearpass is a popular topic today, unfortunately I don't know much about it
[13:16:58 CST(-0600)] <foxnesn> so clearpass worked prior to the upgrade?
[13:17:11 CST(-0600)] <KWhat_Work> yes but it was an older version of cas
[13:17:17 CST(-0600)] <KWhat_Work> > 3.4
[13:17:43 CST(-0600)] <foxnesn> did you try changing clearpass from 1.0.5 GA to 1.0.7 GA ?
[13:17:52 CST(-0600)] <foxnesn> maybe get a newer version of it
[13:17:53 CST(-0600)] <KWhat_Work> im guessing some config data moved or is now required that I missed during the update. I am using the latest
[13:18:12 CST(-0600)] <KWhat_Work> you dont happent o know how to setup the proxy ticket validation portion do you?
[13:18:26 CST(-0600)] <foxnesn> that is in the web.xml
[13:18:26 CST(-0600)] <atilling> 1 sec - do you have custom views?
[13:18:48 CST(-0600)] <KWhat_Work> yes i do
[13:18:53 CST(-0600)] <foxnesn> sounds like the callbackurl is not setup or something
[13:19:00 CST(-0600)] <atilling> that's probably the problem
[13:19:19 CST(-0600)] <atilling> in 3.4.10 there are changes to the hidden form fields
[13:19:35 CST(-0600)] <atilling> https://wiki.jasig.org/display/CASUM/Upgrading
[13:19:36 CST(-0600)] <KWhat_Work> fixed that part
[13:20:13 CST(-0600)] <KWhat_Work> right now i have acceptAnyProxy set to true because when i originally set this up there was very poor documentation on allowedProxyChains
[13:20:17 CST(-0600)] <atilling> ok, just checking - been biting a lot of upgraders
[13:22:39 CST(-0600)] <foxnesn> atilling: are you logging net.sf.cache?
[13:22:55 CST(-0600)] <atilling> not currently but we did
[13:48:37 CST(-0600)] <foxnesn> seems i figured out the proper syntax
[13:48:45 CST(-0600)] <foxnesn> for ehcache logging
[13:48:57 CST(-0600)] <atilling> ok
[13:49:03 CST(-0600)] <atilling> share?
[13:49:57 CST(-0600)] <foxnesn> <!-- ehCache logging --> <category name="net.sf.ehcache" additivity="false">
[13:49:58 CST(-0600)] <foxnesn> <priority value="debug" />
[13:49:58 CST(-0600)] <foxnesn> <appender-ref ref="console" />
[13:49:58 CST(-0600)] <foxnesn> </category>
[13:49:58 CST(-0600)] <foxnesn> <category name="net.sf.ehcache.config" additivity="false">
[13:50:00 CST(-0600)] <foxnesn> <priority value="debug" />
[13:50:03 CST(-0600)] <foxnesn> <appender-ref ref="console" />
[13:50:05 CST(-0600)] <foxnesn> </category>
[13:50:08 CST(-0600)] <foxnesn> <category name="net.sf.ehcache.distribution" additivity="false">
[13:50:10 CST(-0600)] <foxnesn> <priority value="debug" />
[13:50:13 CST(-0600)] <foxnesn> <appender-ref ref="console" />
[13:50:15 CST(-0600)] <foxnesn> </category>
[13:50:18 CST(-0600)] <foxnesn> the person who posted this has it
[13:50:20 CST(-0600)] <foxnesn> http://lists.terracotta.org/pipermail/ehcache-list/2011-May/000363.html
[13:50:35 CST(-0600)] <atilling> ok
[13:51:04 CST(-0600)] <foxnesn> im not seeing any info about ehcache
[13:51:57 CST(-0600)] <atilling> hmm, I would expect to see some messages about creating cache and the detect cache
[13:52:21 CST(-0600)] <atilling> maybe log org.springframework.cache.ehcache too?
[13:57:16 CST(-0600)] <foxnesn> just to be clear, the process i followed REPLACES the default ricket reg scheme?
[13:57:24 CST(-0600)] <foxnesn> so i dont have to disable the default reg?
[13:59:55 CST(-0600)] <atilling> correct
[14:02:33 CST(-0600)] <foxnesn> hrm
[14:09:03 CST(-0600)] <foxnesn> maybe that logging didnt work
[14:09:06 CST(-0600)] <foxnesn> tomcat is acting strange now