jasig-cas IRC Logs-2012-05-22

Owned by Apereo Infrastructure
Last updated: May 22, 2012
2 min read

[05:22:42 CDT(-0500)] <chilversc_> odd, the phpcas client doesn't seem to handle renewAuthentication correctly

[05:23:47 CDT(-0500)] <chilversc_> when I get redirected back from cas, phpcas client during isAuthenticated outputs trace "ticket was present and will be discarded, use renewAuthenticate()"

[05:27:06 CDT(-0500)] <chilversc_> then after stripping the ticket from the url it fails to raise an event to say that the user has re-authed

[07:08:40 CDT(-0500)] <hermitage> Hi, i have a cas server 3.4.11 that authenticates against LDAP AD, and i makes SS-On and SS-Off with a drupal7 site and moodle 2 site, now i would like to add also an web app that is on apache server to this SSO system, where should i start from? thanks in advance for any helo

[07:08:44 CDT(-0500)] <hermitage> help

[07:14:08 CDT(-0500)] <chilversc_> that really depends on what the app is, and what language its wrote in

[07:32:29 CDT(-0500)] <hermitage> its a java web app

[07:35:01 CDT(-0500)] <chilversc_> is it an app you wrote or is it 3rd party?

[07:37:21 CDT(-0500)] <hermitage> is it app that is writen by an student

[07:37:30 CDT(-0500)] <hermitage> chilversc_: sorry for my english

[07:44:04 CDT(-0500)] <chilversc_> then it should just be a case of using the Java CAS client library, of which I belive there are extensions for spring if you use that

[07:44:13 CDT(-0500)] <chilversc_> but I'm not familure with the java client myself

[07:44:48 CDT(-0500)] <chilversc_> see, https://wiki.jasig.org/display/CASC/CAS+Client+for+Java+3.1

[07:46:21 CDT(-0500)] <hermitage> chilversc_: thanks a lot, i'll check that tutorial

[12:05:16 CDT(-0500)] <nrogers> hello all

[12:05:51 CDT(-0500)] <nrogers> i'm trying to setup a cas/spnego following the guide on the jasig site and running into some problems

[12:06:15 CDT(-0500)] <nrogers> we have kerberos authentication working, at least loggin in with kinit works

[12:07:26 CDT(-0500)] <nrogers> but when we try to login automatically from the cas site it gives this: 2012-05-22 11:20:14,558 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - Audit trail record BEGIN

[12:07:26 CDT(-0500)] <nrogers> =============================================================

[12:07:26 CDT(-0500)] <nrogers> WHO: unknown

[12:07:26 CDT(-0500)] <nrogers> WHAT: error.authentication.credentials.bad

[12:07:26 CDT(-0500)] <nrogers> ACTION: TICKET_GRANTING_TICKET_NOT_CREATED

[12:07:26 CDT(-0500)] <nrogers> APPLICATION: CAS

[12:07:27 CDT(-0500)] <nrogers> WHEN: Tue May 22 11:20:14 CDT 2012

[12:08:08 CDT(-0500)] <nrogers> sorry for the paste... (sad)

[12:29:50 CDT(-0500)] <nrogers> <-idiot please ignore my previous posts ty

[15:21:14 CDT(-0500)] <nrogers> just wanted to let someone know you might want to update the jasig wiki user manual on SPNEGO to clarify that when creating the keytab file you need the whole.server.name.domain.com@YOUR.REALM.HERE it does not work with just servername... maybe that's obvious to some people but it would have saved me a couple hours of smashing my face on the desk because the kerberos test worked but cas didn't....

[15:35:58 CDT(-0500)] <Jackson_> hi all. I've got a SAML/CAS solution that I am building. anyone care to discuss?

[15:36:34 CDT(-0500)] <Jackson_> just want to validate a few assumptions