CAS "/j_acegi_cas_security_check"

[Choon Boon]

Hi all! i am working on CAS recently and have met with some problems.

I manage to configure it with another web application.
login managed to get authenticated and receive a granting ticket but i am still not redirected to my application, instead i am brought to the authenticationFailureUrl

i thought i am already authenticated, why am i still redirected to the authenticationFailureUrl?

below is a sample of my log:

Code:

2009-04-20 17:51:12,895 INFO [org.jasig.cas.web.flow.InitialFlowSetupAction] - <
Setting path for cookies to: /cas>
2009-04-20 17:51:27,082 INFO [org.jasig.cas.authentication.AuthenticationManager
Impl] - <AuthenticationHandler: org.jasig.cas.adaptors.jdbc.SearchModeSearchData
baseAuthenticationHandler successfully authenticated the user which provided the
 following credentials: [username: joe]>
2009-04-20 17:51:27,113 INFO [org.jasig.cas.CentralAuthenticationServiceImpl] -
<Granted service ticket [ST-1-X5Pv3W51Oyin5PopQm6p-cas] for service [http://loca
lhost:8080/pentaho/j_acegi_cas_security_check] for user [joe]>

i also got this when i start my server, not sure if it could be the cause:

Code:

2009-04-20 17:50:32,225 INFO [org.jasig.cas.web.flow.AuthenticationViaFormAction
] - <FormObjectClass not set.  Using default class of org.jasig.cas.authenticati
on.principal.UsernamePasswordCredentials with formObjectName credentials and val
idator org.jasig.cas.validation.UsernamePasswordCredentialsValidator.>

if anyone happens to know the cause or have a bit of insight to this, feel free to reply, any comments are welcome.

Thanks
Choon Boon
Attached is my files for "applicationContext-acegi-security-cas"

[gduggirala]

Hello,
I observed this behavior when I am configured my app using ACEGI. In the same window that you have authenticated try to open the secured resource once again and this time it will allow you to access the secured resource.

If you dont want to do that then just call xyz.html page which has the following code

Code:

<%@ page language="java" import="java.util.*" pageEncoding="ISO-8859-1"%>

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
	<head>
		<title>Welcome to App</title>
        <script type="text/javascript">
            function redirect()
            {
              document.redirector.submit();
            }
        </script>
    </head>
	<body onLoad="redirect()">
	       <form name="redirector" action="securedResource.xxx"></form>
	</body>
</html>

So when you are trying to access the page "securedResource.xxx" which is secured, spring security or ACEGI security will redirect you to the CAS page. Authenticate yourself and you see you are redirected to the secured page instead of login failed page.

Let me know the result.

Regards,
Giridhar Duggirala

[Choon Boon]

hi! thanks for your reply..

i have tried your approach but i was put into a loop at the login page(the authenticationFailureURL)

btw, i am using CAS 3 implementing JDBC authentication.

Any idea why is that so?
it always goes to authenticationFailureURL.

thanks
Choon Boon

[gduggirala]

Hi,

If you set the login page itself as a secured resource then you will fall in a loop.
I kind of confused.
Can you please send me the screenshots?

Regards,
Giridhar Duggirala.