Team, It appears that the java CAS client doubly encodes service urls; in particular the authentication filter. Once when the service url is constructed (which can be controlled via "encodeServiceUrl") and then once when the redirect url to CAS is constructed [1]
Since service-url encoding is turned on by default, this causes the final url to be encoded twice. The protocol mentions that service urls are expected to be encoded, though I am not sure if CAS attempts to do any sort of decoding of urls internally? Might be better to modify the behavior of "encodeServiceUrl" to apply to the entire redirect url, only once? And CAS to attempt and decode? Misagh [1] https://github.com/Jasig/java-cas-client/blob/8742ed6f3747047da3aaf2f60591 d3d128193c84/cas-client-core/src/main/java/org/jasig/cas/client/util/Commo nUtils.java#L164 -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev
