Hello, if i remember me correctly, this was an problem with mime type. you need to override CASFilter.getTicketValidator() and add following extended url connection factory
// we need own connection factory enriching the connection by Accept: application/xml header HttpURLConnectionFactory urlConnectionFactory = new XmlTypedURLConnectionFactory(); cas30ProxyTicketValidator.setURLConnectionFactory(urlConnectionFactory); // replaces url connection factory also by proxy retriever cas30ProxyTicketValidator.setProxyRetriever(new Cas20ProxyRetriever(serverUrl, null, urlConnectionFactory)); /** * Enriches the default {@link HttpsURLConnectionFactory} * by adding the "Accept: application/xml" header to {@link URLConnection} */ private static class XmlTypedURLConnectionFactory implements HttpURLConnectionFactory { private final HttpURLConnectionFactory delegate = new HttpsURLConnectionFactory(); @Override public HttpURLConnection buildHttpURLConnection(URLConnection url) { url.setRequestProperty("Accept", "application/xml"); return delegate.buildHttpURLConnection(url); } } Good luck! Regards, Gena On Friday, February 12, 2016 at 3:33:20 PM UTC+1, Klaus wrote: > > We recently upgraded one of our Application Servers which formerly worked > perfectly together with our CAS Server. Now, after we upgraded that Tomcat > Server it's impossible to Log into the Webapp on this Server using CAS > anymore. The Login Form from the CAS Server still appaers, but after > entering the credentials and submitting the Form there's only a blank, > white screen. > > CAS itself still works fine with other Applications and Servers in our > Network. > > When I log in to the Webapp on the upgraded Server, I see from the CAS > Servers Logs that these steps are successfull: > > > ACTION: AUTHENTICATION_SUCCESS > ... > ACTION: TICKET_GRANTING_TICKET_CREATED > ... > ACTION: SERVICE_TICKET_CREATED > ... > But there is no more Message about Ticket Validation in the Logs of the > CAS Server. > > In the Logs of the App server on the other Hand I can see this: > > 14:24:38,828 ERROR [ajp-bio-8309-exec-1][CommonUtils:206] > https://www.my-company.de/cas/proxyValidate?&redirectAfterValidation=false&ticket=ST-12-FBwM6LOcDwVDdbmaB7po-www.my-company.de&service=https%3A%2F%2Fwww,my-company.de%2Fc%2Fportal%2Flogin%3Fp_l_id%3D12036&casServerUrlPrefix=https://www.my-company.de/cas&serverName=https://www.my-company.de&casServerLoginUrl=https://www.my-company.de/cas/login > *java.io.FileNotFoundException:* > https://www.my-company.de/cas/proxyValidate?&redirectAfterValidation=false&ticket=ST-12-FBwM6LOcDwVDdbmaB7po-www.my-company.de&service=https%3A%2F%2Fwww.my-company.de%2Fc%2Fportal%2Flogin%3Fp_l_id%3D12036&casServerUrlPrefix=https://www.my-company.de/cas&serverName=https://www.my-company.de&casServerLoginUrl=https://www.my-company.de/cas/login > at > sun.net.www.protocol.http.HttpURLConnection.getInputStream(HttpURLConnection.java:1624) > at > sun.net.www.protocol.https.HttpsURLConnectionImpl.getInputStream(HttpsURLConnectionImpl.java:254) > at > org.jasig.cas.client.util.CommonUtils.getResponseFromServer(CommonUtils.java:281) > at > org.jasig.cas.client.validation.AbstractCasProtocolUrlBasedTicketValidator.retrieveResponseFromServer(AbstractCasProtocolUrlBasedTicketValidator.java:33) > at > org.jasig.cas.client.validation.AbstractUrlBasedTicketValidator.validate(AbstractUrlBasedTicketValidator.java:178) > at > com.liferay.portal.servlet.filters.sso.cas.CASFilter.processFilter(CASFilter.java:194) > at > com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:59) > > I can't imagine were a FileNotFoundException may come from in the context > of Validating a CAS Ticket. Any hints about what may cause this Error and > prevents me to Log in to my Web App with CAS? > > > -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/8e092658-dc7a-46de-a10f-3b8345c7c01b%40apereo.org.