Log from portal.log is below. Background:
* uPortal 3.0.2
* Implemented LDAP via CAS
* Using MSSQL
* Using dns name for host instead of localhost:8080
* I'm not sure whether tomcat is redirecting to 8080 or traffic is going
through port 80-someone else did that part of setup (where do I look)?
* I've changed all references of localhost:8443 to dnsname.edu:8443
* *not* using SSL yet
* Changed hibernate.dialect in cas.properties to SQLServerDialect
* LDAP login works fine via CAS, returns properties based on
personDirectoryContext.xml .
As you can see below, CalendarPortlet happens to be the portlet that is trying
to use CAS server proxy ticket. I changed the references in CalendarPortlet to
cas as appropriate from localhost:8443 to dnsname.edu:8443.
Is there a chance I'm running into firewall issues? I thought the traffic from
uPortal to CAS and back was all on the server machine-but I could be wrong
about that.
Is there other setup I need to go through for proxy tickets?
Thanks.
ERROR [org.jasig.portal.ChannelManager#77] cas.CasFilteredSecurityContext.[]
Feb/05 14:25:29 - Error contacting CAS server for proxy ticket
java.net.ConnectException: Connection refused: connect
at java.net.PlainSocketImpl.socketConnect(Native Method)
at java.net.PlainSocketImpl.doConnect(Unknown Source)
at java.net.PlainSocketImpl.connectToAddress(Unknown Source)
at java.net.PlainSocketImpl.connect(Unknown Source)
at java.net.Socket.connect(Unknown Source)
at java.net.Socket.connect(Unknown Source)
at sun.net.NetworkClient.doConnect(Unknown Source)
at sun.net.www.http.HttpClient.openServer(Unknown Source)
at sun.net.www.http.HttpClient.openServer(Unknown Source)
at sun.net.www.protocol.https.HttpsClient.<init>(Unknown Source)
at sun.net.www.protocol.https.HttpsClient.New(Unknown Source)
at
sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.getNewHttpClient(Unknown
Source)
at sun.net.www.protocol.http.HttpURLConnection.plainConnect(Unknown
Source)
at
sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.connect(Unknown
Source)
at
sun.net.www.protocol.http.HttpURLConnection.getInputStream(Unknown Source)
at
com.sun.net.ssl.internal.www.protocol.https.HttpsURLConnectionOldImpl.getInputStream(Unknown
Source)
at edu.yale.its.tp.cas.util.SecureURL.retrieve(SecureURL.java:91)
at
edu.yale.its.tp.cas.proxy.ProxyGrantingTicket.getProxyTicket(ProxyGrantingTicket.java:80)
at
edu.yale.its.tp.cas.proxy.ProxyTicketReceptor.getProxyTicket(ProxyTicketReceptor.java:154)
at
org.jasig.portal.security.provider.cas.CasFilteredSecurityContext.getCasServiceToken(CasFilteredSecurityContext.java:104)
at
org.jasig.portal.portlet.container.services.CasTicketUserInfoService.getProxyTicket(CasTicketUserInfoService.java:271)
at
org.jasig.portal.portlet.container.services.CasTicketUserInfoService.getUserInfo(CasTicketUserInfoService.java:179)
at
org.jasig.portal.portlet.container.services.MergingUserInfoService.getUserInfo(MergingUserInfoService.java:81)
at
org.apache.pluto.core.DefaultRequestAttributeService.createUserInfoMap(DefaultRequestAttributeService.java:186)
at
org.apache.pluto.core.DefaultRequestAttributeService.getAttribute(DefaultRequestAttributeService.java:81)
at
org.apache.pluto.internal.impl.PortletRequestImpl.getAttribute(PortletRequestImpl.java:391)
at
edu.yale.its.tp.portlets.calendar.mvc.controller.CalendarController.handleRenderRequestInternal(CalendarController.java:73)
at
org.springframework.web.portlet.mvc.AbstractController.handleRenderRequest(AbstractController.java:223)
at
org.springframework.web.portlet.mvc.SimpleControllerHandlerAdapter.handleRender(SimpleControllerHandlerAdapter.java:52)
at
org.springframework.web.portlet.DispatcherPortlet.doRenderService(DispatcherPortlet.java:788)
at
org.springframework.web.portlet.FrameworkPortlet.processRequest(FrameworkPortlet.java:461)
at
org.springframework.web.portlet.FrameworkPortlet.doDispatch(FrameworkPortlet.java:431)
at javax.portlet.GenericPortlet.render(GenericPortlet.java:175)
at
org.apache.pluto.core.PortletServlet.dispatch(PortletServlet.java:208)
at
org.apache.pluto.core.PortletServlet.doGet(PortletServlet.java:139)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:627)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:729)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188)
at
org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:679)
at
org.apache.catalina.core.ApplicationDispatcher.doInclude(ApplicationDispatcher.java:584)
at
org.apache.catalina.core.ApplicationDispatcher.include(ApplicationDispatcher.java:497)
at
org.apache.pluto.core.DefaultPortletInvokerService.invoke(DefaultPortletInvokerService.java:167)
at
org.apache.pluto.core.DefaultPortletInvokerService.render(DefaultPortletInvokerService.java:101)
at
org.apache.pluto.core.PortletContainerImpl.doRender(PortletContainerImpl.java:172)
at
org.jasig.portal.channels.portlet.SpringPortletChannelImpl.render(SpringPortletChannelImpl.java:478)
at
org.jasig.portal.channels.portlet.CSpringPortletAdaptor.renderCharacters(CSpringPortletAdaptor.java:186)
at
org.jasig.portal.ChannelRenderer$Worker.execute(ChannelRenderer.java:566)
at org.jasig.portal.utils.threading.BaseTask.run(BaseTask.java:27)
at sun.reflect.GeneratedMethodAccessor99.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
at java.lang.reflect.Method.invoke(Unknown Source)
at
org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:301)
at
org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182)
at
org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:149)
at
org.springframework.orm.jpa.JpaInterceptor.invoke(JpaInterceptor.java:96)
at
org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
at
org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
at org.jasig.portal.$Proxy55.run(Unknown Source)
at java.util.concurrent.Executors$RunnableAdapter.call(Unknown
Source)
at java.util.concurrent.FutureTask$Sync.innerRun(Unknown Source)
at java.util.concurrent.FutureTask.run(Unknown Source)
at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(Unknown
Source)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown
Source)
at java.lang.Thread.run(Unknown Source)
ERROR [org.jasig.portal.ChannelManager#77] services.CasTicketUserInfoService.[]
Feb/05 14:25:29 - no proxy ticket passed to the portlet:
org.jasig.portal.security.provider.ca
s.CasProxyTicketAcquisitionException: Could not obtain proxy ticket for service
[http://owl.jacks.local/CalendarPortlet] using credentials
[[edu.yale.its.tp.cas.client.CASRec
eipt userName=[wjmoore425]
casValidateUrl=[http://owl.jacks.local/cas/serviceValidate]
proxyCallbackUrl=[http://owl.jacks.local/uPortal/CasProxyServlet]
pgtIou=[PGTIOU-1-RbpO
aPzbOceymdnag9ei-cas]
casValidateUrl=[http://owl.jacks.local/cas/serviceValidate] proxyList=[[]]]].
Joe Moore
Assistant Director of MIS
Administrative and Research Computing
South Dakota State University
SAD #123, Box 2201
Brookings, SD 57007
Phone: 605.688.4678
Fax: 605.688.4605
Email: [email protected]
[cid:[email protected]]
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user<<inline: image001.jpg>>
