Hi, The mod_auth_cas debug logs are written to the Apache log file. Please ensure that you have "LogLevel" set to "Debug" for the affected server/VirtualHost.
Thanks, -Phil On Tue, Jan 19, 2010 at 11:52 AM, KISTER RAPHAEL <[email protected]> wrote: > Hi, > We will try to correlate the issue with CASIdleTimeout or CASTimeout > settings. The /tmp/cas/ directory is own by Apache user and has 755 > permissions. > I wonder where debug logs from mod_auth_cas are written ? i don't see > anything in the apache logs. > > Thanks, > Raphael > > > > ----- Message d'origine ---- > De : Phil Ames <[email protected]> > À : [email protected] > Envoyé le : Mar 19 Janvier 2010, 0 h 55 min 11 s > Objet : Re: Re : [cas-user] mod_auth_cas and user session conflicts > > Hi, > Debug logs when this issue occurs would be quite helpful in > understanding what is going on here. Can you correlate the issue > occurrence with your CASIdleTimeout or CASTimeout settings? > > The configuration you provided does not contain anything I would > expect to cause this issue. What are the file system permissions of > the /tmp/cas/ directory? Do you suspect that any of the cookie files > have been tampered with on the local disk? > > Thanks, > -Phil > > On Mon, Jan 18, 2010 at 5:55 AM, KISTER RAPHAEL <[email protected]> wrote: >> Hello, >> I don't have some debug logs. We don't use any of the scope directives. This >> virtual host redirect all http request to Tomcat and Liferay portal. The >> liferay portal is not public and so each user who access the portal has to >> be authenticated. >> >> This issue does not happen immediately but after some time (1 or 2 hours). >> It might by a problem with the session renew ? >> All users works on Windows XP with IE 7. All users works with a distinct >> login except two users who use the same login (but each user work on a >> distinct client). >> This issue occurs during 1 day. We have a new formation session on friday >> and some new tests will be done that day. >> >> Is my Apache configuration good or have i to make some changes ? >> >> Best regards, >> >> Raphael >> >> >> >> ----- Message d'origine ---- >> De : Phil Ames <[email protected]> >> À : [email protected] >> Envoyé le : Sam 16 Janvier 2010, 3 h 20 min 44 s >> Objet : Re: [cas-user] mod_auth_cas and user session conflicts >> >> Hello, >> Do you have any debug logs from when this issue occurs? Are you using >> any of the scope directives? Do you have any information regarding >> the client configuration when this occurs (specifically, does each >> user represent a distinct remote node or are they shared)? Is this >> issue readily reproducible? >> >> Thanks, >> -Phil >> >> On Fri, Jan 15, 2010 at 11:13 AM, Raphael Kister <[email protected]> wrote: >>> Hello, >>> >>> We have install this environment : >>> - Apache 2.2.14 with mod_jk 1.2.28 and mod_auth_cas (1.0.9 download from >>> SVN) >>> - Tomcat 6.0.20 >>> - CAS 3.3.5 >>> - Liferay 5.2.6 ee >>> - Oracle 10.2.0.4 >>> We are experiencing a problem with our install. During a formation session >>> with 10 users, we notice that some users have their authentication session >>> switch to an other user session. >>> Did you ever experienced that kind of situation? Do you have any lead that >>> we could investigate? >>> >>> I give you the mod_auth_cas configuration : >>> >>> LoadModule auth_cas_module modules/mod_auth_cas.so >>> LoadModule authz_user_module modules/mod_authz_user.so >>> <IfModule auth_cas_module> >>> CASVersion 2 >>> CASDebug On >>> CASValidateServer On >>> CASValidateDepth 9 >>> CASAllowWildcardCert Off >>> CASCertificatePath /opt/httpd/conf/ca/intranet.crt >>> CASLoginURL https://intranet/cas/login >>> CASValidateURL https://intranet/cas/serviceValidate >>> CASCookiePath /tmp/cas/ >>> CASCookieEntropy 32 >>> CASTimeout 7200 >>> CASIdleTimeout 3600 >>> CASCacheCleanInterval 1800 >>> </IfModule> >>> ... >>> <VirtualHost *:80> >>> ... >>> <Location "/"> >>> AuthType CAS >>> require valid-user >>> </Location> >>> ... >>> </VirtualHost> >>> >>> Thank you for your feedback. >>> >>> -- >>> You are currently subscribed to [email protected] as: >>> [email protected] >>> To unsubscribe, change settings or access archives, see >>> http://www.ja-sig.org/wiki/display/JSG/cas-user >>> >> >> -- >> You are currently subscribed to [email protected] as: [email protected] >> To unsubscribe, change settings or access archives, see >> http://www.ja-sig.org/wiki/display/JSG/cas-user >> >> >> >> >> -- >> You are currently subscribed to [email protected] as: >> [email protected] >> To unsubscribe, change settings or access archives, see >> http://www.ja-sig.org/wiki/display/JSG/cas-user >> >> > > -- > You are currently subscribed to [email protected] as: [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > > > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
