You're using a non-standard response. That would have been good to know :-)
Did you xmlEscape all the custom attributes? On Wed, Mar 16, 2011 at 9:40 PM, Habermaas, William < [email protected]> wrote: > [2011-03-15 > 20:51:56.190][org.jasig.cas.client.validation.Cas20ProxyTicketValidator][DEBUG] > Server response: > > > > <cas:serviceResponse xmlns:cas='http://www.yale.edu/tp/cas'> > > <cas:authenticationSuccess> > > <cas:user>happy_jack</cas:user> > > > > > > </cas:authenticationSuccess> > > > > <cas:attributes> > > > > <cas:username>happy_jack</cas:username> > > > > <cas:email>[email protected]</cas:email> > > > > <cas:currentUser>1298808820830</cas:currentUser> > > > > <cas:service> > http://billhab.fatwire.com:6225/cs/Satellite?id=1114083739225&SATELLITE=true&pagename=OpenMarket%2FXcelerate%2FUIFramework%2FShowPreviewFrames&pubid=1112198287026&AssetType=Product_C > </cas:service> > > > > <cas:cstimeout>90000</cas:cstimeout> > > > > > > <cas:currentACL>Browser,ContentEditor,ElementEditor,ElementReader,PageEditor,PageReader,RemoteClient,SiteGod,TableEditor,UserEditor,UserReader,Visitor,VisitorAdmin,WSAdmin,WSEditor,WSUser,xceladmin,xceleditor,xcelpublish</cas:currentACL> > > > > <cas:displayName>happy_jack</cas:displayName> > > > > <cas:distinguishedName>happy_jack</cas:distinguishedName> > > > > </cas:attributes> > > </cas:serviceResponse> > > > > [2011-03-15 20:51:56.196][org.jasig.cas.client.util.XmlUtils][ERROR] > org.xml.sax.SAXParseException: The reference to entity "SATELLITE" must end > with the ';' delimiter. > > org.xml.sax.SAXParseException: The reference to entity "SATELLITE" must end > with the ';' delimiter. > > at > org.apache.xerces.parsers.AbstractSAXParser.parse(AbstractSAXParser.java:1183) > > at > org.jasig.cas.client.util.XmlUtils.getTextForElement(XmlUtils.java:150) > > at > org.jasig.cas.client.validation.Cas20ServiceTicketValidator.parseResponseFromServer(Cas20ServiceTicketValidator.java:69) > > at > org.jasig.cas.client.validation.AbstractUrlBasedTicketValidator.validate(AbstractUrlBasedTicketValidator.java:188) > > at > com.fatwire.wem.sso.cas.filter.CASFilter.doFilter(CASFilter.java:338) > > at > com.fatwire.wem.sso.SSOFilter.doFilter(SSOFilter.java:45) > > at > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) > > at > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) > > at > org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:233) > > at > org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191) > > at > org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:128) > > at > org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) > > at > org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) > > at > org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:293) > > at > org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:190) > > at > org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:291) > > at > org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:769) > > at > org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:698) > > at > org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:891) > > at > org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:690) > > at java.lang.Thread.run(Thread.java:662) > > [ > > > > *From:* Scott Battaglia [mailto:[email protected]] > *Sent:* Wednesday, March 16, 2011 9:28 PM > > *To:* [email protected] > *Subject:* Re: [cas-user] Validation problem > > > > If you turn logging to DEBUG you should see what the actual response from > the CAS server is. Can you post that? > > > > On Wed, Mar 16, 2011 at 8:01 PM, Habermaas, William < > [email protected]> wrote: > > If you are using a URL as the service in CAS web-flow and the url is > similar to the following: > > > > > http://testserver:8080/cs/Satellite?id=1118867611403&SATELLITE=true&pagename=OpenMarket%2FXcelerate%2FUIFramework%2FShowPreviewFrames&pubid=1112198287026&AssetType=Page&wem=true > > > > when the ST is validated, the CAS client receives a successful validation > payload. But when that payload is parsed you will get the > SAXParseException. In the case of the above URL the exception line is: > > org.xml.sax.SAXParseException: The reference to entity "SATELLITE" must end > with the ';' delimiter. > > Is there another way the service can be handled so it will avoid this > problem? > > > > Bill > > > > > > > > *From:* Scott Battaglia [mailto:[email protected]] > *Sent:* Wednesday, March 16, 2011 4:48 PM > *To:* [email protected] > *Subject:* Re: [cas-user] Validation problem > > > > Most likely you're not pointing correctly to the CAS validation endpoint. > Can you post your web.xml > > > > On Wed, Mar 16, 2011 at 4:36 PM, Habermaas, William < > [email protected]> wrote: > > Can anyone tell me why I am getting this error when validating a ticket. > > > > SAX is choking of the service url and I have no idea why. > > > > Any help is appreciated (see trace below). > > > > Thanks, > > Bill > > > > > > > > [2011-03-16 16:30:53,567] [cas.client.util.XmlUtils] > org.xml.sax.SAXParseException: The reference to entity "id" must end with > the ';' delimiter. > > at > org.apache.xerces.parsers.AbstractSAXParser.parse(AbstractSAXParser.java:1183) > > at > org.jasig.cas.client.util.XmlUtils.getTextForElement(XmlUtils.java:150) > > at > org.jasig.cas.client.validation.Cas20ServiceTicketValidator.parseResponseFromServer(Cas20ServiceTicketValidator.java:69) > > at > org.jasig.cas.client.validation.AbstractUrlBasedTicketValidator.validate(AbstractUrlBasedTicketValidator.java:188) > > at > com.fatwire.wem.sso.cas.CASProvider.validate(CASProvider.java:305) > > at > com.fatwire.wem.sso.cas.filter.CASFilter.doFilter(CASFilter.java:359) > > at > com.fatwire.wem.sso.SSOFilter.doFilter(SSOFilter.java:51) > > at > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) > > at > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) > > at > org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:233) > > at > org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191) > > at > org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) > > at > org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) > > at > org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) > > at > org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:298) > > at > org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:852) > > at > org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:588) > > at > org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:489) > > at java.lang.Thread.run(Thread.java:619) > > -- > You are currently subscribed to [email protected] as: > [email protected] > > > > > > > > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > > > -- > You are currently subscribed to [email protected] as: > [email protected] > > > > > > > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- > You are currently subscribed to [email protected] as: > [email protected] > > > > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > > > -- > You are currently subscribed to [email protected] as: > [email protected] > > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- > You are currently subscribed to [email protected] as: > [email protected] > > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
