Hi all, I am facing a problem when using Liferay and CAS via AJP. The setup is as follows:
- 2 load balanced Apache Servers which handle the user requests to Liferay. The URL ist https://abc.test.com/pt/. This request is forwarded through AJP to the JBoss server on which Liferay (URL: https://abc.test.com/pt/) and CAS (URL https://abc.test.com/so/) runs. - When I want to login I am successfully redirected (from https://abc.test.com/pt/ to https://abc.test.com/so/login ) to the CAS login page. In the next step the problem occurs. When I entered the login credentials and hit enter the log message says and I am running into a connection timeout: 2012-01-13 15:00:34,531 INFO [STDOUT] (ajp-0.0.0.0-22705-25) 2012-01-13 15:00:34,531 INFO [org.jasig.cas.authentication.AuthenticationManagerImpl] - <AuthenticationHandler: org.jasig.cas.adaptors.jdbc.QueryDatabaseAuthenticationHandler successfully authenticated the user which provided the following credentials: [username: UserName]> 2012-01-13 15:00:34,535 INFO [STDOUT] (ajp-0.0.0.0-22705-25) 2012-01-13 15:00:34,535 INFO [org.jasig.cas.authentication.AuthenticationManagerImpl] - <Resolved principal UserName> 2012-01-13 15:00:34,536 INFO [STDOUT] (ajp-0.0.0.0-22705-25) 2012-01-13 15:00:34,536 INFO [org.jasig.cas.authentication.AuthenticationManagerImpl] - <Principal found: UserName> 2012-01-13 15:00:34,543 INFO [STDOUT] (ajp-0.0.0.0-22705-25) 2012-01-13 15:00:34,543 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit trail record BEGIN ============================================================= WHO: [username: UserName] WHAT: supplied credentials: [username: UserName] ACTION: AUTHENTICATION_SUCCESS APPLICATION: CAS WHEN: Fri Jan 13 15:00:34 CET 2012 CLIENT IP ADDRESS: 194.107.2.81 SERVER IP ADDRESS: abc.test.com ============================================================= > 2012-01-13 15:00:34,566 INFO [STDOUT] (ajp-0.0.0.0-22705-25) 2012-01-13 15:00:34,566 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit trail record BEGIN ============================================================= WHO: [username: UserName] WHAT: TGT-1-Zl1pEO3exD3S7LyOsPpKmgacBxQsKwCoDdgiQbMBAzoEkivZQx- abc.test.com ACTION: TICKET_GRANTING_TICKET_CREATED APPLICATION: CAS WHEN: Fri Jan 13 15:00:34 CET 2012 CLIENT IP ADDRESS: 194.107.2.81 SERVER IP ADDRESS: abc.test.com ============================================================= > 2012-01-13 15:00:34,587 INFO [STDOUT] (ajp-0.0.0.0-22705-25) 2012-01-13 15:00:34,587 INFO [org.jasig.cas.CentralAuthenticationServiceImpl] - <Granted service ticket [ST-1-0xTPfXu4bY6ISH160R7h- abc.test.com] for service [https:// abc.test.com pt/c/portal/login] for user [UserName]> 2012-01-13 15:00:34,588 INFO [STDOUT] (ajp-0.0.0.0-22705-25) 2012-01-13 15:00:34,588 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit trail record BEGIN ============================================================= WHO: UserName WHAT: ST-1-0xTPfXu4bY6ISH160R7h-abc.test.com.com for https://abc.test.com/pt/c/portal/login ACTION: SERVICE_TICKET_CREATED APPLICATION: CAS WHEN: Fri Jan 13 15:00:34 CET 2012 CLIENT IP ADDRESS: 194.107.2.81 SERVER IP ADDRESS: abc.test.com ============================================================= > 2012-01-13 15:00:34,657 INFO [STDOUT] (ajp-0.0.0.0-22705-4) 15:00:34,656 DEBUG [Cas20ProxyTicketValidator:86] Placing URL parameters in map. 2012-01-13 15:00:34,658 INFO [STDOUT] (ajp-0.0.0.0-22705-4) 15:00:34,658 DEBUG [Cas20ProxyTicketValidator:94] Calling template URL attribute map. 2012-01-13 15:00:34,659 INFO [STDOUT] (ajp-0.0.0.0-22705-4) 15:00:34,658 DEBUG [Cas20ProxyTicketValidator:97] Loading custom parameters from configuration. 2012-01-13 15:00:34,660 INFO [STDOUT] (ajp-0.0.0.0-22705-4) 15:00:34,659 DEBUG [Cas20ProxyTicketValidator:173] Constructing validation url: https:// abc.test.com /so/proxyValidate?&redirectAfterValidation=false&ticket=ST-1-0xTPfXu4bY6ISH160R7h- abc.test.com &service=https%3A%2F% abc.test.com %2Fpt%2Fc%2Fportal%2Flogin&casServerUrlPrefix=https:// abc.test.com /so/&serverName= abc.test.com &casServerLoginUrl=https:// abc.test.com /so/login 2012-01-13 15:00:34,660 INFO [STDOUT] (ajp-0.0.0.0-22705-4) 15:00:34,660 DEBUG [Cas20ProxyTicketValidator:177] Retrieving response from server. All servers and the Java runtime are using the same SSL certificate. The Liferay CAS configuration looks like: Login URL: https:// abc.test.com /so/login<https://alpha.inet-logistics.com/so/login> Logout URL: https:// abc.test.com /so/logout<https://alpha.inet-logistics.com/so/logout> Server Name: abc.test.com Server URL: https:// abc.test.com /so/<https://alpha.inet-logistics.com/so/> Service URL: https:// abc.test.com /pt/c/portal/login Does anybody have an idea where the problem could be? Any help is greatly appreciated. Thank you in advance. Philipp -- You are currently subscribed to cas-user@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
