Why does it work then in the non-SAML set-up? Is there anything special I have to configure for the service in the SAML set-up as compared to the non-SAML set-up?
-----Oorspronkelijk bericht----- Van: Marvin Addison [mailto:marvin.addi...@gmail.com] Verzonden: vrijdag 19 oktober 2012 15:29 Aan: cas-user@lists.jasig.org Onderwerp: Re: [cas-user] CAS and SAML 1.1 > 19 okt 2012 14:52:23,475 DEBUG Saml11TicketValidator:206 - Retrieving > response from server. > 19 okt 2012 14:52:23,604 DEBUG Saml11TicketValidator:214 - Server > response: <?xml version="1.0" encoding="UTF-8"?><SOAP-ENV:Envelope > xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/";><SOAP-ENV:H > eader/><SOAP-ENV:Body><Response > xmlns="urn:oasis:names:tc:SAML:1.0:protocol" > xmlns:saml="urn:oasis:names:tc:SAML:1.0:assertion" > xmlns:samlp="urn:oasis:names:tc:SAML:1.0:protocol" > xmlns:xsd="http://www.w3.org/2001/XMLSchema"; > xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"; > IssueInstant="2012-10-19T12:52:23.601Z" MajorVersion="1" > MinorVersion="1" > Recipient="https://inf069766.ad.vl-brabant.be:11043/additionservice/?T > ARGET=https%3A%2F%2Finf069766.ad.vl-brabant.be%3A11043%2Fadditionservi > ce%2F" > ResponseID="_1d0636194258b0af21d8bb5445b339d4"><Status><StatusCode > Value="samlp:Responder"></StatusCode><StatusMessage>Service not > allowed to validate > tickets.</StatusMessage></Status></Response></SOAP-ENV:Body></SOAP-ENV > :Envelope> > 19 okt 2012 14:52:23,675 WARN Saml11TicketValidationFilter:189 - > org.jasig.cas.client.validation.TicketValidationException: > org.opensaml.SAMLException: Service not allowed to validate tickets. Here's the code snippet on the server responsible for that error: if (registeredService == null || !registeredService.isEnabled()) { log.warn("ServiceManagement: Service does not exist is not enabled, and thus not allowed to validate tickets. Service: [" + service.getId() + "]"); throw new UnauthorizedServiceException("Service not allowed to validate tickets."); } Looks like you need to tweak the registered service entry for your client. M -- You are currently subscribed to cas-user@lists.jasig.org as: guy.tho...@vlaamsbrabant.be To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -------------------------------------------------------------------------------- Aan dit bericht kunnen geen rechten worden ontleend. Alle berichten naar dit professioneel e-mailadres kunnen door de werkgever gelezen worden. In het kader van de vervulling van onze taak van openbaar belang nemen wij uw relevante persoonlijke gegevens op in onze bestanden. U kunt deze inzien en verbeteren conform de Wet Verwerking Persoonsgegevens van 8 december 1992. Het ondernemingsnummer van het provinciebestuur is 0253.973.219 -- You are currently subscribed to cas-user@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
