Never mind, the headers are there if you only look at the correct end of the communication.
Thanks a lot for your help! Ralf ________________________________________ From: Steppacher Ralf [[email protected]] Sent: Tuesday, August 27, 2013 16:57 To: [email protected] Subject: RE: [cas-user] SAML Ticket Validation I was working with the master all along (1.0.10). I should have mentioned that. Out of curiosity I reverted back to 1.0.9.1 but that did not change anything. However, completing the setup for releasing LDAP attributes has indeed fixed it to a certain extend! I now get the following in the log and I can access the application. 2013-08-27 15:52:18,794 DEBUG [org.jasig.cas.authentication.AuthenticationManagerImpl] - <Attribute map for steppra1: {username=steppra1, memberof=[cn=fe2user,ou=groups,dc=derivativepartners,dc=com, cn=fe2admin,ou=groups,dc=derivativepartners,dc=com]}> But mod_auth_cas does not write any headers to the http response. Neither the remote user (CASAuthNHeader) nor the SAML attributes (CASValidateSAML). Also the directive "Require cas-attribute username:blah" does not prevent me from accessing the application as user "steppra1". Ralf ________________________________________ From: Marvin Addison [[email protected]] Sent: Tuesday, August 27, 2013 13:34 To: [email protected] Subject: Re: [cas-user] SAML Ticket Validation > Indeed it is complaining about an XML that cannot be parsed: > > [Tue Aug 27 13:17:09 2013] [error] [client 127.0.0.1] MOD_AUTH_CAS: Error > parsing XML content (Internal error), referer: > https://dev.local.fe2/cas/login?service=https%3a%2f%2fdev.local.fe2%2ffe2.html Unfortunately it doesn't provide any details on _why_ parsing failed. I'd recommend you try a build from the latest HEAD version on the master branch; we're using it and it works fine. Seems easy enough to test and I'd be curious whether you can upgrade around your problem. M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
