I am not sure how they get there, that may be what I need an answer too. I make a request to a secured page that gets intercepted by acegi , that then gets redirected to the CAS server login page. The jsessionid and "%0A++++++++++++++++" extra stuff are already in the URL when I get to the login page. Both the CAS server and the service are on the same physical server. My co-worker and I tried to make the calls through http only so we could get a Ethereal packet trace, but we understand that at a very base level acegi and CAS are only communicating through https so our efforts to try to track down those extra chars were not successful.
Scott Battaglia wrote: > How come you have all of this as part of your service url: > "%0A++++++++++++++++" ? > > -Scott > > On 10/27/06, *Stephen Rufle* < > [EMAIL PROTECTED] > <mailto:[EMAIL PROTECTED]>> wrote: > > I am implementing a JSF applicaion. We setup the contacts > 'acegi-security-sample-contacts-cas.war' and the system looks like it is > working Then I modified my app config to mirror the 'contacts-cas' > sample. I am able to get redirected to the cas server with the > following url > > https://cas.server.com/login;jsessionid=8AEB623F96D47575BCDAB4EF25F53BD1?service=%0A++++++++++++++++https%3A%2F%2Fservice.server.com%2Fj_acegi_cas_security_check%0A++++++++++++%3Bjsessionid%3D7092D4BE540ACCB9C4D5AEDD4906E4BD > > <https://cas.server.com/login;jsessionid=8AEB623F96D47575BCDAB4EF25F53BD1?service=%0A++++++++++++++++https%3A%2F%2Fservice.server.com%2Fj_acegi_cas_security_check%0A++++++++++++%3Bjsessionid%3D7092D4BE540ACCB9C4D5AEDD4906E4BD> > > After I login I get a message: > I get Login to CAS failed! > Your CAS credentials were rejected. > Reason: Illegal character in URL > > Any Idea's on how to trouble shoot further , I googled for an answer > and > so far have found none. > CAS > Using: > Tomcat 5.5.17 > Apache 2.2 > > Webapp libs: > > WEB-INF\lib\acegi-security-1.0.1.jar > WEB-INF\lib\acegi-security-cas-1.0.1.jar > WEB-INF\lib\antlr-2.7.6rc1.jar > WEB-INF\lib\asm-attrs.jar > WEB-INF\lib\asm.jar > WEB-INF\lib\casclient.jar > WEB-INF\lib\cglib-2.1.3.jar > WEB-INF\lib\commons-beanutils.jar > WEB-INF\lib\commons-codec.jar > WEB-INF\lib\commons-collections.jar > WEB-INF\lib\commons-configuration-1.1.jar > WEB-INF\lib\commons-digester.jar > WEB-INF\lib\commons-el.jar > WEB-INF\lib\commons-fileupload-1.1.1.jar > WEB-INF\lib\commons-lang.jar > WEB-INF\lib\commons-logging.jar > WEB-INF\lib\commons-validator.jar > WEB-INF\lib\dom4j-1.6.1.jar > WEB-INF\lib\ehcache-1.2.3.jar > WEB-INF\lib\hibernate3.jar > WEB-INF\lib\jstl-1.1.0.jar > WEB-INF\lib\jta.jar > WEB-INF\lib\myfaces-api-1.1.5-SNAPSHOT-sources.jar > WEB-INF\lib\myfaces-api-1.1.5-SNAPSHOT.jar > WEB-INF\lib\myfaces-impl-1.1.5-SNAPSHOT-sources.jar > WEB-INF\lib\myfaces-impl-1.1.5-SNAPSHOT.jar > WEB-INF\lib\oro-2.0.8.jar > WEB-INF\lib\spring-aspects.jar > WEB-INF\lib\spring- mock.jar > WEB-INF\lib\spring.jar > WEB-INF\lib\standard.jar > WEB-INF\lib\tomahawk-1.1.5-SNAPSHOT-sources.jar > WEB-INF\lib\tomahawk-1.1.5-SNAPSHOT.jar > WEB-INF\lib\tomahawk-sandbox-1.1.5-SNAPSHOT-sources.jar > WEB-INF\lib\tomahawk- sandbox-1.1.5-SNAPSHOT.jar > > _______________________________________________ > Yale CAS mailing list > [email protected] > <mailto:[email protected]> > http://tp.its.yale.edu/mailman/listinfo/cas > > _______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
