[
https://issues.apache.org/jira/browse/GUACAMOLE-367?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16136786#comment-16136786
]
Kevin Chan edited comment on GUACAMOLE-367 at 8/22/17 1:38 PM:
---------------------------------------------------------------
CAS Provider: [LemonLDAP::NG 1.9|https://lemonldap-ng.org/]
This is a Perl based SSO running on Apache 2.4 with the perl module. LemonLDAP
provides CAS via this Apache rewrite rule:
{code:title=Apache virtualhost|borderStyle=solid}
# CAS Issuer
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteRule ^/cas/.* /index.pl
</IfModule>
{code}
Guacamole daemon and client is running on an Ubuntu 16.04 with Tomcat8. Guacd
is compiled on the same machine, Guacamole client deployed from the pre-built
war file via tomcat manager.
HAProxy sits in front of both LemonLDAP and Tomcat8, routes via the provided
FQDN from client.
Client is Ubuntu 16.04 running Firefox v55 and Windows 10 running Chrome v59.
>From the Apache access logs, LemonLDAP is very picky on the URL:
with {{/cas}}:
{code:title=Apache access log|borderStyle=solid}
IP - testuser [22/Aug/2017:07:58:27 -0500] "GET
/cas?service=https%3A%2F%2Fguacserver.test%2Fguacamole HTTP/1.1" 200 3245
"https://guacserver.test/guacamole/"; "Mozilla/5.0 (X11; Linux x86_64)
AppleWebKit/537.36 (KHTML, like Gecko) Ubuntu Chromium/59.0.3071.109
Chrome/59.0.3071.109 Safari/537.36"
{code}
with {{/cas/}}:
{code:title=Apache access log|borderStyle=solid}
IP - testuser [22/Aug/2017:07:59:42 -0500] "GET
/cas/?service=https%3A%2F%2Fguacserver.test%2Fguacamole HTTP/1.1" 200 3246
"https://guacserver.test/guacamole/"; "Mozilla/5.0 (X11; Linux x86_64)
AppleWebKit/537.36 (KHTML, like Gecko) Ubuntu Chromium/59.0.3071.109
Chrome/59.0.3071.109 Safari/537.36"
{code}
Both return the user portal page as the response. It seems LemonLDAP is very
picky about the CAS endpoints. It doesn't do any redirects to {{/cas/login}}.
was (Author: kevinmsrs):
CAS Provider: [LemonLDAP::NG 1.9|https://lemonldap-ng.org/]
This is a Perl based SSO running on Apache 2.4 with the perl module. LemonLDAP
provides CAS via this Apache rewrite rule:
{code:title=Apache virtualhost|borderStyle=solid}
# CAS Issuer
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteRule ^/cas/.* /index.pl
</IfModule>
{code}
Guacamole daemon and client is running on an Ubuntu 16.04 with Tomcat8. Guacd
is compiled on the same machine, Guacamole client deployed from the pre-built
war file via tomcat manager.
HAProxy sits in front of both LemonLDAP and Tomcat8, routes via the provided
FQDN from client.
Client is Ubuntu 16.04 running Firefox v55 and Windows 10 running Chrome v59.
>From the Apache access logs, LemonLDAP is very picky on the URL:
with {{/cas}}:
{code:title=Apache access log|borderStyle=solid}
IP - testuser [22/Aug/2017:07:58:27 -0500] "GET
/cas?service=https%3A%2F%2Fguacserver.test%2Fguacamole HTTP/1.1" 200 3245
"https://guacserver.test/guacamole/"; "Mozilla/5.0 (X11; Linux x86_64)
AppleWebKit/537.36 (KHTML, like Gecko) Ubuntu Chromium/59.0.3071.109
Chrome/59.0.3071.109 Safari/537.36"
{code}
with {{/cas/}}:
{code:title=Apache access log|borderStyle=solid}
IP - testuser [22/Aug/2017:07:59:42 -0500] "GET
/cas/?service=https%3A%2F%2Flyra.msrslab.us%2Fguacamole HTTP/1.1" 200 3246
"https://lyra.msrslab.us/guacamole/"; "Mozilla/5.0 (X11; Linux x86_64)
AppleWebKit/537.36 (KHTML, like Gecko) Ubuntu Chromium/59.0.3071.109
Chrome/59.0.3071.109 Safari/537.36"
{code}
Both return the user portal page as the response. It seems LemonLDAP is very
picky about the CAS endpoints. It doesn't do any redirects to {{/cas/login}}.
> Missing self closing tag in Link element
> ----------------------------------------
>
> Key: GUACAMOLE-367
> URL: https://issues.apache.org/jira/browse/GUACAMOLE-367
> Project: Guacamole
> Issue Type: Bug
> Components: guacamole-client
> Affects Versions: 0.9.13-incubating
> Environment: Ubuntu 16.04
> Tomcat 8
> Reporter: Kevin Chan
> Priority: Trivial
>
> Java error:
> {code:none}
> [http-nio-8080-exec-164] ERROR org.jasig.cas.client.util.XmlUtils - The
> element type "link" must be terminated by the matching end-tag "</link>".
> {code}
> app missing closing tag on the following element:
> {code:html}
> <link rel="stylesheet" type="text/css" href="app.css?v=0.9.13-incubating">
> {code}
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
