Hi Andrew, On May 29, 2012, at 5:48 PM, Andrew Mortensen wrote:
> > On May 29, 2012, at 11:00 AM, Roque Gagliano (rogaglia) wrote: > >> Hi Cosign experts, >> >> I am pretty new on Cosign and normally have use it as an admin in an >> existing installation. I need some directions on where to start looking for >> an error when using cosign version 3.1.1. >> >> The sequence is the following: >> 1) The user is re-directed to the cosign webpage >> (https://login.example.com?cosign-exampleweb.example.com&https://exampleweb.example.com) >> to insert its username/password. >> 2) There is an authentication failure and the user gets redirected to >> the login page without any attribute (https://login.example.com/cosign.cgi) >> with the message: "Wrong Login ID or Password!" >> 3) The user now enters the correct username/password >> 4) Instead of been re-directed to the original webpage, the user see >> the same cosign webpage with the message: "Authentication Complete". > > This is symptomatic of an unsatisfied secondary authentication factor which > isn't exposed in the UI. The html/js included with cosign displays this text > for any satisfied factor when additional factors are still required. ok. >> I must say that when you login and try the first time, the system works just >> fine as it re-direct you to the original webpage. Also, when looking at the >> source code for every page, the "ref" attribute is well configured to the >> correct URL. > > What do you see in the "required" form element in the html returned in step 4 > above? Basically it is empty. <input type="hidden" name="required" value="" /> Roque > andrew
smime.p7s
Description: S/MIME cryptographic signature
------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________ Cosign-discuss mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/cosign-discuss
