Hi All,
I have tried using the guacamole-auth-cas with 0.9.13 as suggested. I
further used jdbc connection (mysql) for connection properties.
The CAS authentication works now but does not redirect to my connection
after that. I verified that the jdbc connection works independently ( by
removing auth-cas extension). Also the username returned from auth-cas is
the same as the username I have stored in the mysql table.
In the Tomcat-8 logs the following error is thrown.
17-Jul-2017 02:42:07.648 SEVERE [http-nio-8080-exec-4]
com.sun.jersey.spi.container.ContainerResponse.logException Mapped
exception to response: 500 (Internal Server Error)
org.apache.guacamole.rest.APIException
at
org.apache.guacamole.rest.RESTExceptionWrapper.invoke(RESTExceptionWrapper.java:184)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
at
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:606)
at
com.sun.jersey.spi.container.JavaMethodInvokerFactory$1.invoke(JavaMethodInvokerFactory.java:60)
at
com.sun.jersey.server.impl.model.method.dispatch.AbstractResourceMethodDispatchProvider$TypeOutInvoker._dispatch(AbstractResourceMethodDispatchProvider.java:185)
at
com.sun.jersey.server.impl.model.method.dispatch.ResourceJavaMethodDispatcher.dispatch(ResourceJavaMethodDispatcher.java:75)
at
com.sun.jersey.server.impl.uri.rules.HttpMethodRule.accept(HttpMethodRule.java:302)
at
com.sun.jersey.server.impl.uri.rules.ResourceClassRule.accept(ResourceClassRule.java:108)
at
com.sun.jersey.server.impl.uri.rules.RightHandPathRule.accept(RightHandPathRule.java:147)
at
com.sun.jersey.server.impl.uri.rules.RootResourceClassesRule.accept(RootResourceClassesRule.java:84)
at
com.sun.jersey.server.impl.application.WebApplicationImpl._handleRequest(WebApplicationImpl.java:1511)
at
com.sun.jersey.server.impl.application.WebApplicationImpl._handleRequest(WebApplicationImpl.java:1442)
at
com.sun.jersey.server.impl.application.WebApplicationImpl.handleRequest(WebApplicationImpl.java:1391)
at
com.sun.jersey.server.impl.application.WebApplicationImpl.handleRequest(WebApplicationImpl.java:1381)
at
com.sun.jersey.spi.container.servlet.WebComponent.service(WebComponent.java:416)
at
com.sun.jersey.spi.container.servlet.ServletContainer.service(ServletContainer.java:538)
at
com.sun.jersey.spi.container.servlet.ServletContainer.service(ServletContainer.java:716)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:742)
at
com.google.inject.servlet.ServletDefinition.doService(ServletDefinition.java:263)
at
com.google.inject.servlet.ServletDefinition.service(ServletDefinition.java:178)
at
com.google.inject.servlet.ManagedServletPipeline.service(ManagedServletPipeline.java:91)
at
com.google.inject.servlet.FilterChainInvocation.doFilter(FilterChainInvocation.java:62)
at
com.google.inject.servlet.ManagedFilterPipeline.dispatch(ManagedFilterPipeline.java:118)
at
com.google.inject.servlet.GuiceFilter.doFilter(GuiceFilter.java:113)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)
at
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:198)
at
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:96)
at
org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:478)
at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:140)
at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:80)
at
org.apache.catalina.valves.AbstractAccessLogValve.invoke(AbstractAccessLogValve.java:624)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:87)
at
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:342)
at
org.apache.coyote.http11.Http11Processor.service(Http11Processor.java:799)
at
org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:66)
at
org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:861)
at
org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1455)
at
org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:49)
at
java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
at
java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
at
org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
at java.lang.Thread.run(Thread.java:745)
If anyone can help me resolve this, it'd be great. Thanks in advance.
Regards
Kaushik Srinivasan
On Thu, Jul 13, 2017 at 10:08 AM, Kaushik Srinivasan <kausr...@umail.iu.edu>
wrote:
> Hi Nick,
>
> Thank you for the information. I will work on using Guacamole 0.9.13 and
> see how I can add the connection through some module.
>
> Thank you for your time.
>
> Regards
> Kaushik Srinivasan
>
> On Thu, Jul 13, 2017 at 10:04 AM, Nick Couchman <nick.couch...@yahoo.com.
> invalid> wrote:
>
>> On Thursday, July 13, 2017, 9:54:47 AM EDT, Kaushik Srinivasan <
>> kausr...@umail.iu.edu> wrote:
>>
>>
>> > Hi Nick
>>
>> > Thanks a lot for helping me out.
>>
>> > I'm currently using Guacamole-0.9.12 and CAS version is 3.4.1. The CAS
>> > module was obtained from the github (incubator-guacamole-client
>> > <https://github.com/apache/incubator-guacamole-client/tree/
>> master/extensions/guacamole-auth-cas>)
>> > and version modified to support 0.9.12 instead of 0.9.13.
>>
>> I suspect this is the issue. There were some changes made outside of the
>> CAS module between 0.9.12 and the 0.9.13 branch to improve the CAS redirect
>> support, so I suspect you're hitting a case where the 0.9.12 code doesn't
>> match up with the 0.9.13 module. Is there any way you can try it with
>> consistent versions across the board?
>>
>> > Apache-Tomcat 8.5.15 is my java application server and currently for
>> > testing purposes I'm not using any front end proxy server.
>>
>> > My guacamole.properties file contains the following Data
>>
>> > cas-authorization-endpoint: https://cas.iu.edu/cas/login
>> > cas-redirect-uri: http://poc1.dyndns-at-work.com:8080/guacamole
>> Looks good.
>>
>> > CAS auth module is the only authentication module I'm loading.
>> The thing to keep in mind about the CAS authentication module is that it
>> does not supply any actual connections. So, using it by itself is going to
>> be less-than-useful - you'll need to configure connections some other way,
>> either using the file module, or by loading another module (JDBC is
>> probably the most useful in this scenario) and configuring the connections
>> in that module.
>> -Nick
>
>
>
