I was able to figure out my problem. I was missing an
AutoIntegrationFilter bean. It now works.
Thanks!
Scott Battaglia
Application Developer, New Technology Group
Enterprise Systems and Services
Rutgers University Computing Services
Rutgers, the State University of New Jersey
email: [EMAIL PROTECTED]
voice: 732.445.0097
fax: 732.445.5493
Scott Battaglia wrote:
Hi,
I've just started working with Acegi and CAS and I'm finding it very
easy and powerful. However, I've come upon something that's confusing
me. I set up my application so that any URL ending with .app forces
requires authentication. It properly redirects to CAS for
authentication but when it goes to the j_acegi_cas_security_check page
it gets redirected back to CAS. Does anyone know why this occurs?
I'm assuming I have some stupid config error that I missed therefore
I'm attaching my securityContext.xml.
Thanks in advance for your help!
-Scott
?xml version=1.0 encoding=UTF-8?
!DOCTYPE beans PUBLIC -//SPRING//DTD BEAN//EN
http://www.springframework.org/dtd/spring-beans.dtd;
beans
!-- === --
!-- SINGLE SIGN ON USING ACEGI AND CAS --
!-- === --
bean id=serviceProperties
class=net.sf.acegisecurity.ui.cas.ServiceProperties
property
name=servicevaluehttps://acsdev12.rutgers.edu/hrinfo/j_acegi_cas_security_check/value/property
property name=sendRenewvaluefalse/value/property
/bean
bean id=casProcessingFilter
class=net.sf.acegisecurity.ui.cas.CasProcessingFilter
property name=authenticationManagerref bean=authenticationManager
//property
property
name=authenticationFailureUrlvalue/casfailed.jsp/value/property
property name=defaultTargetUrlvalue//value/property
property
name=filterProcessesUrlvalue/j_acegi_cas_security_check/value/property
/bean
bean id=casProcessingFilterEntryPoint
class=net.sf.acegisecurity.ui.cas.CasProcessingFilterEntryPoint
property
name=loginUrlvaluehttps://www.acst2.rutgers.edu:8889/cas/login/value/property
property name=servicePropertiesref bean=serviceProperties
//property
/bean
bean id=authenticationManager
class=net.sf.acegisecurity.providers.ProviderManager
property name=providers
list
ref bean=casAuthenticationProvider /
/list
/property
/bean
bean id=casAuthenticationProvider
class=net.sf.acegisecurity.providers.cas.CasAuthenticationProvider
property name=casAuthoritiesPopulatorref bean=casAuthoritiesPopulator
//property
property name=casProxyDeciderref bean=casProxyDecider
//property
property name=ticketValidatorref bean=casProxyTicketValidator
//property
property name=statelessTicketCacheref bean=statelessTicketCache
//property
property
name=keyvaluemy_password_for_this_auth_provider_only/value/property
/bean
bean id=casProxyTicketValidator
class=net.sf.acegisecurity.providers.cas.ticketvalidator.CasProxyTicketValidator
property
name=casValidatevaluehttps://www.acst2.rutgers.edu:8889/cas/serviceValidate/value/property
property name=servicePropertiesref bean=serviceProperties
//property
/bean
bean id=statelessTicketCache
class=net.sf.acegisecurity.providers.cas.cache.EhCacheBasedTicketCache
property name=minutesToIdlevalue20/value/property
/bean
bean id=casAuthoritiesPopulator
class=net.sf.acegisecurity.providers.cas.populator.DaoCasAuthoritiesPopulator
property name=authenticationDaoref bean=authenticationDao
//property
/bean
bean id=casProxyDecider
class=net.sf.acegisecurity.providers.cas.proxy.RejectProxyTickets /
!-- bean id=authenticationDao
class=edu.rutgers.acs.hrinfo.dao.support.InMemoryAuthenticationDao /--
bean id=authenticationDao
class=net.sf.acegisecurity.providers.dao.memory.InMemoryDaoImpl
property name=userMap
value
battags=PASSWORD_NOT_USED,ROLE_SUPER_USER
beeky=PASSWORD_NOT_USED,ROLE_SUPER_USER
/value
/property
/bean
bean id=securityEnforcementFilter
class=net.sf.acegisecurity.intercept.web.SecurityEnforcementFilter
property name=filterSecurityInterceptorref
bean=filterInvocationInterceptor//property
property name=authenticationEntryPointref