: Re: [cas-user] Ticket Validation Succeeds Against Services With
Different Protocols
This apparently happens because we don't believe we have access to the
TARGET to validate:
https://github.com/Jasig/cas/blob/master/cas-server-support-saml/src/m
ain/java/org/jasig/cas/support/saml
This apparently happens because we don't believe we have access to the
TARGET to validate:
https://github.com/Jasig/cas/blob/master/cas-server-support-saml/src/main/java/org/jasig/cas/support/saml/authentication/principal/SamlService.java#L96
Thanks for investigating. Agree that appears wrong
This behavior was observed in CAS Server 3.5.2
SCENARIO
Given two service configurations in CAS:
1 - https://mysite.mydomain.com/pathtoapp
2 - http://*.mydomain.com/
A ticket is generated for a service via the following URL:
University
From: Killingsworth, Chad A [mailto:chadkillingswo...@missouristate.edu]
Sent: Monday, August 11, 2014 12:09 PM
To: cas-user@lists.jasig.org
Subject: [cas-user] Ticket Validation Succeeds Against Services With Different
Protocols
This behavior was observed in CAS Server 3.5.2
SCENARIO
From: Dickison, Lynn E [mailto:lynndicki...@missouristate.edu]
Sent: Monday, August 11, 2014 3:00 PM
To: cas-user@lists.jasig.org
Subject: RE:[cas-user] Ticket Validation Succeeds Against Services With
Different Protocols
Here are log entries for this case:
From localhost_access_log
2014-08-11 14:48:53,829 INFO
[org.jasig.cas.CentralAuthenticationServiceImpl] - Granted service ticket
[ST-1-ZVJ45whjWQCXrJQVHVmd-abbott] for service
[https://ckillingsworth2.missouristate.edu/testcasapp] for user [chk790]
Can you post the corresponding log entry that reads something like the
This apparently happens because we don't believe we have access to the
TARGET to validate:
https://github.com/Jasig/cas/blob/master/cas-server-support-saml/src/main/java/org/jasig/cas/support/saml/authentication/principal/SamlService.java#L96
Not quite sure why we believe that since we're passing