Hi, thanks again for your reply. two things:
1. First I modified the code this way: a. deployed in tomcat under ../shiro-cas (to be matched with the example) b. I modified casRealm.defaultRoles = user as you suggested. still same behaviour. When I connect to http://192.168.108.195:8080/shiro-cas/secure/index.jsp I am redirected to Cas and then redirected to that url: http://192.168.108.195:8080/shiro-cas/?ticket=ST-122-wkRvMwd6sKwaoIBtsVwz-cas01.example.org Thats my latest configuration: <filter> <filter-name>ShiroFilter</filter-name> <filter-class>org.apache.shiro.web.servlet.IniShiroFilter</filter-class> <init-param> <param-name>config</param-name> <param-value> [main] casFilter = org.apache.shiro.cas.CasFilter casFilter.failureUrl = /unauthorized.jsp casRealm = org.apache.shiro.cas.CasRealm casRealm.defaultRoles = user casRealm.casServerUrlPrefix = http://192.168.2.101/cas casRealm.casService = http://192.168.108.195:8080/shiro-cas casSubjectFactory = org.apache.shiro.cas.CasSubjectFactory securityManager.subjectFactory = $casSubjectFactory roles.loginUrl = http://192.168.2.101:8080/cas/login?service=http://192.168.108.195:8080/shiro-cas roles.unauthorizedUrl = /unauthorized.jsp [urls] /secure/** = roles[user] /admin/** = roles[user] /** = anon /shiro-cas = casFilter </param-value> </init-param> </filter> 3. I have no idea how to compute the admin role? I guess Iam missing some best practice over here? will be great if you show me the right way. Thanks. -- View this message in context: http://shiro-user.582556.n2.nabble.com/Cant-Integrate-Shiro-with-CAS-tp7579234p7579246.html Sent from the Shiro User mailing list archive at Nabble.com.
