*Info/Background:* So I have my webapp, called "mywebapp", accessible at "https://localhost:8443/mywebapp";. I want to protect the "/protected" section on my webapp (i.e https://localhost:8443/mywebapp/protected/*).
I have my CAS server, (running via the same Tomcat as my webapp, because this is just a proof of concept) accessible at "https://localhost:8443/cas/login";. Without any Shiro components added in, the CAS server works fine, authenticates users, and redirects to "https://localhost:8443/mywebapp/protected/"; , as desired. But now I want to incorporate Shiro. I added the EnviromentLoaderListener in "mywebapp"'s web.xml, and also added the Shiro filter and filter mapping in there as well. I can see from the Tomcat console output that it is infact intializing the Shiro Enviroment and is utilizing the shiro.ini file just fine. *Heres the problem*: I can still visit the public section of my web app fine (at https://localhost:8443/mywebapp). Trying to visit the protected section redirects me to the CAS server login page fine, as expected. But now, the CAS server just hangs there in an infinite loop when I click submit/login. At the bottom of my browser, it says: "Waiting for https://localhost:8443/cas/login;jsessionid=EF229...etc...862DB?service=https://moreStuffHere"; I couldn't see the end the string, but I assume moreStuffHere = https://localhost:8443/mywebapp/protected/. Also, while in this infinite loop (after clicking login/submit), my tomcat console output was printing CONSTANTLY (multiple times per second), printing: "WHO: myUserNameHere WHAT: ST-35210-h7TgUTBT0nc63oUVLG0g-cas for https://localhost:8443/mywebapp/protected ACTION: SERVICE_TICKET_CREATED APPLICATION: CAS WHEN: Fri Dec 13 13:15:38 PST 2013 CLIENT IP ADDRESS: 0:0:0:0:0:0:0:1 SERVER IP ADDRESS: 0:0:0:0:0:0:0:1" It was printing this constantly, in an infinite loop, except with a different key (the prefix before -cas) in the "WHAT: " section each time. I can only assume that I have something wrong with my shiro.ini file. Here is my web.xml <http://shiro-user.582556.n2.nabble.com/file/n7579461/web.xml> and shiro.ini <http://shiro-user.582556.n2.nabble.com/file/n7579461/shiro.ini> , if anyone is feeling generous enough to take a look. Am I making any obvious mistakes? Thank you for any help. -- View this message in context: http://shiro-user.582556.n2.nabble.com/Getting-shiro-ini-to-work-with-CAS-server-tp7579461.html Sent from the Shiro User mailing list archive at Nabble.com.
