Thank you! After much, much effort, I found and fixed a number of SSL issues.
I now have my app communicating with CAS with no exception in the Java log...but forwarding to the error page every time. Here is the TRACE log. What are the common reasons that the CS plugin may fail authentication? 2015-11-29 06:31:57.295 [TRACE]: Retrieved value of type [org.apache.shiro.web.subject.support.WebDelegatingSubject] for key [org.apache.shiro.util.ThreadContext_SUBJECT_KEY] bound to thread [http-bio-8080-exec-5] 2015-11-29 06:31:57.295 [TRACE]: attempting to get session; create = false; session is null = false; session has id = true 2015-11-29 06:31:57.295 [TRACE]: Authentication attempt received for token [org.apache.shiro.cas.CasToken@3f9c95bc] 2015-11-29 06:31:57.530 [TRACE]: calculated path: /wildbook 2015-11-29 06:31:57.531 [DEBUG]: Added HttpServletResponse Cookie [rememberMe=deleteMe; Path=/wildbook; Max-Age=0; Expires=Sat, 28-Nov-2015 06:31:57 GMT] 2015-11-29 06:31:57.531 [TRACE]: Removed 'rememberMe' cookie by setting maxAge=0 2015-11-29 06:31:57.531 [TRACE]: get() - in thread [http-bio-8080-exec-5] 2015-11-29 06:31:57.531 [TRACE]: Retrieved value of type [org.apache.shiro.web.subject.support.WebDelegatingSubject] for key [org.apache.shiro.util.ThreadContext_SUBJECT_KEY] bound to thread [http-bio-8080-exec-5] 2015-11-29 06:31:57.531 [TRACE]: attempting to get session; create = false; session is null = false; session has id = true 2015-11-29 06:31:57.531 [TRACE]: Invoked preHandle method. Continuing chain?: [false] 2015-11-29 06:31:57.531 [TRACE]: Successfully invoked postHandle method 2015-11-29 06:31:57.531 [TRACE]: Successfully invoked afterCompletion method. 2015-11-29 06:31:57.563 [TRACE]: Filter 'ShiroFilter' not yet executed. Executing now. 2015-11-29 06:31:57.564 [TRACE]: Context already contains a SecurityManager instance. Returning. 2015-11-29 06:31:57.564 [TRACE]: No identity (PrincipalCollection) found in the context. Looking for a remembered identity. 2015-11-29 06:31:57.569 [TRACE]: No 'rememberMe' cookie value 2015-11-29 06:31:57.569 [TRACE]: No remembered identity found. Returning original context. 2015-11-29 06:31:57.569 [TRACE]: attempting to get session; create = false; session is null = false; session has id = true 2015-11-29 06:31:57.570 [TRACE]: attempting to get session; create = false; session is null = false; session has id = true Jason Holmberg Wildbook for Whale Sharks http://www.whaleshark.org On Sun, Nov 29, 2015 at 11:06 AM, jleleu [via Shiro User] < [email protected]> wrote: > Hi, > > The CasFilter is meant to receive the service ticket from the CAS server > and validate it via the CAS server. > > There is something wrong in your CAS service url definition: > > casRealm.casService = *https://52.33.188.102/shiro-cas > <https://52.33.188.102/shiro-cas>* > roles.loginUrl = > https://52.33.188.102/wp-cas/login?service=*https://52.33.188.102/wildbook/shiro-cas/ > <https://52.33.188.102/wildbook/shiro-cas/>* > > It should be the same value in both cases. > > Best regards, > Jérôme > > > > 2015-11-27 21:49 GMT+01:00 holmbergius [via Shiro User] <[hidden email] > <http:///user/SendEmail.jtp?type=node&node=7580863&i=0>>: > >> For more info: >> >> If I remove the final / after /shiro-cas/?ticket...to get >> /shiro-cas?ticket=..., I get kicked over to my error page, but Shiro does >> not log any errors. >> >> ------------------------------ >> If you reply to this email, your message will be added to the discussion >> below: >> >> http://shiro-user.582556.n2.nabble.com/404-on-shiro-cas-tp7580860p7580862.html >> To start a new topic under Shiro User, email [hidden email] >> <http:///user/SendEmail.jtp?type=node&node=7580863&i=1> >> To unsubscribe from Shiro User, click here. >> NAML >> <http://shiro-user.582556.n2.nabble.com/template/NamlServlet.jtp?macro=macro_viewer&id=instant_html%21nabble%3Aemail.naml&base=nabble.naml.namespaces.BasicNamespace-nabble.view.web.template.NabbleNamespace-nabble.view.web.template.NodeNamespace&breadcrumbs=notify_subscribers%21nabble%3Aemail.naml-instant_emails%21nabble%3Aemail.naml-send_instant_email%21nabble%3Aemail.naml> >> > > > > ------------------------------ > If you reply to this email, your message will be added to the discussion > below: > > http://shiro-user.582556.n2.nabble.com/404-on-shiro-cas-tp7580860p7580863.html > To unsubscribe from 404 on /shiro-cas, click here > <http://shiro-user.582556.n2.nabble.com/template/NamlServlet.jtp?macro=unsubscribe_by_code&node=7580860&code=aG9sbWJlcmdpdXNAZ21haWwuY29tfDc1ODA4NjB8LTE3MjQ5OTUxMzI=> > . > NAML > <http://shiro-user.582556.n2.nabble.com/template/NamlServlet.jtp?macro=macro_viewer&id=instant_html%21nabble%3Aemail.naml&base=nabble.naml.namespaces.BasicNamespace-nabble.view.web.template.NabbleNamespace-nabble.view.web.template.NodeNamespace&breadcrumbs=notify_subscribers%21nabble%3Aemail.naml-instant_emails%21nabble%3Aemail.naml-send_instant_email%21nabble%3Aemail.naml> > -- View this message in context: http://shiro-user.582556.n2.nabble.com/404-on-shiro-cas-tp7580860p7580864.html Sent from the Shiro User mailing list archive at Nabble.com.
