You are viewing a plain text version of this content. The canonical link for it is here.
Posted to user@shiro.apache.org by jleleu <le...@gmail.com> on 2012/05/19 09:37:39 UTC
Re: Shiro with CAS
Hi Dmitriy,
If I understand you properly, /cas is the root context of your CAS server
and /shiro the root context of your shiro webapp. So if you define /shiro
for casFilter, in fact, the CAS service should be :
http://dima767.example.org:9080/shiro/shiro (root context + filter url). In
this case, I recommend that you choose a better url for the CAS filter to
avoid confusion.
Nonetheless, it's not the problem as the CAS filter is used when you come
back to your application. Calling a /account/** url should redirect you to
your CAS server.
You said : "no CAS redirection happens", but what happens ? Can you access
the /account/** url ?
If so, it looks like the security is not enabled in your web application.
Can you turn on DEBUG logs on org.apache.shiro package and post your logs ?
Thanks.
Best regards,
Jérôme
--
View this message in context: http://shiro-user.582556.n2.nabble.com/Shiro-with-CAS-tp7566193p7566662.html
Sent from the Shiro User mailing list archive at Nabble.com.
Re: Shiro with CAS
Posted by jleleu <le...@gmail.com>.
Hi,
I don't know very well Grails so I can't help you on this.
Though, I think you should take a look at the Grails Shiro plugin :
http://grails.org/plugin/shiro.
Some complete tutorial :
http://coderberry.me/blog/2012/04/26/grails-authentication-with-shiro/.
Best regards,
Jérôme
--
View this message in context: http://shiro-user.582556.n2.nabble.com/Shiro-with-CAS-tp7566193p7578322.html
Sent from the Shiro User mailing list archive at Nabble.com.
Re: Shiro with CAS
Posted by jleleu <le...@gmail.com>.
Hi,
The wiki is now up to date.
Best regards,
Jérôme
--
View this message in context: http://shiro-user.582556.n2.nabble.com/Shiro-with-CAS-tp7566193p7573840.html
Sent from the Shiro User mailing list archive at Nabble.com.
Re: Shiro with CAS
Posted by jleleu <le...@gmail.com>.
Oops ! Sorry about that.
I corrected the reference documentation, the wiki should be updated soon...
Thanks for testing and reporting.
Best,
Jérôme
--
View this message in context: http://shiro-user.582556.n2.nabble.com/Shiro-with-CAS-tp7566193p7567097.html
Sent from the Shiro User mailing list archive at Nabble.com.
Re: Shiro with CAS
Posted by Dmitriy Kopylenko <dm...@gmail.com>.
Thanks a lot Jerome. That did it!
BTW, the [url] part is straight from shiro-cas page:
http://shiro.apache.org/cas.html
You might want to update that :-)
Thanks,
Dmitriy.
--
View this message in context: http://shiro-user.582556.n2.nabble.com/Shiro-with-CAS-tp7566193p7567056.html
Sent from the Shiro User mailing list archive at Nabble.com.
Re: Shiro with CAS
Posted by jleleu <le...@gmail.com>.
Hi Dmitriy,
Everything just fine, except the naming of the urls and filters section :
should be [urls] and not [url] (in the shiro.ini file).
That's why you have no security defined for your application.
Best,
Jérôme
--
View this message in context: http://shiro-user.582556.n2.nabble.com/Shiro-with-CAS-tp7566193p7567048.html
Sent from the Shiro User mailing list archive at Nabble.com.
Re: Shiro with CAS
Posted by Dmitriy Kopylenko <dm...@gmail.com>.
Dmitriy Kopylenko wrote
>
> Hi Jerome. I appreciate any help. Yes, the /account just goes there
> without
> CAS redirect. Here's the entire exploded war, so if you could spot what is
> wrong, that'd great.
>
> Thanks,
> Dmitriy.
>
>
>
> On Sat, May 19, 2012 at 3:37 AM, jleleu [via Shiro User] <
> ml-node+s582556n7566662h40@.nabble> wrote:
>
>> Hi Dmitriy,
>>
>> If I understand you properly, /cas is the root context of your CAS server
>> and /shiro the root context of your shiro webapp. So if you define /shiro
>> for casFilter, in fact, the CAS service should be :
>> http://dima767.example.org:9080/shiro/shiro (root context + filter url).
>> In this case, I recommend that you choose a better url for the CAS filter
>> to avoid confusion.
>>
>> Nonetheless, it's not the problem as the CAS filter is used when you come
>> back to your application. Calling a /account/** url should redirect you
>> to
>> your CAS server.
>>
>> You said : "no CAS redirection happens", but what happens ? Can you
>> access
>> the /account/** url ?
>> If so, it looks like the security is not enabled in your web application.
>>
>> Can you turn on DEBUG logs on org.apache.shiro package and post your logs
>> ?
>>
>> Thanks.
>> Best regards,
>> Jérôme
>>
>>
>> ------------------------------
>> If you reply to this email, your message will be added to the discussion
>> below:
>>
>> http://shiro-user.582556.n2.nabble.com/Shiro-with-CAS-tp7566193p7566662.html
>> To unsubscribe from Shiro with CAS, click
>> here<http://shiro-user.582556.n2.nabble.com/template/NamlServlet.jtp?macro=unsubscribe_by_code&node=7566193&code=ZG1pdHJpeS5rb3B5bGVua29AZ21haWwuY29tfDc1NjYxOTN8Mjg3MjczNTM1>
>> .
>> NAML<http://shiro-user.582556.n2.nabble.com/template/NamlServlet.jtp?macro=macro_viewer&id=instant_html%21nabble%3Aemail.naml&base=nabble.naml.namespaces.BasicNamespace-nabble.view.web.template.NabbleNamespace-nabble.naml.namespaces.BasicNamespace-nabble.view.web.template.NabbleNamespace-nabble.naml.namespaces.BasicNamespace-nabble.view.web.template.NabbleNamespace-nabble.naml.namespaces.BasicNamespace-nabble.view.web.template.NabbleNamespace-nabble.view.web.template.NodeNamespace&breadcrumbs=notify_subscribers%21nabble%3Aemail.naml-instant_emails%21nabble%3Aemail.naml-send_instant_email%21nabble%3Aemail.naml>
>>
>
--
View this message in context: http://shiro-user.582556.n2.nabble.com/Shiro-with-CAS-tp7566193p7567039.html
Sent from the Shiro User mailing list archive at Nabble.com.