401使用CAS时重定向到Tomcat web应用程序后出错
我正在尝试配置Tomcat和CAS 我的部署有: 1.单个Tomcat服务器(7.0.29版) 2.ApacheDS作为LDAP 3.部署到Tomcat的CAS服务器3.5.2 4.我的web应用程序部署到同一个Tomcat服务器 我使用的是自签名证书,必须修改CAS以提供自定义HostNameVerifier,以克服错误的主机名错误 因此,现在当我尝试访问我的web应用程序时,我会被重定向到CAS登录页面。我可以使用LDAP中的凭据登录,并被重定向回web应用程序。但我在使用CAS20验证器时得到了401(在尝试SAML11验证器时得到了403) 所以我怀疑web.xml可能有问题。以下是我正在使用的:401使用CAS时重定向到Tomcat web应用程序后出错,tomcat,cas,Tomcat,Cas,我正在尝试配置Tomcat和CAS 我的部署有: 1.单个Tomcat服务器(7.0.29版) 2.ApacheDS作为LDAP 3.部署到Tomcat的CAS服务器3.5.2 4.我的web应用程序部署到同一个Tomcat服务器 我使用的是自签名证书,必须修改CAS以提供自定义HostNameVerifier,以克服错误的主机名错误 因此,现在当我尝试访问我的web应用程序时,我会被重定向到CAS登录页面。我可以使用LDAP中的凭据登录,并被重定向回web应用程序。但我在使用CAS20验证器时
<security-constraint>
<display-name>Global Access</display-name>
<web-resource-collection>
<web-resource-name>Global</web-resource-name>
<url-pattern>/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>*</role-name>
</auth-constraint>
</security-constraint>
全球接入
全球的
/*
*
2013-09-07 11:45:33,206 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit trail record BEGIN
=============================================================
WHO: [username: fadams]
WHAT: supplied credentials: [username: fadams]
ACTION: AUTHENTICATION_SUCCESS
APPLICATION: CAS
WHEN: Sat Sep 07 11:45:33 BST 2013
CLIENT IP ADDRESS: 127.0.0.1
SERVER IP ADDRESS: 127.0.0.1
=============================================================
>
2013-09-07 11:45:33,209 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit trail record BEGIN
=============================================================
WHO: [username: fadams]
WHAT: TGT-1-1cSjhWvG2A6kQcEJVOFkHAiQgGRyejeoVkpTkzbqSBftS7LApp-localhost
ACTION: TICKET_GRANTING_TICKET_CREATED
APPLICATION: CAS
WHEN: Sat Sep 07 11:45:33 BST 2013
CLIENT IP ADDRESS: 127.0.0.1
SERVER IP ADDRESS: 127.0.0.1
=============================================================
>
2013-09-07 11:45:33,212 INFO [org.jasig.cas.CentralAuthenticationServiceImpl] - <Granted service ticket [ST-1-vjLbc7KbWAK5kyYTSJTZ-localhost] for service [https://localhost:8443/moodle.webapp/] for user [fadams]>
2013-09-07 11:45:33,212 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit trail record BEGIN
=============================================================
WHO: fadams
WHAT: ST-1-vjLbc7KbWAK5kyYTSJTZ-localhost for https://localhost:8443/moodle.webapp/
ACTION: SERVICE_TICKET_CREATED
APPLICATION: CAS
WHEN: Sat Sep 07 11:45:33 BST 2013
CLIENT IP ADDRESS: 127.0.0.1
SERVER IP ADDRESS: 127.0.0.1
=============================================================
>
Warning: URL Host: localhost vs. localhost
2013-09-07 11:45:33,259 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit trail record BEGIN
=============================================================
WHO: audit:unknown
WHAT: ST-1-vjLbc7KbWAK5kyYTSJTZ-localhost
ACTION: SERVICE_TICKET_VALIDATED
APPLICATION: CAS
WHEN: Sat Sep 07 11:45:33 BST 2013
CLIENT IP ADDRESS: 127.0.0.1
SERVER IP ADDRESS: 127.0.0.1
=============================================================
2013-09-07 11:45:33206信息[com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager]-
2013-09-07 11:45:33209信息[com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager]-
2013-09-07 11:45:33212信息[org.jasig.cas.centralauthenticationserviceinpl]-
2013-09-07 11:45:33212信息[com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager]-
警告:URL主机:localhost vs.localhost
2013-09-07 11:45:33259信息[com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager]-您是否在webapp中设置了所有必要的CAS筛选器,最显著的是票证验证筛选器和请求包装筛选器?如需了解详细信息,请参见此处: