We're using CAS 3.4.2.1 on JBoss5 clustered with JBossCache3. Every time a ticket expires we get the following error in our log (I have filtered out all the apache, spring, etc entries) and left just CAS and our customization entries (none of which exist for this error).
Our confusion is that this does not seem like an error but normal operation. In addition, the stack dump is quite long and this occurs pretty frequently.
Since we are not experiencing any functionality issues, we are not terribly concerned, but would like to both ensure there is not something wrong that is not obvious and reduce the size of our logs.
2012-08-15 11:42:49,489 ERROR [org.jasig.cas.integration.restlet.TicketGrantingTicketResource] (ajp-10.208.55.108-8009-4)
org.jasig.cas.ticket.InvalidTicketException
at org.jasig.cas.CentralAuthenticationServiceImpl.grantServiceTicket_aroundBody2(CentralAuthenticationServiceImpl.java:181)
at org.jasig.cas.CentralAuthenticationServiceImpl.grantServiceTicket_aroundBody3$advice(CentralAuthenticationServiceImpl.java:44)
at org.jasig.cas.CentralAuthenticationServiceImpl.grantServiceTicket(CentralAuthenticationServiceImpl.java:1)
at org.jasig.cas.CentralAuthenticationServiceImpl.grantServiceTicket_aroundBody4(CentralAuthenticationServiceImpl.java:244)
at org.jasig.cas.CentralAuthenticationServiceImpl.grantServiceTicket_aroundBody5$advice(CentralAuthenticationServiceImpl.java:44)
at org.jasig.cas.CentralAuthenticationServiceImpl.grantServiceTicket(CentralAuthenticationServiceImpl.java:1)
at org.jasig.cas.integration.restlet.TicketGrantingTicketResource.acceptRepresentation(TicketGrantingTicketResource.java:78)
--
You are currently subscribed to cas-...@lists.jasig.org as: scott.b...@gmail.com
To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
--
You are currently subscribed to cas-...@lists.jasig.org as: jasig-cas-user...@googlegroups.com
To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
Great. Thank you. Issue link below. It does not seem as if I can assign to you though.
https://issues.jasig.org/browse/CAS-1169
To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
BTW app is using Spring.
From: Nemanja Guzina <nemanj...@yahoo.com>
To: "cas-...@lists.jasig.org" <cas-...@lists.jasig.org>
Sent: Sunday, August 26, 2012 10:15 PM
Subject: CAS web services question
Hi Scot,I have one question about SSO and CAS.I'm implementing CAS into a wide used app-s, and I have one request,is it possible for example :One application (APP1) is authenticated via CAS, and it tries to access second app (APP2) via web service and authentication must be handled automatically via CAS because they are both connected to same CAS server?Thanks in advance.Nemanja Guzina translations.com
--
You are currently subscribed to cas-...@lists.jasig.org as: scott.b...@gmail.com
To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
--
BTW app is using Spring.
From: Nemanja Guzina <nemanj...@yahoo.com>
To: "cas-...@lists.jasig.org" <cas-...@lists.jasig.org>
Sent: Sunday, August 26, 2012 10:15 PM
Subject: CAS web services question
Hi Scot,I have one question about SSO and CAS.I'm implementing CAS into a wide used app-s, and I have one request,is it possible for example :One application (APP1) is authenticated via CAS, and it tries to access second app (APP2) via web service and authentication must be handled automatically via CAS because they are both connected to same CAS server?Thanks in advance.Nemanja Guzina translations.com
--
You are currently subscribed to cas-...@lists.jasig.org as: scott.b...@gmail.com
To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
--
You are currently subscribed to cas-...@lists.jasig.org as: nemanj...@yahoo.com
To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
Yes, but my case is a bit different,User is already authenticated into APP1 and that APP1 addresses APP2 via WebService. In that point, I don't have username or password.
-- Philippe MARASSE Service Informatique - Centre Hospitalier Henri Laborit BP 587 - 370 avenue Jacques Coeur 86021 Poitiers Cedex Tel : 05.49.44.57.19
Thanks for response, but I don't know if I'm following you.Does that mean that I'll have to change authentication mechanism in APP1(switch to proxy authentication) in order to access to APP2?
I need to access APP2 via WebService and via browser without authenticating user again.
Thanks,Nemanja Guzina, www.translations.com
From: Philippe MARASSE <philippe...@ch-poitiers.fr>
To: cas-...@lists.jasig.org
Sent: Monday, August 27, 2012 4:22 PM
Subject: Re: [cas-user] CAS web services question
Le 27/08/2012 15:11, Nemanja Guzina a écrit :
If App1 needs credentials of User to access App2 (as far as WebService is CAS-aware), then I think proxy (on App1) is the behavior you're looking for.Yes, but my case is a bit different,User is already authenticated into APP1 and that APP1 addresses APP2 via WebService. In that point, I don't have username or password.
Rgds.
-- Philippe MARASSE Service Informatique - Centre Hospitalier Henri Laborit BP 587 - 370 avenue Jacques Coeur 86021 Poitiers Cedex Tel : 05.49.44.57.19
-- You are currently subscribed to cas-...@lists.jasig.org as: philippe...@ch-poitiers.fr
To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
--
You are currently subscribed to cas-...@lists.jasig.org as: jasig-cas-user...@googlegroups.com