CAS凭证不好

时间:2013-08-28 13:40:13

标签: spring-security cas

请帮助

我在使用CAS身份验证时遇到问题,错误是凭据无效,这显示了我的日志

浏览器

Estado HTTP 401 - Authentication Failed: Bad credential`s

记录CAS 

ServiceValidateController [ERROR] TicketException generating ticket for: [callbackUrl: https://localhost:8443/receptor]

感谢您的时间

 DispatcherServlet [DEBUG] Rendering view [org.springframework.web.servlet.view.RedirectView: unnamed; URL [https://geo.org.bo:443/geonetwork/j_spring_cas_security_check?ticket=ST-2-dLgdARnZdtPHWZa9krt9-cas]] in DispatcherServlet with name 'cas'
 DispatcherServlet [DEBUG] Successfully completed request
 DispatcherServlet [DEBUG] DispatcherServlet with name 'cas' determining Last-Modified value for [/cas/serviceValidate]
 SimpleUrlHandlerMapping [DEBUG] Mapping [/serviceValidate] to handler 'org.jasig.cas.web.ServiceValidateController@26a75b82'
 DispatcherServlet [DEBUG] Last-Modified value for [/cas/serviceValidate] is: -1
 DispatcherServlet [DEBUG] DispatcherServlet with name 'cas' processing request for [/cas/serviceValidate]
 CasArgumentExtractor [DEBUG] Extractor generated service for:           https://geo.org.bo:443/j_spring_cas_security_check
 HttpBasedServiceCredentialsAuthenticationHandler [DEBUG] Attempting to resolve credentials for [callbackUrl: https://localhost:8443/receptor]
 HttpClient [DEBUG] Response Code did not match any of the acceptable response codes.  Code returned was 404
 AuthenticationManagerImpl [INFO] AuthenticationHandler: org.jasig.cas.authentication.handler.support.HttpBasedServiceCredentialsAuthenticationHandler failed to authenticate the user which provided the following credentials: [callbackUrl:      https://localhost:8443/receptor]
 ServiceValidateController [ERROR] TicketException generating ticket for: [callbackUrl: https://localhost:8443/receptor]
 org.jasig.cas.ticket.TicketCreationException: error.authentication.credentials.bad
at      org.jasig.cas.CentralAuthenticationServiceImpl.delegateTicketGrantingTicket(CentralAuthenticationServiceImpl.java:291)

1 个答案:

答案 0 :(得分:6)

此错误表示CAS服务器正在尝试(直接)连接到客户端应用程序以提供代理授予票证(PGT)。 https://localhost:8443/receptor的网址正在尝试中,该应用正在返回404-Not Found。

如果您的客户端应用程序不需要代表用户登录其他CAS服务,那么您不需要代理。 PGT故障排除比标准CAS 1.0,CAS 2.0和SAML 1.1协议更难。

如果您想使用代理机票,则可以查看https://wiki.jasig.org/display/CASC/Using+the+CAS+Client+3.1+with+Spring+Security

如果您不需要代理机票,则可以选中http://static.springsource.org/spring-security/site/docs/3.0.x/reference/cas.html

相关问题
最新问题