Authenticate user for secure spring service with CAS RESTful API ticket -

-

i have successfuly setup cas server. want authenticate user secure service (in spring application), used restful api tickets user. able tickets 2 step call cas/v1/tickets , cas/v1/tickets/{tgt} secure service, when tried call service using generated ticket

localhost:8080/secure1?ticket?st-ttyyy..." returns response content of cas login page.

i think, missing point in configuration either

"services.xml" of spring application or in cas configuration.

spring app settings.xml

<bean id="pgtstorage"     class="org.jasig.cas.client.proxy.proxygrantingticketstorageimpl"/>      <bean id="serviceproperties" class="org.springframework.security.cas.serviceproperties">         <property name="service" value="http://localhost:8080/eformrestserver/business/user/10000007" />         <property name="sendrenew" value="false" />         <property name="artifactparameter" value="ticket"/>     </bean>  <security:http create-session="stateless" use-expressions="true" entry-point-ref="casentrypoint">                     <security:anonymous enabled="true" />             <security:custom-filter position="cas_filter" ref="casfilter" />         </security:http>           <bean id="casfilter"         class="org.springframework.security.cas.web.casauthenticationfilter">         <property name="authenticationmanager" ref="authenticationmanager" />         <property name="proxygrantingticketstorage" ref="pgtstorage"/>     <property name="proxyreceptorurl" value="/business/test"/>     <property name="serviceproperties" ref="serviceproperties"/>     <property name="authenticationdetailssource">       <bean class=         "org.springframework.security.cas.web.authentication.serviceauthenticationdetailssource"/>     </property>     </bean> <bean id="casentrypoint"         class="org.springframework.security.cas.web.casauthenticationentrypoint">         <property name="loginurl"             value="http://localhost:8080/cas/login" />             <property name="serviceproperties" ref="serviceproperties" />     </bean>  <!-- delegate authorization method calls rather urls -->  <!-- (thus, don't need set url-interceptor in conf) -->  <security:global-method-security pre-post-annotations="enabled" />     <bean id="restauthenticationentrypoint" class="com.eform.rest.service.restauthenticationentrypoint" />     <bean id="myfilter" class="org.springframework.security.web.authentication.usernamepasswordauthenticationfilter">         <property name="authenticationmanager" ref="authenticationmanager" />     </bean>        <bean id="casauthenticationprovider"         class="org.springframework.security.cas.authentication.casauthenticationprovider">         <property name="userdetailsservice" ref="userservice" />         <property name="serviceproperties" ref="serviceproperties" />         <property name="ticketvalidator">       <bean class="org.jasig.cas.client.validation.cas20proxyticketvalidator">         <constructor-arg value="https://localhost:8443/cas"/>         <property name="proxycallbackurl"             value="localhost:8080/eformrestserver/business"/>         <property name="proxygrantingticketstorage" ref="pgtstorage"/>       </bean>     </property>     <property name="statelessticketcache">       <bean class="org.springframework.security.cas.authentication.ehcachebasedticketcache">         <property name="cache">           <bean class="net.sf.ehcache.cache"               init-method="initialise" destroy-method="dispose">             <constructor-arg value="castickets"/>             <constructor-arg value="50"/>             <constructor-arg value="true"/>             <constructor-arg value="false"/>             <constructor-arg value="3600"/>             <constructor-arg value="900"/>           </bean>         </property>       </bean>     </property>         <property name="key" value="an_id_for_this_auth_provider_only" />     </bean>     <bean name="http403forbiddenentrypoint"         class="org.springframework.security.web.authentication.http403forbiddenentrypoint" />     <security:authentication-manager alias="authenticationmanager">         <security:authentication-provider             ref="casauthenticationprovider" />     </security:authentication-manager>     <security:jdbc-user-service id="userservice"         data-source-ref="datasource"         users-by-username-query="select user_name, password, true user user_name = ?"         authorities-by-username-query="select u.user_name, r.role user u,user_role r u.role_id=r.role , user_name = ?" />

please me resolve problem.

thanks

after comparing study demo, think missing following configuration :

<bean id="serviceproperties"       class="org.springframework.security.cas.serviceproperties">   ...   <property name="authenticateallartifacts"       value="true"/> </bean>

see spring security reference documentation 22.3.4 proxy ticket authentication.


Comments

Post a Comment

Popular posts from this blog

css - Which browser returns the correct result for getBoundingClientRect of an SVG element? -

-
this svg contains rect overflows svg element: <svg id='svg' width='10' height='10'> <rect x='-10' y='-10' width='30' height='30'/> </svg> chrome 28 , opera 12 return getboundingclientrect() svg element width , height of 10. firefox 23 reports width , height of 30. correct? jsfiddle the relevant spec cssom , delegates svg spec if svg element not "have associated css layout box". haven't found definition of "having associated css layout box", correct result seem hinge on definition, getbbox returns 30x30 rect in browsers. this firefox bug fixed now, fix in firefox nightlies , should make through firefox 33 released on 14 october 2014. see bug 530985 details.
Read more

gcc - Calling fftR4() in c from assembly -

-
i trying asm fft implementation www.embeddedsignals.com work. running make gives error: undefined reference fftr4(short*, short*, int) at top of asm have .syntax unified .thumb .global fftr4 .type fftr4, %function and there #define's associate c functions arguments registers followed macros fftr4 function uses. after that, fftr4 called .thumb_func fftr4: stmfd sp!, {r4-r11, lr} mov tmp0, #0 // bit reversed counter mov tmp1, #0 .word 0xf3a2fa92 //rbit r3,r2 //rbit r,n lsl r,#3 and c code follows: void fftr4(short *y, short *x, int n); short x[512]; short y[512]; int i; void loop() { (i=0;i<512;i++) x[i]=0; (i=0;i<512;i=i+8) { x[i+0]=16384; x[i+2]=16384; x[i+4]=-16384; x[i+6]=-16384;} fftr4(y, x, 256); serialusb.println(y[128]); serialusb.println(y[129]); serialusb.println(y[384]); serialusb.println(y[385]); // expected results: //y[128]is 8191; y[129] -8190 y[
Read more

Function that returns a formatted array in VBA -

-
i have function prints excel data text file in array format following: [ ['id', 'label', 'longitude', 'latitude', 'country', 'region', 'ttl_wt_flw_thru', 'sum-of-bol-wt', 'count of wdr_ref', 'ratio'], ['aeauh', 'abu dhabi, united arab emirates', 54.3666667, 24.4666667, 'ae', 'eame', 66, 30, 8432, 281.066666666667], ['aedxb', 'dubai, united arab emirates', 55.307485, 25.271139, 'ae', 'eame', 682, 3, 8369, 2789.66666666667] ] my code writing array is: function fillsourcearray() dim long, j long, s string dim lastrow double dim s1 string 'opens file filepath = filepath & "dataarray" & ".txt" open filepath output #1 'read source data dataarray = sheets("nodes").cells(1).currentregion.value 'determine lastrow lastrow = sheets("nodes").range
Read more