Bug 793695 (JBEPP-771)

Summary: CAS integration fails if EPP server is set up with SSL
Product: [JBoss] JBoss Enterprise Portal Platform 5 Reporter: Martin Weiler <mweiler>
Component: PortalAssignee: Thomas Heute <theute>
Status: CLOSED NEXTRELEASE QA Contact:
Severity: high Docs Contact:
Priority: high    
Version: 5.1.0.GACC: epp-bugs, sohil.shah, theute
Target Milestone: ---   
Target Release: 5.1.1.DEV01   
Hardware: Unspecified   
OS: Unspecified   
URL: http://jira.jboss.org/jira/browse/JBEPP-771
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
- EPP 5.1, CAS setup as per Chapter 14.6.2 of the Reference Guide - SSL connector enabled for EPP instance
Last Closed: 2011-04-20 11:29:45 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description Martin Weiler 2011-01-07 09:15:02 UTC 
Affects: Release Notes
Help Desk Ticket Reference: https://na7.salesforce.com/500A0000003zkwT
project_key: JBEPP

Upon trying to login from an EPP 5.1 instance with SSL enabled (https://localhost:8443/portal/), the ticket validation fails with the following error:

Caused by: org.jasig.cas.client.validation.TicketValidationException: 
                ticket 'ST-1-k9kY9cdZBmol5FCNvnBj-cas' does not match supplied service.  The original service was 'https://localhost:8443/portal/private/classic' and the supplied service was 'http://localhost:8443/portal/private/classic'.

        at org.jasig.cas.client.validation.Cas20ServiceTicketValidator.parseResponseFromServer(Cas20ServiceTicketValidator.java:73)
        at org.jasig.cas.client.validation.AbstractUrlBasedTicketValidator.validate(AbstractUrlBasedTicketValidator.java:188)
        at org.gatein.sso.agent.cas.CASAgent.validateTicket(CASAgent.java:84)
        at org.gatein.sso.agent.GenericSSOAgent.processSSOToken(GenericSSOAgent.java:108)
        at org.gatein.sso.agent.GenericSSOAgent.doGet(GenericSSOAgent.java:73)
Comment 2 Sohil Shah 2011-04-01 15:06:51 UTC 
This issue is fixed on the trunk while fixing another issue.
Comment 3 Sohil Shah 2011-04-01 15:10:39 UTC 
accidentally assigned to me
Comment 5 Thomas Heute 2011-04-20 11:28:43 UTC 
Link: Added: This issue relates to JBEPP-898
Comment 6 Thomas Heute 2011-04-20 11:29:45 UTC 
Will be fixed by upgrading SSO component to 1.0.2-epp-GA
Comment 7 Scott Mumford 2011-08-09 03:02:43 UTC 
Release Notes Docs Status: Added: Documented as Resolved Issue
Release Notes Text: Removed: Prior to this fix, CAS ticket validation failed when the EPP instance was set up with SSL. This has been fixed and CAS ticket validation works fine with http and https. Added: Prior to this release, CAS ticket validation failed when the JBoss Enterprise Portal Platform instance was set up with SSL. This has been fixed with an upgrade to the SSO component. CAS ticket validation now works as expected with http and https addresses.