本文描述了在使用Tomcat 6.0.14、Spring 2.5 rcacegisecurity 1.0.5和cas-server 3.1进行CAS认证时遇到的授权失败问题。问题表现为虽然认证成功,但在访问目标页面时被重定向到授权失败页面,并提示CertificateException错误。最终发现生成keystore文件时未正确设置CAS服务器域名导致此问题。
Tomcat 6.0.14, Spring 2.5 rc acegisecurity 1.0.5 cas-server 3.1
It seems authentication has succeeded, but when I visit the destination page, I am sent to authorizationFailure.jsp, it says
Authorization Failure
You are not authorized to use this application for the following reason: java.security.cert.CertificateException: No name matching cas.gogoyuan.cn found.
I searched but fail to find the answer.
Anybody help me.
TIA & best regards.
It seems authentication has succeeded, but when I visit the destination page, I am sent to authorizationFailure.jsp, it says
Authorization Failure
You are not authorized to use this application for the following reason: java.security.cert.CertificateException: No name matching cas.gogoyuan.cn found.
I searched but fail to find the answer.
Anybody help me.
TIA & best regards.
-------------------------------------------------------------------
I finally found the answer.
When generate keystore file, the first question should be the domain of the CAS server, for mine, [profile.xxx.cn]
What is your first and last name?
[Unknown]: profile.xxx.cn
That's All.
When generate keystore file, the first question should be the domain of the CAS server, for mine, [profile.xxx.cn]
What is your first and last name?
[Unknown]: profile.xxx.cn
That's All.
扫一扫
3526
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
