CAS凭据错误

Question

请帮个忙

当我想要使用CAS身份验证时，我遇到了一个问题，错误是无效凭据，这将向我显示什么日志

浏览器

Estado HTTP 401 - Authentication Failed: Bad credential`s

日志归档存储

ServiceValidateController [ERROR] TicketException generating ticket for: [callbackUrl: https://localhost:8443/receptor]

耽误您时间，实在对不起

 DispatcherServlet [DEBUG] Rendering view [org.springframework.web.servlet.view.RedirectView: unnamed; URL [https://geo.org.bo:443/geonetwork/j_spring_cas_security_check?ticket=ST-2-dLgdARnZdtPHWZa9krt9-cas]] in DispatcherServlet with name 'cas'
 DispatcherServlet [DEBUG] Successfully completed request
 DispatcherServlet [DEBUG] DispatcherServlet with name 'cas' determining Last-Modified value for [/cas/serviceValidate]
 SimpleUrlHandlerMapping [DEBUG] Mapping [/serviceValidate] to handler 'org.jasig.cas.web.ServiceValidateController@26a75b82'
 DispatcherServlet [DEBUG] Last-Modified value for [/cas/serviceValidate] is: -1
 DispatcherServlet [DEBUG] DispatcherServlet with name 'cas' processing request for [/cas/serviceValidate]
 CasArgumentExtractor [DEBUG] Extractor generated service for:           https://geo.org.bo:443/j_spring_cas_security_check
 HttpBasedServiceCredentialsAuthenticationHandler [DEBUG] Attempting to resolve credentials for [callbackUrl: https://localhost:8443/receptor]
 HttpClient [DEBUG] Response Code did not match any of the acceptable response codes.  Code returned was 404
 AuthenticationManagerImpl [INFO] AuthenticationHandler: org.jasig.cas.authentication.handler.support.HttpBasedServiceCredentialsAuthenticationHandler failed to authenticate the user which provided the following credentials: [callbackUrl:      https://localhost:8443/receptor]
 ServiceValidateController [ERROR] TicketException generating ticket for: [callbackUrl: https://localhost:8443/receptor]
 org.jasig.cas.ticket.TicketCreationException: error.authentication.credentials.bad
at      org.jasig.cas.CentralAuthenticationServiceImpl.delegateTicketGrantingTicket(CentralAuthenticationServiceImpl.java:291)

Answer 1

此错误表示CAS服务器正在尝试(直接)连接到客户端应用程序，以提供代理授予票证(PGT)。正在尝试的是https://localhost:8443/receptor的url，应用程序返回404-Not Found。

如果您的客户端应用程序不需要代表用户登录到其他CAS服务，那么您就不需要代理。与标准CAS 1.0、CAS 2.0和SAML 1.1协议相比，排除PGTs故障更加困难。

如果要使用代理票证，则可以选中https://wiki.jasig.org/display/CASC/Using+the+CAS+Client+3.1+with+Spring+Security

如果您不需要代理票证，那么您可以查看http://static.springsource.org/spring-security/site/docs/3.0.x/reference/cas.html