Closed marwen-cherif closed 7 years ago
jfritschi
commented
7 years ago Have you tried our simple examples? Please give them a spin. With a single config file you can test many possible use cases including proxy mode in many variants.
https://github.com/apereo/phpCAS/blob/master/docs/examples/example_proxy_GET.php
Any reason you are using gateway mode: phpCAS::checkAuthentication() and not the regular phpCAS::forceAuthentication() ? This seems odd to me.
marwen-cherif
commented
7 years ago Thank you for your response i'll give a try for a simple example and tell you what hapened.
Otherwise, we are using gateway because that my app will be included in a frame in another portal so i'm sure that the user will be already authenticated on the CAS. I need to use the gateway in purpose to use the CAS ticket granting cookie to authenticate him in our app.
marwen-cherif
commented
7 years ago Ah when i tried the examples it worked cleanly. Must be a problem with my firewal configuration that intercept the callback. Thank you !
marwen-cherif
commented
7 years ago I think the problem is with the session wich is being (re)started each time (got differents session id in log). Even when i tried to ommit changeSessionID :
\phpCAS::proxy(CAS_VERSION_3_0, "bt1svuxk.bpa.bouyguestelecom.fr", 443, "/cas");
@jfritschi : If you view the log, do you affirm that ?
505A .START (2017-07-31 17:29:00) phpCAS-1.3.5 ****************** [CAS.php:468]
505A .=> phpCAS::proxy('3.0', 'bt1svuxk.bpa.bouyguestelecom.fr', 443, '/cas') [SecurityController.php:39]
505A .| => CAS_Client::__construct('3.0', true, 'bt1svuxk.bpa.bouyguestelecom.fr', 443, '/cas', true) [CAS.php:404]
505A .| | Starting a new session 5h8ciloghcelkj68rfntd60ho0 [Client.php:932]
505A .| | Session is not authenticated [Client.php:938]
505A .| <= ''
505A .<= ''
505A .=> phpCAS::setFixedCallbackURL('http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login') [SecurityController.php:45]
505A .<= ''
505A .=> phpCAS::setPGTStorageFile('/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions') [SecurityController.php:47]
505A .| => CAS_PGTStorage_File::__construct(CAS_Client, '/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions') [Client.php:2583]
505A .| | => CAS_PGTStorage_AbstractStorage::__construct(CAS_Client) [File.php:119]
505A .| | <= ''
505A .| <= ''
505A .<= ''
505A .=> phpCAS::setNoCasServerValidation() [SecurityController.php:52]
505A .| You have configured no validation of the legitimacy of the cas server. This is not recommended for production use. [CAS.php:1644]
505A .<= ''
505A .=> phpCAS::forceAuthentication() [SecurityController.php:59]
505A .| => CAS_Client::forceAuthentication() [CAS.php:1098]
505A .| | => CAS_Client::isAuthenticated() [Client.php:1280]
505A .| | | => CAS_Client::_wasPreviouslyAuthenticated() [Client.php:1393]
505A .| | | | neither user nor PGT found [Client.php:1612]
505A .| | | <= false
505A .| | | no ticket found [Client.php:1494]
505A .| | <= false
505A .| | => CAS_Client::redirectToCas(false) [Client.php:1289]
505A .| | | => CAS_Client::getServerLoginURL(false, false) [Client.php:1656]
505A .| | | | => CAS_Client::getURL() [Client.php:342]
505A .| | | | | Final URI: http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login [Client.php:3548]
505A .| | | | <= 'http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login'
505A .| | | <= 'https://bt1svuxk.bpa.bouyguestelecom.fr/cas/login?service=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin'
505A .| | | Redirect to : https://bt1svuxk.bpa.bouyguestelecom.fr/cas/login?service=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin [Client.php:1663]
505A .| | | exit()
505A .| | | -
505A .| | -
505A .| -
AA7A .START (2017-07-31 17:29:00) phpCAS-1.3.5 ****************** [CAS.php:468]
AA7A .=> phpCAS::proxy('3.0', 'bt1svuxk.bpa.bouyguestelecom.fr', 443, '/cas') [SecurityController.php:39]
AA7A .| => CAS_Client::__construct('3.0', true, 'bt1svuxk.bpa.bouyguestelecom.fr', 443, '/cas', true) [CAS.php:404]
AA7A .| | Starting a new session kemf16v7ggb3i0lfp2jvkrhbv6 [Client.php:932]
AA7A .| | Session is not authenticated [Client.php:938]
AA7A .| | Ticket 'ST-322-aF1bb4hVVd4wxfqFmsST-cas01_ap4.bytel.fr' found [Client.php:1020]
AA7A .| <= ''
AA7A .<= ''
AA7A .=> phpCAS::setFixedCallbackURL('http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login') [SecurityController.php:45]
AA7A .<= ''
AA7A .=> phpCAS::setPGTStorageFile('/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions') [SecurityController.php:47]
AA7A .| => CAS_PGTStorage_File::__construct(CAS_Client, '/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions') [Client.php:2583]
AA7A .| | => CAS_PGTStorage_AbstractStorage::__construct(CAS_Client) [File.php:119]
AA7A .| | <= ''
AA7A .| <= ''
AA7A .<= ''
AA7A .=> phpCAS::setNoCasServerValidation() [SecurityController.php:52]
AA7A .| You have configured no validation of the legitimacy of the cas server. This is not recommended for production use. [CAS.php:1644]
AA7A .<= ''
AA7A .=> phpCAS::forceAuthentication() [SecurityController.php:59]
AA7A .| => CAS_Client::forceAuthentication() [CAS.php:1098]
AA7A .| | => CAS_Client::isAuthenticated() [Client.php:1280]
AA7A .| | | => CAS_Client::_wasPreviouslyAuthenticated() [Client.php:1393]
AA7A .| | | | neither user nor PGT found [Client.php:1612]
AA7A .| | | <= false
AA7A .| | | CAS 3.0 ticket `ST-322-aF1bb4hVVd4wxfqFmsST-cas01_ap4.bytel.fr' is present [Client.php:1447]
AA7A .| | | => CAS_Client::validateCAS20('', NULL, NULL, false) [Client.php:1450]
AA7A .| | | | [Client.php:3169]
AA7A .| | | | => CAS_Client::getServerServiceValidateURL() [Client.php:3176]
AA7A .| | | | | => CAS_Client::getURL() [Client.php:453]
AA7A .| | | | | | Final URI: http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login [Client.php:3548]
AA7A .| | | | | <= 'http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login'
AA7A .| | | | <= 'https://bt1svuxk.bpa.bouyguestelecom.fr/cas/p3/serviceValidate?service=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin'
AA7A .| | | | => CAS_Client::_readURL('https://bt1svuxk.bpa.bouyguestelecom.fr/cas/p3/serviceValidate?service=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin&ticket=ST-322-aF1bb4hVVd4wxfqFmsST-cas01_ap4.bytel.fr&pgtUrl=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin', NULL, NULL, NULL) [Client.php:3191]
AA7A .| | | | | => CAS_Request_CurlRequest::sendRequest() [AbstractRequest.php:242]
BA2A .START (2017-07-31 17:29:03) phpCAS-1.3.5 ****************** [CAS.php:468]
BA2A .=> phpCAS::proxy('3.0', 'bt1svuxk.bpa.bouyguestelecom.fr', 443, '/cas') [SecurityController.php:39]
BA2A .| => CAS_Client::__construct('3.0', true, 'bt1svuxk.bpa.bouyguestelecom.fr', 443, '/cas', true) [CAS.php:404]
BA2A .| | Starting a new session skteq29cd7vdnhv1tn96me13r2 [Client.php:932]
BA2A .| | Session is not authenticated [Client.php:938]
BA2A .| <= ''
BA2A .<= ''
BA2A .=> phpCAS::setFixedCallbackURL('http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login') [SecurityController.php:45]
BA2A .<= ''
BA2A .=> phpCAS::setPGTStorageFile('/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions') [SecurityController.php:47]
BA2A .| => CAS_PGTStorage_File::__construct(CAS_Client, '/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions') [Client.php:2583]
BA2A .| | => CAS_PGTStorage_AbstractStorage::__construct(CAS_Client) [File.php:119]
BA2A .| | <= ''
BA2A .| <= ''
BA2A .<= ''
BA2A .=> phpCAS::setNoCasServerValidation() [SecurityController.php:52]
BA2A .| You have configured no validation of the legitimacy of the cas server. This is not recommended for production use. [CAS.php:1644]
BA2A .<= ''
BA2A .=> phpCAS::forceAuthentication() [SecurityController.php:59]
BA2A .| => CAS_Client::forceAuthentication() [CAS.php:1098]
BA2A .| | => CAS_Client::isAuthenticated() [Client.php:1280]
BA2A .| | | => CAS_Client::_wasPreviouslyAuthenticated() [Client.php:1393]
BA2A .| | | | neither user nor PGT found [Client.php:1612]
BA2A .| | | <= false
BA2A .| | | no ticket found [Client.php:1494]
BA2A .| | <= false
BA2A .| | => CAS_Client::redirectToCas(false) [Client.php:1289]
BA2A .| | | => CAS_Client::getServerLoginURL(false, false) [Client.php:1656]
BA2A .| | | | => CAS_Client::getURL() [Client.php:342]
BA2A .| | | | | Final URI: http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login [Client.php:3548]
BA2A .| | | | <= 'http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login'
BA2A .| | | <= 'https://bt1svuxk.bpa.bouyguestelecom.fr/cas/login?service=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin'
BA2A .| | | Redirect to : https://bt1svuxk.bpa.bouyguestelecom.fr/cas/login?service=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin [Client.php:1663]
BA2A .| | | exit()
BA2A .| | | -
BA2A .| | -
BA2A .| -
543B .START (2017-07-31 17:29:04) phpCAS-1.3.5 ****************** [CAS.php:468]
543B .=> phpCAS::proxy('3.0', 'bt1svuxk.bpa.bouyguestelecom.fr', 443, '/cas') [SecurityController.php:39]
543B .| => CAS_Client::__construct('3.0', true, 'bt1svuxk.bpa.bouyguestelecom.fr', 443, '/cas', true) [CAS.php:404]
543B .| | Starting a new session 4akllq4l36brvhl3n03toj44v7 [Client.php:932]
543B .| | Session is not authenticated [Client.php:938]
543B .| <= ''
543B .<= ''
543B .=> phpCAS::setFixedCallbackURL('http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login') [SecurityController.php:45]
543B .<= ''
543B .=> phpCAS::setPGTStorageFile('/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions') [SecurityController.php:47]
543B .| => CAS_PGTStorage_File::__construct(CAS_Client, '/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions') [Client.php:2583]
543B .| | => CAS_PGTStorage_AbstractStorage::__construct(CAS_Client) [File.php:119]
543B .| | <= ''
543B .| <= ''
543B .<= ''
543B .=> phpCAS::setNoCasServerValidation() [SecurityController.php:52]
543B .| You have configured no validation of the legitimacy of the cas server. This is not recommended for production use. [CAS.php:1644]
543B .<= ''
543B .=> phpCAS::forceAuthentication() [SecurityController.php:59]
543B .| => CAS_Client::forceAuthentication() [CAS.php:1098]
543B .| | => CAS_Client::isAuthenticated() [Client.php:1280]
543B .| | | => CAS_Client::_wasPreviouslyAuthenticated() [Client.php:1393]
543B .| | | | => CAS_Client::_callback() [Client.php:1558]
543B .| | | | | Storing PGT `PGT-230-PRFYDzAbTIpw5aeLfRy0XThlN6fY1LMxIIfzyaef1VTzVicVwI-cas01_ap4.bytel.fr' (id=`PGTIOU-209-Cb5WBgul0jqKoeY69prsxqpxm9tHfxzksibw5wUKsIROcLqE5e-cas01_ap4.bytel.fr') [Client.php:2408]
543B .| | | | | => CAS_PGTStorage_File::init() [Client.php:2463]
543B .| | | | | <= ''
543B .| | | | | => CAS_PGTStorage_File::write('PGT-230-PRFYDzAbTIpw5aeLfRy0XThlN6fY1LMxIIfzyaef1VTzVicVwI-cas01_ap4.bytel.fr', 'PGTIOU-209-Cb5WBgul0jqKoeY69prsxqpxm9tHfxzksibw5wUKsIROcLqE5e-cas01_ap4.bytel.fr') [Client.php:2479]
543B .| | | | | | => CAS_PGTStorage_File::getPGTIouFilename('PGTIOU-209-Cb5WBgul0jqKoeY69prsxqpxm9tHfxzksibw5wUKsIROcLqE5e-cas01_ap4.bytel.fr') [File.php:204]
543B .| | | | | | | Sha256 filename:/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions/phpcas-ba3d427921ad10df0b9d0acaf4e3ceaf12362302941017b76ce139f67a278b82 [File.php:185]
543B .| | | | | | <= ''
543B .| | | | | | Successful write of PGT to `/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions/phpcas-ba3d427921ad10df0b9d0acaf4e3ceaf12362302941017b76ce139f67a278b82' [File.php:213]
543B .| | | | | <= ''
543B .| | | | | exit()
543B .| | | | | -
543B .| | | | -
543B .| | | -
543B .| | -
543B .| -
AA7A .| | | | | | Response Body:
AA7A .| | | | | |
AA7A .| | | | | |
AA7A .| | | | | |
AA7A .| | | | | |
AA7A .| | | | | | <cas:serviceResponse xmlns:cas='http://www.yale.edu/tp/cas'>
AA7A .| | | | | | <cas:authenticationSuccess>
AA7A .| | | | | | <cas:user>95</cas:user>
AA7A .| | | | | |
AA7A .| | | | | | <cas:proxyGrantingTicket>PGTIOU-209-Cb5WBgul0jqKoeY69prsxqpxm9tHfxzksibw5wUKsIROcLqE5e-cas01_ap4.bytel.fr</cas:proxyGrantingTicket>
AA7A .| | | | | |
AA7A .| | | | | |
AA7A .| | | | | |
AA7A .| | | | | |
AA7A .| | | | | | <cas:attributes>
AA7A .| | | | | |
AA7A .| | | | | |
AA7A .| | | | | |
AA7A .| | | | | | <cas:uid>95</cas:uid>
AA7A .| | | | | |
AA7A .| | | | | |
AA7A .| | | | | |
AA7A .| | | | | |
AA7A .| | | | | | <cas:longTermAuthenticationRequestTokenUsed>false</cas:longTermAuthenticationRequestTokenUsed>
AA7A .| | | | | |
AA7A .| | | | | |
AA7A .| | | | | |
AA7A .| | | | | |
AA7A .| | | | | | <cas:isFromNewLogin>false</cas:isFromNewLogin>
AA7A .| | | | | |
AA7A .| | | | | |
AA7A .| | | | | |
AA7A .| | | | | |
AA7A .| | | | | | <cas:authenticationDate>2017-07-31T17:14:57.981+02:00</cas:authenticationDate>
AA7A .| | | | | |
AA7A .| | | | | |
AA7A .| | | | | | </cas:attributes>
AA7A .| | | | | |
AA7A .| | | | | |
AA7A .| | | | | | </cas:authenticationSuccess>
AA7A .| | | | | | </cas:serviceResponse>
AA7A .| | | | | |
AA7A .| | | | | | [CurlRequest.php:84]
AA7A .| | | | | <= true
AA7A .| | | | <= true
AA7A .| | | | => CAS_Client::_readExtraAttributesCas20(DOMNodeList) [Client.php:3261]
AA7A .| | | | | Found nested jasig style attributes [Client.php:3345]
AA7A .| | | | | Attribute [uid] = 95 [Client.php:3352]
AA7A .| | | | | Attribute [longTermAuthenticationRequestTokenUsed] = false [Client.php:3352]
AA7A .| | | | | Attribute [isFromNewLogin] = false [Client.php:3352]
AA7A .| | | | | Attribute [authenticationDate] = 2017-07-31T17:14:57.981+02:00 [Client.php:3352]
AA7A .| | | | <= ''
AA7A .| | | | Storing Proxy List [Client.php:3270]
AA7A .| | | | => CAS_ProxyChain_AllowedList::isProxyListAllowed(array ()) [Client.php:3273]
AA7A .| | | | | No proxies were found in the response [AllowedList.php:81]
AA7A .| | | | <= true
AA7A .| | | | => CAS_Client::_renameSession('ST-322-aF1bb4hVVd4wxfqFmsST-cas01_ap4.bytel.fr') [Client.php:3293]
AA7A .| | | | | Killing session: kemf16v7ggb3i0lfp2jvkrhbv6 [Client.php:3682]
AA7A .| | | | | Starting session: ST-322-aF1bb4hVVd4wxfqFmsST-cas01ap4bytelfr [Client.php:3686]
AA7A .| | | | | Restoring old session vars [Client.php:3689]
AA7A .| | | | <= ''
AA7A .| | | <= true
AA7A .| | | CAS 3.0 ticket `ST-322-aF1bb4hVVd4wxfqFmsST-cas01_ap4.bytel.fr' was validated [Client.php:1453]
AA7A .| | | => CAS_Client::_validatePGT('https://bt1svuxk.bpa.bouyguestelecom.fr/cas/p3/serviceValidate?service=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin&ticket=ST-322-aF1bb4hVVd4wxfqFmsST-cas01_ap4.bytel.fr&pgtUrl=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin', '<cas:serviceResponse xmlns:cas=\'http://www.yale.edu/tp/cas\'> <cas:authenticationSuccess> <cas:user>95</cas:user> <cas:proxyGrantingTicket>PGTIOU-209-Cb5WBgul0jqKoeY69prsxqpxm9tHfxzksibw5wUKsIROcLqE5e-cas01_ap4.bytel.fr</cas:proxyGrantingTicket> <cas:attributes> <cas:uid>95</cas:uid> <cas:longTermAuthenticationRequestTokenUsed>false</cas:longTermAuthenticationRequestTokenUsed> <cas:isFromNewLogin>false</cas:isFromNewLogin> <cas:authenticationDate>2017-07-31T17:14:57.981+02:00</cas:authenticationDate> </cas:attributes> </cas:authenticationSuccess></cas:serviceResponse>', DOMElement) [Client.php:1457]
AA7A .| | | | => CAS_PGTStorage_File::init() [Client.php:2463]
AA7A .| | | | <= ''
AA7A .| | | | => CAS_PGTStorage_File::read('PGTIOU-209-Cb5WBgul0jqKoeY69prsxqpxm9tHfxzksibw5wUKsIROcLqE5e-cas01_ap4.bytel.fr') [Client.php:2495]
AA7A .| | | | | => CAS_PGTStorage_File::getPGTIouFilename('PGTIOU-209-Cb5WBgul0jqKoeY69prsxqpxm9tHfxzksibw5wUKsIROcLqE5e-cas01_ap4.bytel.fr') [File.php:238]
AA7A .| | | | | | Sha256 filename:/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions/phpcas-ba3d427921ad10df0b9d0acaf4e3ceaf12362302941017b76ce139f67a278b82 [File.php:185]
AA7A .| | | | | <= ''
AA7A .| | | | | Successful read of PGT to `/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions/phpcas-ba3d427921ad10df0b9d0acaf4e3ceaf12362302941017b76ce139f67a278b82' [File.php:246]
AA7A .| | | | <= 'PGT-230-PRFYDzAbTIpw5aeLfRy0XThlN6fY1LMxIIfzyaef1VTzVicVwI-cas01_ap4.bytel.fr'
AA7A .| | | <= true
AA7A .| | | PGT `PGT-230-PRFYDzAbTIpw5aeLfRy0XThlN6fY1LMxIIfzyaef1VTzVicVwI-cas01_ap4.bytel.fr' was validated [Client.php:1458]
AA7A .| | | => CAS_Client::getURL() [Client.php:1518]
AA7A .| | | <= 'http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login'
AA7A .| | | Prepare redirect to : http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login [Client.php:1518]
AA7A .| | | => CAS_Client::getURL() [Client.php:1520]
AA7A .| | | <= 'http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login'
AA7A .| | | exit()
AA7A .| | | -
AA7A .| | -
AA7A .| -
47F1 .START (2017-07-31 17:29:04) phpCAS-1.3.5 ****************** [CAS.php:468]
47F1 .=> phpCAS::proxy('3.0', 'bt1svuxk.bpa.bouyguestelecom.fr', 443, '/cas') [SecurityController.php:39]
47F1 .| => CAS_Client::__construct('3.0', true, 'bt1svuxk.bpa.bouyguestelecom.fr', 443, '/cas', true) [CAS.php:404]
47F1 .| | Starting a new session bol798cdd6949143ohrcagcu83 [Client.php:932]
47F1 .| | Session is not authenticated [Client.php:938]
47F1 .| <= ''
47F1 .<= ''
47F1 .=> phpCAS::setFixedCallbackURL('http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login') [SecurityController.php:45]
47F1 .<= ''
47F1 .=> phpCAS::setPGTStorageFile('/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions') [SecurityController.php:47]
47F1 .| => CAS_PGTStorage_File::__construct(CAS_Client, '/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions') [Client.php:2583]
47F1 .| | => CAS_PGTStorage_AbstractStorage::__construct(CAS_Client) [File.php:119]
47F1 .| | <= ''
47F1 .| <= ''
47F1 .<= ''
47F1 .=> phpCAS::setNoCasServerValidation() [SecurityController.php:52]
47F1 .| You have configured no validation of the legitimacy of the cas server. This is not recommended for production use. [CAS.php:1644]
47F1 .<= ''
47F1 .=> phpCAS::forceAuthentication() [SecurityController.php:59]
47F1 .| => CAS_Client::forceAuthentication() [CAS.php:1098]
47F1 .| | => CAS_Client::isAuthenticated() [Client.php:1280]
47F1 .| | | => CAS_Client::_wasPreviouslyAuthenticated() [Client.php:1393]
47F1 .| | | | neither user nor PGT found [Client.php:1612]
47F1 .| | | <= false
47F1 .| | | no ticket found [Client.php:1494]
47F1 .| | <= false
47F1 .| | => CAS_Client::redirectToCas(false) [Client.php:1289]
47F1 .| | | => CAS_Client::getServerLoginURL(false, false) [Client.php:1656]
47F1 .| | | | => CAS_Client::getURL() [Client.php:342]
47F1 .| | | | | Final URI: http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login [Client.php:3548]
47F1 .| | | | <= 'http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login'
47F1 .| | | <= 'https://bt1svuxk.bpa.bouyguestelecom.fr/cas/login?service=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin'
47F1 .| | | Redirect to : https://bt1svuxk.bpa.bouyguestelecom.fr/cas/login?service=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin [Client.php:1663]
47F1 .| | | exit()
47F1 .| | | -
47F1 .| | -
47F1 .| -
FA40 .START (2017-07-31 17:29:04) phpCAS-1.3.5 ****************** [CAS.php:468]
FA40 .=> phpCAS::proxy('3.0', 'bt1svuxk.bpa.bouyguestelecom.fr', 443, '/cas') [SecurityController.php:39]
FA40 .| => CAS_Client::__construct('3.0', true, 'bt1svuxk.bpa.bouyguestelecom.fr', 443, '/cas', true) [CAS.php:404]
FA40 .| | Starting a new session m237dnbcj3phl3g1v5cvfvi576 [Client.php:932]
FA40 .| | Session is not authenticated [Client.php:938]
FA40 .| | Ticket 'ST-247-de9v3P9R6CQyOWoRa9v9-cas01_ap4.bytel.fr' found [Client.php:1020]
FA40 .| <= ''
FA40 .<= ''
FA40 .=> phpCAS::setFixedCallbackURL('http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login') [SecurityController.php:45]
FA40 .<= ''
FA40 .=> phpCAS::setPGTStorageFile('/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions') [SecurityController.php:47]
FA40 .| => CAS_PGTStorage_File::__construct(CAS_Client, '/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions') [Client.php:2583]
FA40 .| | => CAS_PGTStorage_AbstractStorage::__construct(CAS_Client) [File.php:119]
FA40 .| | <= ''
FA40 .| <= ''
FA40 .<= ''
FA40 .=> phpCAS::setNoCasServerValidation() [SecurityController.php:52]
FA40 .| You have configured no validation of the legitimacy of the cas server. This is not recommended for production use. [CAS.php:1644]
FA40 .<= ''
FA40 .=> phpCAS::forceAuthentication() [SecurityController.php:59]
FA40 .| => CAS_Client::forceAuthentication() [CAS.php:1098]
FA40 .| | => CAS_Client::isAuthenticated() [Client.php:1280]
FA40 .| | | => CAS_Client::_wasPreviouslyAuthenticated() [Client.php:1393]
FA40 .| | | | neither user nor PGT found [Client.php:1612]
FA40 .| | | <= false
FA40 .| | | CAS 3.0 ticket `ST-247-de9v3P9R6CQyOWoRa9v9-cas01_ap4.bytel.fr' is present [Client.php:1447]
FA40 .| | | => CAS_Client::validateCAS20('', NULL, NULL, false) [Client.php:1450]
FA40 .| | | | [Client.php:3169]
FA40 .| | | | => CAS_Client::getServerServiceValidateURL() [Client.php:3176]
FA40 .| | | | | => CAS_Client::getURL() [Client.php:453]
FA40 .| | | | | | Final URI: http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login [Client.php:3548]
FA40 .| | | | | <= 'http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login'
FA40 .| | | | <= 'https://bt1svuxk.bpa.bouyguestelecom.fr/cas/p3/serviceValidate?service=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin'
FA40 .| | | | => CAS_Client::_readURL('https://bt1svuxk.bpa.bouyguestelecom.fr/cas/p3/serviceValidate?service=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin&ticket=ST-247-de9v3P9R6CQyOWoRa9v9-cas01_ap4.bytel.fr&pgtUrl=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin', NULL, NULL, NULL) [Client.php:3191]
FA40 .| | | | | => CAS_Request_CurlRequest::sendRequest() [AbstractRequest.php:242]
91C6 .START (2017-07-31 17:29:08) phpCAS-1.3.5 ****************** [CAS.php:468]
91C6 .=> phpCAS::proxy('3.0', 'bt1svuxk.bpa.bouyguestelecom.fr', 443, '/cas') [SecurityController.php:39]
91C6 .| => CAS_Client::__construct('3.0', true, 'bt1svuxk.bpa.bouyguestelecom.fr', 443, '/cas', true) [CAS.php:404]
91C6 .| | Starting a new session 6stg5bbaj5cjbmlf6lisqvo017 [Client.php:932]
91C6 .| | Session is not authenticated [Client.php:938]
91C6 .| <= ''
91C6 .<= ''
91C6 .=> phpCAS::setFixedCallbackURL('http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login') [SecurityController.php:45]
91C6 .<= ''
91C6 .=> phpCAS::setPGTStorageFile('/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions') [SecurityController.php:47]
91C6 .| => CAS_PGTStorage_File::__construct(CAS_Client, '/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions') [Client.php:2583]
91C6 .| | => CAS_PGTStorage_AbstractStorage::__construct(CAS_Client) [File.php:119]
91C6 .| | <= ''
91C6 .| <= ''
91C6 .<= ''
91C6 .=> phpCAS::setNoCasServerValidation() [SecurityController.php:52]
91C6 .| You have configured no validation of the legitimacy of the cas server. This is not recommended for production use. [CAS.php:1644]
91C6 .<= ''
91C6 .=> phpCAS::forceAuthentication() [SecurityController.php:59]
91C6 .| => CAS_Client::forceAuthentication() [CAS.php:1098]
91C6 .| | => CAS_Client::isAuthenticated() [Client.php:1280]
91C6 .| | | => CAS_Client::_wasPreviouslyAuthenticated() [Client.php:1393]
91C6 .| | | | neither user nor PGT found [Client.php:1612]
91C6 .| | | <= false
91C6 .| | | no ticket found [Client.php:1494]
91C6 .| | <= false
91C6 .| | => CAS_Client::redirectToCas(false) [Client.php:1289]
91C6 .| | | => CAS_Client::getServerLoginURL(false, false) [Client.php:1656]
91C6 .| | | | => CAS_Client::getURL() [Client.php:342]
91C6 .| | | | | Final URI: http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login [Client.php:3548]
91C6 .| | | | <= 'http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login'
91C6 .| | | <= 'https://bt1svuxk.bpa.bouyguestelecom.fr/cas/login?service=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin'
91C6 .| | | Redirect to : https://bt1svuxk.bpa.bouyguestelecom.fr/cas/login?service=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin [Client.php:1663]
91C6 .| | | exit()
91C6 .| | | -
91C6 .| | -
91C6 .| -
3BFF .START (2017-07-31 17:29:08) phpCAS-1.3.5 ****************** [CAS.php:468]
3BFF .=> phpCAS::proxy('3.0', 'bt1svuxk.bpa.bouyguestelecom.fr', 443, '/cas') [SecurityController.php:39]
3BFF .| => CAS_Client::__construct('3.0', true, 'bt1svuxk.bpa.bouyguestelecom.fr', 443, '/cas', true) [CAS.php:404]
3BFF .| | Starting a new session 0kkvk47l73jriq9899gsvk0eh7 [Client.php:932]
3BFF .| | Session is not authenticated [Client.php:938]
3BFF .| <= ''
3BFF .<= ''
3BFF .=> phpCAS::setFixedCallbackURL('http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login') [SecurityController.php:45]
3BFF .<= ''
3BFF .=> phpCAS::setPGTStorageFile('/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions') [SecurityController.php:47]
3BFF .| => CAS_PGTStorage_File::__construct(CAS_Client, '/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions') [Client.php:2583]
3BFF .| | => CAS_PGTStorage_AbstractStorage::__construct(CAS_Client) [File.php:119]
3BFF .| | <= ''
3BFF .| <= ''
3BFF .<= ''
3BFF .=> phpCAS::setNoCasServerValidation() [SecurityController.php:52]
3BFF .| You have configured no validation of the legitimacy of the cas server. This is not recommended for production use. [CAS.php:1644]
3BFF .<= ''
3BFF .=> phpCAS::forceAuthentication() [SecurityController.php:59]
3BFF .| => CAS_Client::forceAuthentication() [CAS.php:1098]
3BFF .| | => CAS_Client::isAuthenticated() [Client.php:1280]
3BFF .| | | => CAS_Client::_wasPreviouslyAuthenticated() [Client.php:1393]
3BFF .| | | | => CAS_Client::_callback() [Client.php:1558]
3BFF .| | | | | Storing PGT `PGT-180-cCbRPBiljKQ21gTMNL92TrDHfGC0OjXDohkGsGW2va7DKXoaoc-cas01_ap4.bytel.fr' (id=`PGTIOU-167-EOc2q47nbkfJUbKbTdRYfhjyGiIREHEHVz3EUDPG0QyCc7z313-cas01_ap4.bytel.fr') [Client.php:2408]
3BFF .| | | | | => CAS_PGTStorage_File::init() [Client.php:2463]
3BFF .| | | | | <= ''
3BFF .| | | | | => CAS_PGTStorage_File::write('PGT-180-cCbRPBiljKQ21gTMNL92TrDHfGC0OjXDohkGsGW2va7DKXoaoc-cas01_ap4.bytel.fr', 'PGTIOU-167-EOc2q47nbkfJUbKbTdRYfhjyGiIREHEHVz3EUDPG0QyCc7z313-cas01_ap4.bytel.fr') [Client.php:2479]
3BFF .| | | | | | => CAS_PGTStorage_File::getPGTIouFilename('PGTIOU-167-EOc2q47nbkfJUbKbTdRYfhjyGiIREHEHVz3EUDPG0QyCc7z313-cas01_ap4.bytel.fr') [File.php:204]
3BFF .| | | | | | | Sha256 filename:/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions/phpcas-a64f2571cd3df274976dc07dc2a61c2e593bb232c59549a390cc8e7d7a7ff49f [File.php:185]
3BFF .| | | | | | <= ''
3BFF .| | | | | | Successful write of PGT to `/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions/phpcas-a64f2571cd3df274976dc07dc2a61c2e593bb232c59549a390cc8e7d7a7ff49f' [File.php:213]
3BFF .| | | | | <= ''
3BFF .| | | | | exit()
3BFF .| | | | | -
3BFF .| | | | -
3BFF .| | | -
3BFF .| | -
3BFF .| -
FA40 .| | | | | | Response Body:
FA40 .| | | | | |
FA40 .| | | | | |
FA40 .| | | | | |
FA40 .| | | | | |
FA40 .| | | | | | <cas:serviceResponse xmlns:cas='http://www.yale.edu/tp/cas'>
FA40 .| | | | | | <cas:authenticationSuccess>
FA40 .| | | | | | <cas:user>95</cas:user>
FA40 .| | | | | |
FA40 .| | | | | | <cas:proxyGrantingTicket>PGTIOU-167-EOc2q47nbkfJUbKbTdRYfhjyGiIREHEHVz3EUDPG0QyCc7z313-cas01_ap4.bytel.fr</cas:proxyGrantingTicket>
FA40 .| | | | | |
FA40 .| | | | | |
FA40 .| | | | | |
FA40 .| | | | | |
FA40 .| | | | | | <cas:attributes>
FA40 .| | | | | |
FA40 .| | | | | |
FA40 .| | | | | |
FA40 .| | | | | | <cas:uid>95</cas:uid>
FA40 .| | | | | |
FA40 .| | | | | |
FA40 .| | | | | |
FA40 .| | | | | |
FA40 .| | | | | | <cas:longTermAuthenticationRequestTokenUsed>false</cas:longTermAuthenticationRequestTokenUsed>
FA40 .| | | | | |
FA40 .| | | | | |
FA40 .| | | | | |
FA40 .| | | | | |
FA40 .| | | | | | <cas:isFromNewLogin>false</cas:isFromNewLogin>
FA40 .| | | | | |
FA40 .| | | | | |
FA40 .| | | | | |
FA40 .| | | | | |
FA40 .| | | | | | <cas:authenticationDate>2017-07-31T17:14:57.981+02:00</cas:authenticationDate>
FA40 .| | | | | |
FA40 .| | | | | |
FA40 .| | | | | | </cas:attributes>
FA40 .| | | | | |
FA40 .| | | | | |
FA40 .| | | | | | </cas:authenticationSuccess>
FA40 .| | | | | | </cas:serviceResponse>
FA40 .| | | | | |
FA40 .| | | | | | [CurlRequest.php:84]
FA40 .| | | | | <= true
FA40 .| | | | <= true
FA40 .| | | | => CAS_Client::_readExtraAttributesCas20(DOMNodeList) [Client.php:3261]
FA40 .| | | | | Found nested jasig style attributes [Client.php:3345]
FA40 .| | | | | Attribute [uid] = 95 [Client.php:3352]
FA40 .| | | | | Attribute [longTermAuthenticationRequestTokenUsed] = false [Client.php:3352]
FA40 .| | | | | Attribute [isFromNewLogin] = false [Client.php:3352]
FA40 .| | | | | Attribute [authenticationDate] = 2017-07-31T17:14:57.981+02:00 [Client.php:3352]
FA40 .| | | | <= ''
FA40 .| | | | Storing Proxy List [Client.php:3270]
FA40 .| | | | => CAS_ProxyChain_AllowedList::isProxyListAllowed(array ()) [Client.php:3273]
FA40 .| | | | | No proxies were found in the response [AllowedList.php:81]
FA40 .| | | | <= true
FA40 .| | | | => CAS_Client::_renameSession('ST-247-de9v3P9R6CQyOWoRa9v9-cas01_ap4.bytel.fr') [Client.php:3293]
FA40 .| | | | | Killing session: m237dnbcj3phl3g1v5cvfvi576 [Client.php:3682]
FA40 .| | | | | Starting session: ST-247-de9v3P9R6CQyOWoRa9v9-cas01ap4bytelfr [Client.php:3686]
FA40 .| | | | | Restoring old session vars [Client.php:3689]
FA40 .| | | | <= ''
FA40 .| | | <= true
FA40 .| | | CAS 3.0 ticket `ST-247-de9v3P9R6CQyOWoRa9v9-cas01_ap4.bytel.fr' was validated [Client.php:1453]
FA40 .| | | => CAS_Client::_validatePGT('https://bt1svuxk.bpa.bouyguestelecom.fr/cas/p3/serviceValidate?service=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin&ticket=ST-247-de9v3P9R6CQyOWoRa9v9-cas01_ap4.bytel.fr&pgtUrl=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin', '<cas:serviceResponse xmlns:cas=\'http://www.yale.edu/tp/cas\'> <cas:authenticationSuccess> <cas:user>95</cas:user> <cas:proxyGrantingTicket>PGTIOU-167-EOc2q47nbkfJUbKbTdRYfhjyGiIREHEHVz3EUDPG0QyCc7z313-cas01_ap4.bytel.fr</cas:proxyGrantingTicket> <cas:attributes> <cas:uid>95</cas:uid> <cas:longTermAuthenticationRequestTokenUsed>false</cas:longTermAuthenticationRequestTokenUsed> <cas:isFromNewLogin>false</cas:isFromNewLogin> <cas:authenticationDate>2017-07-31T17:14:57.981+02:00</cas:authenticationDate> </cas:attributes> </cas:authenticationSuccess></cas:serviceResponse>', DOMElement) [Client.php:1457]
FA40 .| | | | => CAS_PGTStorage_File::init() [Client.php:2463]
FA40 .| | | | <= ''
FA40 .| | | | => CAS_PGTStorage_File::read('PGTIOU-167-EOc2q47nbkfJUbKbTdRYfhjyGiIREHEHVz3EUDPG0QyCc7z313-cas01_ap4.bytel.fr') [Client.php:2495]
FA40 .| | | | | => CAS_PGTStorage_File::getPGTIouFilename('PGTIOU-167-EOc2q47nbkfJUbKbTdRYfhjyGiIREHEHVz3EUDPG0QyCc7z313-cas01_ap4.bytel.fr') [File.php:238]
FA40 .| | | | | | Sha256 filename:/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions/phpcas-a64f2571cd3df274976dc07dc2a61c2e593bb232c59549a390cc8e7d7a7ff49f [File.php:185]
FA40 .| | | | | <= ''
FA40 .| | | | | Successful read of PGT to `/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions/phpcas-a64f2571cd3df274976dc07dc2a61c2e593bb232c59549a390cc8e7d7a7ff49f' [File.php:246]
FA40 .| | | | <= 'PGT-180-cCbRPBiljKQ21gTMNL92TrDHfGC0OjXDohkGsGW2va7DKXoaoc-cas01_ap4.bytel.fr'
FA40 .| | | <= true
FA40 .| | | PGT `PGT-180-cCbRPBiljKQ21gTMNL92TrDHfGC0OjXDohkGsGW2va7DKXoaoc-cas01_ap4.bytel.fr' was validated [Client.php:1458]
FA40 .| | | => CAS_Client::getURL() [Client.php:1518]
FA40 .| | | <= 'http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login'
FA40 .| | | Prepare redirect to : http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login [Client.php:1518]
FA40 .| | | => CAS_Client::getURL() [Client.php:1520]
FA40 .| | | <= 'http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login'
FA40 .| | | exit()
FA40 .| | | -
FA40 .| | -
FA40 .| -
E8D0 .START (2017-07-31 17:29:09) phpCAS-1.3.5 ****************** [CAS.php:468]
E8D0 .=> phpCAS::proxy('3.0', 'bt1svuxk.bpa.bouyguestelecom.fr', 443, '/cas') [SecurityController.php:39]
E8D0 .| => CAS_Client::__construct('3.0', true, 'bt1svuxk.bpa.bouyguestelecom.fr', 443, '/cas', true) [CAS.php:404]
E8D0 .| | Starting a new session fqr01cbatfqeobdo35md7t46i6 [Client.php:932]
E8D0 .| | Session is not authenticated [Client.php:938]
E8D0 .| <= ''
E8D0 .<= ''
E8D0 .=> phpCAS::setFixedCallbackURL('http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login') [SecurityController.php:45]
E8D0 .<= ''
E8D0 .=> phpCAS::setPGTStorageFile('/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions') [SecurityController.php:47]
E8D0 .| => CAS_PGTStorage_File::__construct(CAS_Client, '/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions') [Client.php:2583]
E8D0 .| | => CAS_PGTStorage_AbstractStorage::__construct(CAS_Client) [File.php:119]
E8D0 .| | <= ''
E8D0 .| <= ''
E8D0 .<= ''
E8D0 .=> phpCAS::setNoCasServerValidation() [SecurityController.php:52]
E8D0 .| You have configured no validation of the legitimacy of the cas server. This is not recommended for production use. [CAS.php:1644]
E8D0 .<= ''
E8D0 .=> phpCAS::forceAuthentication() [SecurityController.php:59]
E8D0 .| => CAS_Client::forceAuthentication() [CAS.php:1098]
E8D0 .| | => CAS_Client::isAuthenticated() [Client.php:1280]
E8D0 .| | | => CAS_Client::_wasPreviouslyAuthenticated() [Client.php:1393]
E8D0 .| | | | neither user nor PGT found [Client.php:1612]
E8D0 .| | | <= false
E8D0 .| | | no ticket found [Client.php:1494]
E8D0 .| | <= false
E8D0 .| | => CAS_Client::redirectToCas(false) [Client.php:1289]
E8D0 .| | | => CAS_Client::getServerLoginURL(false, false) [Client.php:1656]
E8D0 .| | | | => CAS_Client::getURL() [Client.php:342]
E8D0 .| | | | | Final URI: http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login [Client.php:3548]
E8D0 .| | | | <= 'http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login'
E8D0 .| | | <= 'https://bt1svuxk.bpa.bouyguestelecom.fr/cas/login?service=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin'
E8D0 .| | | Redirect to : https://bt1svuxk.bpa.bouyguestelecom.fr/cas/login?service=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin [Client.php:1663]
E8D0 .| | | exit()
E8D0 .| | | -
E8D0 .| | -
E8D0 .| -
9A38 .START (2017-07-31 17:29:09) phpCAS-1.3.5 ****************** [CAS.php:468]
9A38 .=> phpCAS::proxy('3.0', 'bt1svuxk.bpa.bouyguestelecom.fr', 443, '/cas') [SecurityController.php:39]
9A38 .| => CAS_Client::__construct('3.0', true, 'bt1svuxk.bpa.bouyguestelecom.fr', 443, '/cas', true) [CAS.php:404]
9A38 .| | Starting a new session evf0oupfnl8itnp83gmqmhiro0 [Client.php:932]
9A38 .| | Session is not authenticated [Client.php:938]
9A38 .| | Ticket 'ST-323-lMAPUZBbD7YjXPnLs9Xt-cas01_ap4.bytel.fr' found [Client.php:1020]
9A38 .| <= ''
9A38 .<= ''
9A38 .=> phpCAS::setFixedCallbackURL('http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login') [SecurityController.php:45]
9A38 .<= ''
9A38 .=> phpCAS::setPGTStorageFile('/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions') [SecurityController.php:47]
9A38 .| => CAS_PGTStorage_File::__construct(CAS_Client, '/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions') [Client.php:2583]
9A38 .| | => CAS_PGTStorage_AbstractStorage::__construct(CAS_Client) [File.php:119]
9A38 .| | <= ''
9A38 .| <= ''
9A38 .<= ''
9A38 .=> phpCAS::setNoCasServerValidation() [SecurityController.php:52]
9A38 .| You have configured no validation of the legitimacy of the cas server. This is not recommended for production use. [CAS.php:1644]
9A38 .<= ''
9A38 .=> phpCAS::forceAuthentication() [SecurityController.php:59]
9A38 .| => CAS_Client::forceAuthentication() [CAS.php:1098]
9A38 .| | => CAS_Client::isAuthenticated() [Client.php:1280]
9A38 .| | | => CAS_Client::_wasPreviouslyAuthenticated() [Client.php:1393]
9A38 .| | | | neither user nor PGT found [Client.php:1612]
9A38 .| | | <= false
9A38 .| | | CAS 3.0 ticket `ST-323-lMAPUZBbD7YjXPnLs9Xt-cas01_ap4.bytel.fr' is present [Client.php:1447]
9A38 .| | | => CAS_Client::validateCAS20('', NULL, NULL, false) [Client.php:1450]
9A38 .| | | | [Client.php:3169]
9A38 .| | | | => CAS_Client::getServerServiceValidateURL() [Client.php:3176]
9A38 .| | | | | => CAS_Client::getURL() [Client.php:453]
9A38 .| | | | | | Final URI: http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login [Client.php:3548]
9A38 .| | | | | <= 'http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login'
9A38 .| | | | <= 'https://bt1svuxk.bpa.bouyguestelecom.fr/cas/p3/serviceValidate?service=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin'
9A38 .| | | | => CAS_Client::_readURL('https://bt1svuxk.bpa.bouyguestelecom.fr/cas/p3/serviceValidate?service=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin&ticket=ST-323-lMAPUZBbD7YjXPnLs9Xt-cas01_ap4.bytel.fr&pgtUrl=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin', NULL, NULL, NULL) [Client.php:3191]
9A38 .| | | | | => CAS_Request_CurlRequest::sendRequest() [AbstractRequest.php:242]
9A38 .| | | | | | Response Body:
9A38 .| | | | | |
9A38 .| | | | | |
9A38 .| | | | | | <cas:serviceResponse xmlns:cas='http://www.yale.edu/tp/cas'>
9A38 .| | | | | | <cas:authenticationFailure code='INVALID_PROXY_CALLBACK'>
9A38 .| | | | | | The supplied proxy callback url 'http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login' could not be authenticated.
9A38 .| | | | | | </cas:authenticationFailure>
9A38 .| | | | | | </cas:serviceResponse>
9A38 .| | | | | |
9A38 .| | | | | | [CurlRequest.php:84]
9A38 .| | | | | <= true
9A38 .| | | | <= true
9A38 .| | | | => CAS_AuthenticationException::__construct(CAS_Client, 'Ticket not validated', 'https://bt1svuxk.bpa.bouyguestelecom.fr/cas/p3/serviceValidate?service=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin&ticket=ST-323-lMAPUZBbD7YjXPnLs9Xt-cas01_ap4.bytel.fr&pgtUrl=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin', false, false, '<cas:serviceResponse xmlns:cas=\'http://www.yale.edu/tp/cas\'> <cas:authenticationFailure code=\'INVALID_PROXY_CALLBACK\'> The supplied proxy callback url 'http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login' could not be authenticated. </cas:authenticationFailure></cas:serviceResponse>', 'INVALID_PROXY_CALLBACK', 'The supplied proxy callback url \'http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login\' could not be authenticated.') [Client.php:3242]
9A38 .| | | | | => CAS_Client::getURL() [AuthenticationException.php:77]
9A38 .| | | | | <= 'http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login'
9A38 .| | | | | CAS URL: https://bt1svuxk.bpa.bouyguestelecom.fr/cas/p3/serviceValidate?service=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin&ticket=ST-323-lMAPUZBbD7YjXPnLs9Xt-cas01_ap4.bytel.fr&pgtUrl=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin [AuthenticationException.php:80]
9A38 .| | | | | Authentication failure: Ticket not validated [AuthenticationException.php:81]
9A38 .| | | | | Reason: [INVALID_PROXY_CALLBACK] CAS error: The supplied proxy callback url 'http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login' could not be authenticated. [AuthenticationException.php:97]
9A38 .| | | | | CAS response:
9A38 .| | | | |
9A38 .| | | | | <cas:serviceResponse xmlns:cas='http://www.yale.edu/tp/cas'>
9A38 .| | | | | <cas:authenticationFailure code='INVALID_PROXY_CALLBACK'>
9A38 .| | | | | The supplied proxy callback url 'http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login' could not be authenticated.
9A38 .| | | | | </cas:authenticationFailure>
9A38 .| | | | | </cas:serviceResponse>
9A38 .| | | | | [AuthenticationException.php:102]
9A38 .| | | | | exit()
9A38 .| | | | | -
9A38 .| | | | -
9A38 .| | | -
9A38 .| | -
9A38 .| -
DA7A .START (2017-07-31 17:29:15) phpCAS-1.3.5 ****************** [CAS.php:468]
DA7A .=> phpCAS::proxy('3.0', 'bt1svuxk.bpa.bouyguestelecom.fr', 443, '/cas') [SecurityController.php:39]
DA7A .| => CAS_Client::__construct('3.0', true, 'bt1svuxk.bpa.bouyguestelecom.fr', 443, '/cas', true) [CAS.php:404]
DA7A .| | Starting a new session 9i3rrhk4httjapmsblt8apq9k3 [Client.php:932]
DA7A .| | Session is not authenticated [Client.php:938]
DA7A .| <= ''
DA7A .<= ''
DA7A .=> phpCAS::setFixedCallbackURL('http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login') [SecurityController.php:45]
DA7A .<= ''
DA7A .=> phpCAS::setPGTStorageFile('/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions') [SecurityController.php:47]
DA7A .| => CAS_PGTStorage_File::__construct(CAS_Client, '/appli/htdocs/ReflexTicketing-kill-bull/app/cache/int/sessions') [Client.php:2583]
DA7A .| | => CAS_PGTStorage_AbstractStorage::__construct(CAS_Client) [File.php:119]
DA7A .| | <= ''
DA7A .| <= ''
DA7A .<= ''
DA7A .=> phpCAS::setNoCasServerValidation() [SecurityController.php:52]
DA7A .| You have configured no validation of the legitimacy of the cas server. This is not recommended for production use. [CAS.php:1644]
DA7A .<= ''
DA7A .=> phpCAS::forceAuthentication() [SecurityController.php:59]
DA7A .| => CAS_Client::forceAuthentication() [CAS.php:1098]
DA7A .| | => CAS_Client::isAuthenticated() [Client.php:1280]
DA7A .| | | => CAS_Client::_wasPreviouslyAuthenticated() [Client.php:1393]
DA7A .| | | | neither user nor PGT found [Client.php:1612]
DA7A .| | | <= false
DA7A .| | | no ticket found [Client.php:1494]
DA7A .| | <= false
DA7A .| | => CAS_Client::redirectToCas(false) [Client.php:1289]
DA7A .| | | => CAS_Client::getServerLoginURL(false, false) [Client.php:1656]
DA7A .| | | | => CAS_Client::getURL() [Client.php:342]
DA7A .| | | | | Final URI: http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login [Client.php:3548]
DA7A .| | | | <= 'http://bt1svlop.bpa.bouyguestelecom.fr:8001/client/login'
DA7A .| | | <= 'https://bt1svuxk.bpa.bouyguestelecom.fr/cas/login?service=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin'
DA7A .| | | Redirect to : https://bt1svuxk.bpa.bouyguestelecom.fr/cas/login?service=http%3A%2F%2Fbt1svlop.bpa.bouyguestelecom.fr%3A8001%2Fclient%2Flogin [Client.php:1663]
DA7A .| | | exit()
DA7A .| | | -
DA7A .| | -
DA7A .| -
Can't spot anything right now... The session does look a bit odd but i'm not sure what the issue is. It's always hard to debug custom integrations. Your are using manual URLs etc. My tip: Try comparing the logs with the examples and figure out what the differences are.
This is how it should work: https://wiki.jasig.org/download/attachments/729/cas_proxy_protocol.pdf?version=1&modificationDate=1304784845404&api=v2
Have you tried the CAS 2.0 protocol in proxy mode? I personally have never tried the 3.0 version and I'm not sure it was tested in depth in proxy mode.
marwen-cherif
commented
7 years ago @jfritschi : thank you for your response.
I figured that out finally, it was a session problem (one user authenticated the session were destroyed) and the cause of that were that my PHPSESSID cookie was save for the machine name and not the domain name. And also the "session.cookie_secure" in php.ini who once it's on it will create session only for secure connection.
Hi, I'm trying to authenticate on my CAS server with phpCas and i'm encoutring that problem : I'm trying to make a proxy authentification. But it seemed first that i've got an ST then a pgtiou and pgtid and i've got also the uuid. But next the client is trying to get another ST and getting an INVALID_PROXY_CALLBACK. Note:
cas.log :