User logged on CAS but not on Joomla

[lulandco]

Hi,

I've installed LemonLdap as a CAS idp. It's works with GRR and test code i've written with the phpcas library. I try to make the CAS plugin work (2.0.3) with my Joomla site (2.5.7) but I don't manage. Users are redirect to the LemonLdap login, can log on the server (sessions are ok), but when they are redirected to the Joomla site, they aren't logged. No user is created in Joomla's user base and there is no error in apache's log file. Don't know where it comes. My parameters in plugin seem ok in the component.

Can someone help me ?

[yulda03]

The user only logged in if they're Administrator and Manager, for other user group got error "You do not have access to the administrator section of this site." Can anybody help this issue?

[chdemko]

Please try version 2.1.0

[avara]

I have tried on Joomla 2.5.0 with both extension version 2.0.5 (after try it on Joomla version 1.7.3) and 2.1.0 but I have the same problem as it is described in this issue title. I can login into my Jasig Cas Server 3.5.1, through ldaps with my active directory, but when return to joomla do not appear to be logged. Users exists on both Active Directory and Joomla database.

I have also tried to insert a user-server link directly into externallogin-users table of my joomla database (because through the tab users of this componet that assignment fails) to try if it could be because joomla or the external login module do not recognize that user, but I receive the same result.

I could see in my cas server that both the authenticathion and the creation of the ticket_granting_ticket and a service_ticket go correctly, but I think is very suspicious that do not be validated that service ticket after an attempt of login into joomla. Fortunately now with your last version (2.1.0) I could see a log tab where I have seen an info message that inform me of an Attempt to login using ticket "ST-4-....." on server 1 but then appears also a wanring message telling me "Unsuccessful verification of server 1". Is that message telling me that it could not validate my service ticket? and most important thing, is it correct that in the redirection url to joomla appears as parameter "server=1"? Because on Moodle and Liferay I do not see that kind of parameters, including the ticket parameter that also appears with this extension("ticket=ST-4....").

I could not understand why it fails but I have the same problem as one joomla user desribed some time ago on this Joomla! Forum post: http://forum.joomla.org/viewtopic.php?f=620&t=740400. Could you, chdemko, help me, please?

Many thanks in advance.

[avara]

I have finally detected my problem. I have added the next lines after "$result = curl_exec($curl);" into caslogin.php, which is located into the system plugin directory, to see the real error: if(!curl_errno($curl)){ $info = curl_getinfo($curl); echo 'Took ' . $info['total_time'] . ' seconds to send a request to ' . $info['url'];

The error says that curl can not verify the certificate location and that is why I was receiving the warning message of "Unsuccessful verification of server 1". I suppose all this come because I use a self-signed certificate.

I hope this post can help others.

[chdemko]

You can precise your certificate in the administrator site (in the "Connection" slider)

[yulda03]

Joomla 2.5.9 and external login 2.1.0 are the great combination. Is this plugin also work for Joomla 3.0?

[chdemko]

Yes, the admin part must be updated