dlindahl / omniauth-cas

A CAS OmniAuth Strategy

MIT License

88 stars 79 forks source link

Service Ticket Validation Regression #16

Closed samrocketman closed 10 years ago

samrocketman commented 11 years ago

I appear to be currently experiencing Issue #3 with checked out tag v1.0.2.

Here's the double encoded callback.

Started GET "/users/auth/cas/callback?url=https%253A%252F%252F127.0.0.1%252Fusers%252Fsign_in&ticket=ST-19936-nMCSetN2d4WypfOD4bn0-cas.server.com"

The service is initially validated with https%3A%2F%2F127.0.0.1%2Fusers%2Fsign_in rather than https%253A%252F%252F127.0.0.1%252Fusers%252Fsign_in.

samrocketman commented 11 years ago

I realized that the nokigiri 1.6 dependency was simply an arbitrary change in commit 577e23861b708ed6640517173b8e139cc3022b0f rather than there being a technical reason for the change. I have since tested omniauth-cas v1.0.4 3bb338703bc334b51d3c79ee636e6df54546cb1e with the same problem.

samrocketman commented 11 years ago

Tested against v1.1.0.beta.1 27dd6d19084748753a061eed56b3884d09234e41

Same problem. Let me know if there's anything I can do to help debug this.

samrocketman commented 10 years ago

Update

This is not a problem with omniauth-cas. It is a combination of a GitLab problem combined with httpd mod_rewrite doing the double encoding.