springcasjasig
Stateless CAS - The supplied proxy callback url j_spring_cas_security_proxyreceptor' could not be authenticated
I need to secure my RESTful stateless webservices with CAS and right now I'm trying to follow this Spring Stateless CAS demo but continuously getting a following error:
22:42:27.885 [http-nio-8443-exec-8] [first-spring-stateless] DEBUG o.s.s.c.web.CasAuthenticationFilter - Authentication request failed: org.springframework.security.authentication.BadCredentialsException:
The supplied proxy callback url 'https://localhost:8443/first-spring-stateless/j_spring_cas_security_proxyreceptor' could not be authenticated.
when accessing https://localhost:8443/first-spring-cas/testProxy.do url
This is for example my appointmentServiceUrl - https://localhost:8443/first-spring-stateless/appointment.jsp?ticket=PT-110-a2a6eOE3lwImcwGpZ2Jp-cas.example.com
What can be a reason of that ?
Solution
Solved by adding
<property name="proxyReceptorUrl" value="/j_spring_cas_security_proxyreceptor"/>
to casFilter
This is casFilter in the applicationContext-security.xml:
<bean id="casFilter"
class="org.springframework.security.cas.web.CasAuthenticationFilter">
<property name="authenticationManager" ref="authenticationManager"/>
<property name="proxyGrantingTicketStorage" ref="pgtStorage"/>
<property name="serviceProperties" ref="serviceProperties"/>
<property name="proxyReceptorUrl" value="/j_spring_cas_security_proxyreceptor"/>
<property name="authenticationDetailsSource">
<bean class="org.springframework.security.cas.web.authentication.ServiceAuthenticationDetailsSource"/>
</property>
</bean>
- Role-based authentication not working with Keycloak and Java Spring
- java.lang.ClassCastException: class org.springframework.web.servlet.DispatcherServlet cannot be cast to class jakarta.servlet.Servlet
- Java Spring API NoClassDefFoundError: javax/persistence/EntityManagerFactory
- UnsatisfiedDependencyException: Error creating bean with name
- Failed to auto-configure a DataSource: 'spring.datasource.url' is not specified
- Spring ApplicationContext - Resource leak: 'context' is never closed
- Why can't I set HeapDumpOnOutOfMemoryError on GraalVM native image?
- Cannot understand why this method is unresolved
- how do I define a bean' in your configuration, given the error message i get?
- How to avoid joining table when querying by a foreign key?
- How to enable Spring Boot Live Dev Tools on IntelliJ 2021.2 to rebuild classes after modifications and deploy changes to server?
- Spring multiple beans: Are there other precedence annotations besides `@Primary`?
- Spring Batch FlatFileItemWriter - How to use stepExecution.jobId to generate file name
- Pass filenames dynamically to FlatFileItemWriter through StepBuilderFactory stream() when using ClassifierCompositeItemProcessor in SpringBatch
- Why does the main Spring Boot application always trigger PMD's HideUtilityClassConstructorCheck?
- Why I can not look for entities between joined tables?
- Test Unit Spring boot: Unable to register mock bean
- Spring Security 6 - how to handle InvalidBearerTokenExeption
- Incorrect Syntax near ',' in SQL query execution in Spring JPA but executes successfully in database
- Spring @Sql Annotations, possible to run once before all tests?
- Springboot mySQL Failed to determine a suitable driver class
- Add JSF Message From Spring Bean
- Spring Boot - no log file written (logging.file is not respected)
- Handling Internal Server Error When OAuth Issuer Is Not Available in WebFluxSecurity
- Return file from Spring @Controller having OutputStream
- With deprecation of the `SecurityContextRepository.loadContext(HttpRequestResponseHolder)` method, how do we add `Set-Cookie` to the response?
- How to correctly read Flux<DataBuffer> and convert it to a single inputStream
- Implementing Custom Expression Handling with Spring Security 6
- Can I set a TTL for @Cacheable
- Row was updated or deleted by another transaction (or unsaved-value mapping was incorrect)