Hitachi Vantara Pentaho Community Forums
Results 1 to 4 of 4

Thread: Integration Pentaho CE 5.0 + CAS server

  1. #1
    Join Date
    Oct 2010
    Posts
    21

    Default Integration Pentaho CE 5.0 + CAS server

    Hi,

    I'm trying to integrate CAS with Pentaho.


    After configuring login to CAS server call, I put username and password, CAS creates the ticket and redirect http://localhost/pentaho:8080/j_spri...01.example.org, but not login and not error.


    I get this screen and this is what appears in the log:

    Code:
    INFO: Server startup in 27492 ms
    2015-02-16 20:00:12,046 INFO [org.jasig.cas.web.flow.InitialFlowSetupAction] - <Setting path for cookies to: /cas-server-webapp-4.0.0/>
    2015-02-16 20:00:17,891 INFO [org.jasig.cas.authentication.PolicyBasedAuthenticationManager] - <AcceptUsersAuthenticationHandler successfully authenticated admin+password>
    2015-02-16 20:00:17,893 INFO [org.jasig.cas.authentication.PolicyBasedAuthenticationManager] - <Authenticated admin with credentials [admin+password].>
    2015-02-16 20:00:17,897 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit trail record BEGIN
    =============================================================
    WHO: audit:unknown
    WHAT: supplied credentials: [admin+password]
    ACTION: AUTHENTICATION_SUCCESS
    APPLICATION: CAS
    WHEN: Mon Feb 16 20:00:17 CET 2015
    CLIENT IP ADDRESS: 0:0:0:0:0:0:0:1%0
    SERVER IP ADDRESS: 0:0:0:0:0:0:0:1%0
    =============================================================
    
    
    >
    2015-02-16 20:00:17,900 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit trail record BEGIN
    =============================================================
    WHO: audit:unknown
    WHAT: TGT-1-51HRaWK6gFsniZwgfjYXRZeWhZvAj1OdMLRfdxK3bwxeQsz2Ic-cas01.example.org
    ACTION: TICKET_GRANTING_TICKET_CREATED
    APPLICATION: CAS
    WHEN: Mon Feb 16 20:00:17 CET 2015
    CLIENT IP ADDRESS: 0:0:0:0:0:0:0:1%0
    SERVER IP ADDRESS: 0:0:0:0:0:0:0:1%0
    =============================================================
    
    
    >
    2015-02-16 20:00:17,905 INFO [org.jasig.cas.CentralAuthenticationServiceImpl] - <Granted service ticket [ST-1-EPd3o0xQzrFv9JEMdbCf-cas01.example.org] for service [http://localhost:8080/pentaho/j_spring_cas_security_check] for user [admin]>
    2015-02-16 20:00:17,906 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit trail record BEGIN
    =============================================================
    WHO: admin
    WHAT: ST-1-EPd3o0xQzrFv9JEMdbCf-cas01.example.org for http://localhost:8080/pentaho/j_spring_cas_security_check
    ACTION: SERVICE_TICKET_CREATED
    APPLICATION: CAS
    WHEN: Mon Feb 16 20:00:17 CET 2015
    CLIENT IP ADDRESS: 0:0:0:0:0:0:0:1%0
    SERVER IP ADDRESS: 0:0:0:0:0:0:0:1%0
    =============================================================
    
    
    >
    2015-02-16 20:00:17,934 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit trail record BEGIN
    =============================================================
    WHO: audit:unknown
    WHAT: ST-1-EPd3o0xQzrFv9JEMdbCf-cas01.example.org
    ACTION: SERVICE_TICKET_VALIDATED
    APPLICATION: CAS
    WHEN: Mon Feb 16 20:00:17 CET 2015
    CLIENT IP ADDRESS: 127.0.0.1
    SERVER IP ADDRESS: 127.0.0.1
    =============================================================
    
    
    >
    2015-02-16 20:00:21,338 INFO [org.jasig.cas.ticket.registry.support.DefaultTicketRegistryCleaner] - <Beginning ticket cleanup.>
    2015-02-16 20:00:21,339 INFO [org.jasig.cas.ticket.registry.support.DefaultTicketRegistryCleaner] - <0 tickets found to be removed.>
    2015-02-16 20:00:21,339 INFO [org.jasig.cas.ticket.registry.support.DefaultTicketRegistryCleaner] - <Finished ticket cleanup.>
    2015-02-16 20:02:01,616 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] - <Reloading registered services.>
    2015-02-16 20:02:01,616 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] - <Loaded 1 services.>
    2015-02-16 20:04:01,616 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] - <Reloading registered services.>
    2015-02-16 20:04:01,616 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] - <Loaded 1 services.>
    Name:  Captura de pantalla 2015-02-16 a la(s) 20.00.58.jpg
Views: 208
Size:  8.5 KB

    Anybody help me please?

    Thanks and regards.
    Last edited by dgonzalez; 02-16-2015 at 03:18 PM.

  2. #2
    Join Date
    Oct 2010
    Posts
    21

    Default

    Anybody?, and SAML2.0 tutorial with Pentaho 5.0?

    Thanks!!

  3. #3
    Join Date
    Oct 2010
    Posts
    21

    Default

    Hi guys,

    I have changed log level to DEBUG from security beans, and I have new information:

    Code:
    2015-02-22 12:48:15,149 INFO [org.jasig.cas.ticket.registry.support.DefaultTicketRegistryCleaner] - <Beginning ticket cleanup.>2015-02-22 12:48:15,151 INFO [org.jasig.cas.ticket.registry.support.DefaultTicketRegistryCleaner] - <0 tickets found to be removed.>
    2015-02-22 12:48:15,151 INFO [org.jasig.cas.ticket.registry.support.DefaultTicketRegistryCleaner] - <Finished ticket cleanup.>
    2015-02-22 12:48:18,850 INFO [org.jasig.cas.authentication.PolicyBasedAuthenticationManager] - <AcceptUsersAuthenticationHandler successfully authenticated admin+password>
    2015-02-22 12:48:18,852 INFO [org.jasig.cas.authentication.PolicyBasedAuthenticationManager] - <Authenticated admin with credentials [admin+password].>
    2015-02-22 12:48:18,855 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit trail record BEGIN
    =============================================================
    WHO: audit:unknown
    WHAT: supplied credentials: [admin+password]
    ACTION: AUTHENTICATION_SUCCESS
    APPLICATION: CAS
    WHEN: Sun Feb 22 12:48:18 CET 2015
    CLIENT IP ADDRESS: 0:0:0:0:0:0:0:1%0
    SERVER IP ADDRESS: 0:0:0:0:0:0:0:1%0
    =============================================================
    
    
    >
    2015-02-22 12:48:18,858 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit trail record BEGIN
    =============================================================
    WHO: audit:unknown
    WHAT: TGT-1-6knsLbdXxmE3WG3JzL9rAjhY9xKRKddqJw6elabslEl9cXkyL6-cas01.example.org
    ACTION: TICKET_GRANTING_TICKET_CREATED
    APPLICATION: CAS
    WHEN: Sun Feb 22 12:48:18 CET 2015
    CLIENT IP ADDRESS: 0:0:0:0:0:0:0:1%0
    SERVER IP ADDRESS: 0:0:0:0:0:0:0:1%0
    =============================================================
    
    
    >
    2015-02-22 12:48:18,862 INFO [org.jasig.cas.CentralAuthenticationServiceImpl] - <Granted service ticket [ST-1-qxne1NjZ7IEnfRpyXQ15-cas01.example.org] for service [http://localhost:8080/pentaho/j_spring_cas_security_check] for user [admin]>
    2015-02-22 12:48:18,863 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit trail record BEGIN
    =============================================================
    WHO: admin
    WHAT: ST-1-qxne1NjZ7IEnfRpyXQ15-cas01.example.org for http://localhost:8080/pentaho/j_spring_cas_security_check
    ACTION: SERVICE_TICKET_CREATED
    APPLICATION: CAS
    WHEN: Sun Feb 22 12:48:18 CET 2015
    CLIENT IP ADDRESS: 0:0:0:0:0:0:0:1%0
    SERVER IP ADDRESS: 0:0:0:0:0:0:0:1%0
    =============================================================
    
    
    ==> pentaho.log <==
    2015-02-22 12:48:18,872 DEBUG [org.springframework.security.util.FilterChainProxy] Converted URL to lowercase, from: '/j_spring_cas_security_check'; to: '/j_spring_cas_security_check'
    2015-02-22 12:48:18,872 DEBUG [org.springframework.security.util.FilterChainProxy] Candidate is: '/j_spring_cas_security_check'; pattern is /**; matched=true
    2015-02-22 12:48:18,872 DEBUG [org.springframework.security.util.FilterChainProxy] /j_spring_cas_security_check?ticket=ST-1-qxne1NjZ7IEnfRpyXQ15-cas01.example.org at position 1 of 9 in additional filter chain; firing Filter: 'org.springframework.security.wrapper.SecurityContextHolderAwareRequestFilter[ order=1100; ]'
    2015-02-22 12:48:18,872 DEBUG [org.springframework.security.ui.savedrequest.SavedRequest] pathInfo: both null (property equals)
    2015-02-22 12:48:18,872 DEBUG [org.springframework.security.ui.savedrequest.SavedRequest] queryString: arg1=null; arg2=ticket=ST-1-qxne1NjZ7IEnfRpyXQ15-cas01.example.org (property not equals)
    2015-02-22 12:48:18,872 DEBUG [org.springframework.security.wrapper.SavedRequestAwareWrapper] Wrapper not replaced; SavedRequest was: SavedRequest[http://localhost:8080/pentaho/index.jsp]
    2015-02-22 12:48:18,872 DEBUG [org.springframework.security.util.FilterChainProxy] /j_spring_cas_security_check?ticket=ST-1-qxne1NjZ7IEnfRpyXQ15-cas01.example.org at position 2 of 9 in additional filter chain; firing Filter: 'org.springframework.security.context.HttpSessionContextIntegrationFilter[ order=200; ]'
    2015-02-22 12:48:18,872 DEBUG [org.springframework.security.context.HttpSessionContextIntegrationFilter] HttpSession returned null object for SPRING_SECURITY_CONTEXT
    2015-02-22 12:48:18,872 DEBUG [org.springframework.security.context.HttpSessionContextIntegrationFilter] New SecurityContext instance will be associated with SecurityContextHolder
    2015-02-22 12:48:18,872 DEBUG [org.springframework.security.util.FilterChainProxy] /j_spring_cas_security_check?ticket=ST-1-qxne1NjZ7IEnfRpyXQ15-cas01.example.org at position 3 of 9 in additional filter chain; firing Filter: 'org.springframework.security.ui.logout.LogoutFilter[ order=300; ]'
    2015-02-22 12:48:18,872 DEBUG [org.springframework.security.util.FilterChainProxy] /j_spring_cas_security_check?ticket=ST-1-qxne1NjZ7IEnfRpyXQ15-cas01.example.org at position 4 of 9 in additional filter chain; firing Filter: 'org.springframework.security.ui.cas.CasProcessingFilter[ order=600; ]'
    2015-02-22 12:48:18,872 DEBUG [org.springframework.security.ui.cas.CasProcessingFilter] Request is to process authentication
    2015-02-22 12:48:18,873 DEBUG [org.springframework.security.providers.ProviderManager] Authentication attempt using org.springframework.security.providers.cas.CasAuthenticationProvider
    2015-02-22 12:48:18,873 DEBUG [org.jasig.cas.client.validation.Cas20ServiceTicketValidator] Placing URL parameters in map.
    2015-02-22 12:48:18,873 DEBUG [org.jasig.cas.client.validation.Cas20ServiceTicketValidator] Calling template URL attribute map.
    2015-02-22 12:48:18,873 DEBUG [org.jasig.cas.client.validation.Cas20ServiceTicketValidator] Loading custom parameters from configuration.
    2015-02-22 12:48:18,873 DEBUG [org.jasig.cas.client.validation.Cas20ServiceTicketValidator] Constructing validation url: http://localhost:8080/cas-server-webapp-4.0.0/serviceValidate?ticket=ST-1-qxne1NjZ7IEnfRpyXQ15-cas01.example.org&service=http%3A%2F%2Flocalhost%3A8080%2Fpentaho%2Fj_spring_cas_security_check
    2015-02-22 12:48:18,873 DEBUG [org.jasig.cas.client.validation.Cas20ServiceTicketValidator] Retrieving response from server.
    
    
    ==> catalina.out <==
    2015-02-22 12:48:18,885 INFO [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit trail record BEGIN
    =============================================================
    WHO: audit:unknown
    WHAT: ST-1-qxne1NjZ7IEnfRpyXQ15-cas01.example.org
    ACTION: SERVICE_TICKET_VALIDATED
    APPLICATION: CAS
    WHEN: Sun Feb 22 12:48:18 CET 2015
    CLIENT IP ADDRESS: 127.0.0.1
    SERVER IP ADDRESS: 127.0.0.1
    =============================================================
    
    
    >
    
    
    ==> pentaho.log <==
    2015-02-22 12:48:18,919 DEBUG [org.jasig.cas.client.validation.Cas20ServiceTicketValidator] Server response: 
    
    
    ==> pentaho.log <==
    2015-02-22 12:48:18,919 DEBUG [org.jasig.cas.client.validation.Cas20ServiceTicketValidator] Server response: 
    
    
    
    
    
    
    <cas:serviceResponse xmlns:cas='http://www.yale.edu/tp/cas'>
    	<cas:authenticationSuccess>
    		<cas:user>admin</cas:user>
            
            
    	</cas:authenticationSuccess>
    </cas:serviceResponse>
    
    
    2015-02-22 12:48:18,928 DEBUG [org.apache.jackrabbit.core.security.authentication.AbstractLoginModule] Initialize LoginModule: 
    2015-02-22 12:48:18,928 DEBUG [org.apache.jackrabbit.core.security.authentication.AbstractLoginModule] - PrincipalProvider -> 'org.pentaho.platform.repository2.unified.jcr.jackrabbit.security.SpringSecurityPrincipalProvider'
    2015-02-22 12:48:18,928 DEBUG [org.apache.jackrabbit.core.security.authentication.AbstractLoginModule] - Option: anonymousId -> 'anonymous'
    2015-02-22 12:48:18,928 DEBUG [org.apache.jackrabbit.core.security.authentication.AbstractLoginModule] - Option: adminId -> 'pentahoRepoAdmin'
    2015-02-22 12:48:18,928 DEBUG [org.apache.jackrabbit.core.security.authentication.AbstractLoginModule] - Option: preAuthenticationTokens -> 'ZchBOvP8q9FQ'
    2015-02-22 12:48:18,928 DEBUG [org.apache.jackrabbit.core.security.authentication.AbstractLoginModule] - Option: principalProvider -> 'org.pentaho.platform.repository2.unified.jcr.jackrabbit.security.SpringSecurityPrincipalProvider'
    2015-02-22 12:48:18,929 DEBUG [org.apache.jackrabbit.core.security.authentication.AbstractLoginModule] - Option: trust_credentials_attribute -> 'pre_authentication_token'
    2015-02-22 12:48:18,929 WARN  [org.apache.jackrabbit.core.security.authentication.AbstractLoginModule] Usage of deprecated 'trust_credentials_attribute' option. Please note that for security reasons this feature will notbe supported in future releases.
    2015-02-22 12:48:18,930 DEBUG [org.apache.jackrabbit.core.state.MLRUItemStateCache] Item state cache size: 1% of 4194304 bytes
    2015-02-22 12:48:18,930 DEBUG [org.apache.jackrabbit.core.RepositoryImpl] User pentahoRepoAdmin logged in to workspace default
    2015-02-22 12:48:18,931 DEBUG [org.apache.jackrabbit.core.security.user.MembershipCache] Membership cache initialized. Max Size = 5000
    2015-02-22 12:48:18,931 DEBUG [org.apache.jackrabbit.core.state.MLRUItemStateCache] Item state cache size: 0% of 4194304 bytes
    2015-02-22 12:48:18,931 DEBUG [org.apache.jackrabbit.core.ItemManager] caching item 9756b5a2-a51f-3528-a26d-6e06a10c365f
    2015-02-22 12:48:18,932 DEBUG [org.apache.jackrabbit.core.session.SessionState] Performing item.getPath()
    2015-02-22 12:48:18,933 DEBUG [org.apache.jackrabbit.core.session.SessionState] Performed item.getPath() in 984000us
    2015-02-22 12:48:18,933 DEBUG [org.apache.jackrabbit.core.session.SessionState] Performing item.getPath()
    2015-02-22 12:48:18,933 DEBUG [org.apache.jackrabbit.core.session.SessionState] Performed item.getPath() in 52000us
    2015-02-22 12:48:18,933 DEBUG [org.apache.jackrabbit.core.session.SessionState] Performing node.getName()
    2015-02-22 12:48:18,933 DEBUG [org.apache.jackrabbit.core.session.SessionState] Performed node.getName() in 11000us
    2015-02-22 12:48:18,933 DEBUG [org.springframework.security.context.HttpSessionContextIntegrationFilter] SecurityContextHolder now cleared, as request processing completed
    
    
    ==> catalina.out <==
    2015-02-22 12:49:55,419 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] - <Reloading registered services.>
    2015-02-22 12:49:55,420 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] - <Loaded 1 services.>
    Anybody help please?
    Regards!!

  4. #4
    Join Date
    Aug 2015
    Posts
    7

    Default

    Has anyone found a solution?

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
Privacy Policy | Legal Notices | Safe Harbor Privacy Policy

Copyright © 2005 - 2019 Hitachi Vantara Corporation. All Rights Reserved.