yale cas 单点登录https 重定向后失败

wad12302 发布于 2013/02/18 19:02
阅读 729
收藏 0
2013-02-18 18:55:47 [DEBUG] Cas20ServiceTicketValidator:202 - Constructing validation url: http://xxxx.xxxx.net/serviceValidate?ticket=111111
2013-02-18 18:55:47 [DEBUG] Cas20ServiceTicketValidator:206 - Retrieving response from server.
2013-02-18 18:55:47 [DEBUG] Cas20ServiceTicketValidator:214 - Server response: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html>
<head><title>301 Moved Permanently</title></head>
<body bgcolor="white">
<h1>301 Moved Permanently</h1>
<p>The requested resource has been assigned a new permanent URI.</p>
<hr/>Powered by Tengine/1.4.2
</body>

</html>


我使用:

server
{
listen       80;
server_name xxx.xxxxx.net;
# index index.html index.htm index.php;
# root  /home/wwwroot;


location /
{
rewrite (.*) https://xxx.xxxxx.net$1 permanent;
}


access_log  /home/wwwlogs/access.log  access;
}

报以上异常,怎么解决下, 我的登录系统是一个单独的系统,全部强制使用https访问

加载中
0
半醒
半醒

301 Moved Permanently

看你第二行的URL没有https?

0
wad12302
wad12302

cas 单点登录时候,如果是http访问那么就通过nginx 强制https。

我这里不是通过客户端访问,而是访问cas server的 manage.html

即cas server本身访问的时候。

Cas20ServiceTicketValidator 这个类通过commutils访问https 报异常

0
wad12302
wad12302

如果使用:

 https://xxx.xxxxx.net/services/j_acegi_cas_security_check

CommonUtils:340 - sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

返回顶部
顶部