https://connect.hyland.com/t5/alfresco-archive/webscript-from-httpclient-in-cas-third-party-application/m-p/276108#M229238 <HTML><HEAD></HEAD><BODY><SPAN>Hi all,</SPAN><BR /><SPAN>I implement CAS SSO across both Alfresco (3.3E) and a third party sample application.(a simple servelt)</SPAN><BR /><SPAN>I need call a webscript (for example …alfresco/wcservice/office/getUsers) through HttpClient get.</SPAN><BR /><SPAN>The problem is:CAS server return CAS login page</SPAN><BR /><SPAN>( i retrieve the page from method.getResponseBodyAsString())</SPAN><BR /><SPAN>It should be noted that if i try to call the same webscript from browser (after SSO CAS login) i retrieve the correct result and the authentication is correctly managed.</SPAN><BR /><BR /><SPAN>For example:</SPAN><BR /><BR /><SPAN>-from browser i call a simple servlet (A) filtered by CAS.</SPAN><BR /><SPAN>-CAS login prompt appear</SPAN><BR /><SPAN>-Log in with admin/admin</SPAN><BR /><SPAN>-CAS authentication ok</SPAN><BR /><SPAN>-Call simple servlet (A) with request param (?goto=callAlf) .The servlet run the HttpClient above:</SPAN><BR /><BR /><SPAN>HttpClient client = new HttpClient();</SPAN><BR /><SPAN>String ticketProxed = assertion1</SPAN><BR /><SPAN>.getPrincipal()</SPAN><BR /><SPAN>.getProxyTicketFor(</SPAN><BR /><SPAN>"</SPAN><A href="https://localhost:8443/alfresco/wcservice/office/getUsers" rel="nofollow noopener noreferrer">https://localhost:8443/alfresco/wcservice/office/getUsers</A><SPAN>");</SPAN><BR /><BR /><SPAN>GetMethod method = new GetMethod(</SPAN><BR /><SPAN>"</SPAN><A href="https://localhost:8443/alfresco/wcservice/office/getUsers" rel="nofollow noopener noreferrer">https://localhost:8443/alfresco/wcservice/office/getUsers</A><SPAN>");</SPAN><BR /><SPAN>method.getParams().setParameter("ticket", ticket);</SPAN><BR /><BR /><SPAN>// method.setDoAuthentication(true);</SPAN><BR /><SPAN>int statusCode = client.executeMethod(method);</SPAN><BR /><SPAN>if (statusCode != HttpStatus.SC_OK) {</SPAN><BR /><SPAN>System.err.println("Method failed: " + method.getStatusLine());</SPAN><BR /><SPAN>}</SPAN><BR /><SPAN>String res = method.getResponseBodyAsString();</SPAN><BR /><SPAN>System.out.println("ESITO:" + res);</SPAN><BR /><SPAN>JSONArray jsonOut = new JSONArray(res);</SPAN><BR /><SPAN>System.out.println(jsonOut);</SPAN><BR /><SPAN>return jsonOut.toString();</SPAN><BR /><BR /><SPAN>-I retrive Login CAS page in res.</SPAN><BR /><BR /><BR /><SPAN>I attach the Alfresco web.xml configuration file for CAS filter</SPAN><BR /><BR /><SPAN>Thanks for support!!!</SPAN><BR /><BR /><SPAN>Matteo</SPAN><BR /><BR /><BR /><SPAN>&lt;filter&gt;</SPAN><BR /><SPAN>&lt;filter-name&gt;CAS Authentication Filter&lt;/filter-name&gt;</SPAN><BR /><SPAN>&lt;filter-class&gt;org.jasig.cas.client.authentication.AuthenticationFilter&lt;/filter-class&gt;</SPAN><BR /><SPAN>&lt;init-param&gt;</SPAN><BR /><SPAN>&lt;param-name&gt;casServerLoginUrl&lt;/param-name&gt;</SPAN><BR /><SPAN>&lt;param-value&gt;</SPAN><A href="https://localhost:9443/cas-server-webapp-3.4.2/login" rel="nofollow noopener noreferrer">https://localhost:9443/cas-server-webapp-3.4.2/login</A><SPAN>&lt;/param-value&gt;</SPAN><BR /><SPAN>&lt;/init-param&gt;</SPAN><BR /><SPAN>&lt;init-param&gt;</SPAN><BR /><SPAN>&lt;param-name&gt;serverName&lt;/param-name&gt;</SPAN><BR /><SPAN>&lt;param-value&gt;</SPAN><A href="https://localhost:8443" rel="nofollow noopener noreferrer">https://localhost:8443</A><SPAN>&lt;/param-value&gt;</SPAN><BR /><SPAN>&lt;/init-param&gt;</SPAN><BR /><SPAN>&lt;init-param&gt;</SPAN><BR /><SPAN>&lt;param-name&gt;renew&lt;/param-name&gt;</SPAN><BR /><SPAN>&lt;param-value&gt;false&lt;/param-value&gt;</SPAN><BR /><SPAN>&lt;/init-param&gt;</SPAN><BR /><SPAN>&lt;init-param&gt;</SPAN><BR /><SPAN>&lt;param-name&gt;gateway&lt;/param-name&gt;</SPAN><BR /><SPAN>&lt;param-value&gt;false&lt;/param-value&gt;</SPAN><BR /><SPAN>&lt;/init-param&gt;</SPAN><BR /><SPAN>&lt;/filter&gt;</SPAN><BR /><SPAN>&lt;filter&gt;</SPAN><BR /><SPAN>&lt;filter-name&gt;CAS Validation Filter&lt;/filter-name&gt;</SPAN><BR /><SPAN>&lt;filter-class&gt;org.jasig.cas.client.validation.Cas20ProxyReceivingTicketValidationFilter&lt;/filter-class&gt;</SPAN><BR /><SPAN>&lt;init-param&gt;</SPAN><BR /><SPAN>&lt;param-name&gt;casServerUrlPrefix&lt;/param-name&gt;</SPAN><BR /><SPAN>&lt;param-value&gt;</SPAN><A href="https://localhost:9443/cas-server-webapp-3.4.2/" rel="nofollow noopener noreferrer">https://localhost:9443/cas-server-webapp-3.4.2/</A><SPAN>&lt;/param-value&gt;</SPAN><BR /><SPAN>&lt;/init-param&gt;</SPAN><BR /><SPAN>&lt;init-param&gt;</SPAN><BR /><SPAN>&lt;param-name&gt;serverName&lt;/param-name&gt;</SPAN><BR /><SPAN>&lt;param-value&gt;</SPAN><A href="https://localhost:8443" rel="nofollow noopener noreferrer">https://localhost:8443</A><SPAN>&lt;/param-value&gt;</SPAN><BR /><SPAN>&lt;/init-param&gt;</SPAN><BR /><SPAN>&lt;init-param&gt;</SPAN><BR /><SPAN>&lt;param-name&gt;proxyCallbackUrl&lt;/param-name&gt;</SPAN><BR /><SPAN>&lt;param-value&gt;</SPAN><A href="https://localhost:8443/alfresco/MTCallback" rel="nofollow noopener noreferrer">https://localhost:8443/alfresco/MTCallback</A><SPAN>&lt;/param-value&gt;</SPAN><BR /><SPAN>&lt;/init-param&gt;</SPAN><BR /><SPAN>&lt;init-param&gt;</SPAN><BR /><SPAN>&lt;param-name&gt;proxyReceptorUrl&lt;/param-name&gt;</SPAN><BR /><SPAN>&lt;param-value&gt;/MTCallback&lt;/param-value&gt;</SPAN><BR /><SPAN>&lt;/init-param&gt;</SPAN><BR /><SPAN>&lt;init-param&gt;</SPAN><BR /><SPAN>&lt;param-name&gt;acceptAnyProxy&lt;/param-name&gt;</SPAN><BR /><SPAN>&lt;param-value&gt;true&lt;/param-value&gt;</SPAN><BR /><SPAN>&lt;/init-param&gt;</SPAN><BR /><SPAN>&lt;/filter&gt;</SPAN><BR /><SPAN>&lt;filter&gt;</SPAN><BR /><SPAN>&lt;filter-name&gt;CAS HttpServletRequest Wrapper Filter&lt;/filter-name&gt;</SPAN><BR /><SPAN>&lt;filter-class&gt;org.jasig.cas.client.util.HttpServletRequestWrapperFilter&lt;/filter-class&gt;</SPAN><BR /><SPAN>&lt;/filter&gt;</SPAN><BR /><SPAN>&lt;filter&gt;</SPAN><BR /><SPAN>&lt;filter-name&gt;CAS Assertion Thread Local Filter&lt;/filter-name&gt;</SPAN><BR /><SPAN>&lt;filter-class&gt;org.jasig.cas.client.util.AssertionThreadLocalFilter&lt;/filter-class&gt;</SPAN><BR /><SPAN>&lt;/filter&gt;</SPAN><BR /><BR /><SPAN>&lt;filter-mapping&gt;</SPAN><BR /><SPAN>&lt;filter-name&gt;CAS Authentication Filter&lt;/filter-name&gt;</SPAN><BR /><SPAN>&lt;url-pattern&gt;/faces/*&lt;/url-pattern&gt;</SPAN><BR /><SPAN>&lt;url-pattern&gt;/wcservice/*&lt;/url-pattern&gt;</SPAN><BR /><SPAN>&lt;/filter-mapping&gt;</SPAN><BR /><BR /><SPAN>&lt;filter-mapping&gt;</SPAN><BR /><SPAN>&lt;filter-name&gt;CAS Validation Filter&lt;/filter-name&gt;</SPAN><BR /><SPAN>&lt;url-pattern&gt;/faces/*&lt;/url-pattern&gt;</SPAN><BR /><SPAN>&lt;url-pattern&gt;/wcservice/*&lt;/url-pattern&gt;</SPAN><BR /><SPAN>&lt;/filter-mapping&gt;</SPAN><BR /><BR /><SPAN>&lt;filter-mapping&gt;</SPAN><BR /><SPAN>&lt;filter-name&gt;CAS HttpServletRequest Wrapper Filter&lt;/filter-name&gt;</SPAN><BR /><SPAN>&lt;url-pattern&gt;/faces/*&lt;/url-pattern&gt;</SPAN><BR /><SPAN>&lt;url-pattern&gt;/wcservice/*&lt;/url-pattern&gt;</SPAN><BR /><SPAN>&lt;/filter-mapping&gt;</SPAN><BR /><BR /><SPAN>&lt;filter-mapping&gt;</SPAN><BR /><SPAN>&lt;filter-name&gt;CAS Assertion Thread Local Filter&lt;/filter-name&gt;</SPAN><BR /><SPAN>&lt;url-pattern&gt;/faces/*&lt;/url-pattern&gt;</SPAN><BR /><SPAN>&lt;url-pattern&gt;/wcservice/*&lt;/url-pattern&gt;</SPAN><BR /><SPAN>&lt;/filter-mapping&gt;</SPAN><BR /><BR /><SPAN>&lt;filter-mapping&gt;</SPAN><BR /><SPAN>&lt;filter-name&gt;CAS Validation Filter&lt;/filter-name&gt;</SPAN><BR /><SPAN>&lt;url-pattern&gt;/MTCallback&lt;/url-pattern&gt;</SPAN><BR /><SPAN>&lt;/filter-mapping&gt;</SPAN><BR /><BR /><SPAN>&lt;filter&gt;</SPAN><BR /><SPAN>&lt;filter-name&gt;Authentication Filter&lt;/filter-name&gt;</SPAN><BR /><SPAN>&lt;description&gt;dp2k filter&lt;/description&gt;</SPAN><BR /><SPAN>&lt;filter-class&gt;it.dp2000.alfresco.cas.CASAuthenticationFilter&lt;/filter-class&gt;</SPAN><BR /><SPAN>&lt;/filter&gt;</SPAN><BR /><BR /><SPAN>&lt;!– END –&gt;</SPAN></BODY></HTML> Wed, 23 Mar 2011 14:15:20 GMT plinio 2011-03-23T14:15:20Z https://connect.hyland.com/t5/alfresco-archive/webscript-from-httpclient-in-cas-third-party-application/m-p/276108#M229238 Hi all,I implement CAS SSO across both Alfresco (3.3E) and a third party sample application.(a simple servelt)I need call a webscript (for example …alfresco/wcservice/office/getUsers) through HttpClient get.The problem is:CAS server return CAS login page( i retrieve the page from method.getResponseB Wed, 23 Mar 2011 14:15:20 GMT https://connect.hyland.com/t5/alfresco-archive/webscript-from-httpclient-in-cas-third-party-application/m-p/276108#M229238 plinio 2011-03-23T14:15:20Z https://connect.hyland.com/t5/alfresco-archive/webscript-from-httpclient-in-cas-third-party-application/m-p/276109#M229239 <HTML><HEAD></HEAD><BODY><SPAN>I suggest to install the CAS REST API to allow HTTP call directly to the CAS server without parsing the HTML page.</SPAN><BR /><SPAN>Otherwise you need to parse the HTML page of the login form to get all the hidden parameters included in this form to allow you to create a granting ticket.</SPAN><BR /><BR /><SPAN>Hope this helps.</SPAN></BODY></HTML> Sat, 26 Mar 2011 14:00:23 GMT https://connect.hyland.com/t5/alfresco-archive/webscript-from-httpclient-in-cas-third-party-application/m-p/276109#M229239 openpj 2011-03-26T14:00:23Z