Infinite redirect after successful CAS login (and ticket verification on the drupal side)

Hi Guillaume: Thanks for the debug log --- it is very helpful in diagnosing these problems.

In this case, it appears that CAS is successfully authenticating the user, but somehow the user's session is not being saved. I've seen this sort of error in the past, and I think it was due to a misconfiguration of PHP, not Drupal, cas.module, or phpCAS.

For debugging, I think the next step would be to see if you can use phpCAS separately from Drupal. For example, grab example_simple.php and config.php.example. Rename the latter file to config.php, and set your CAS host, port, etc in there. Then go try out example_simple.php and see if it works!

Make sure the directory or database or whatever php uses to store its sessions is writable by the php process. Hope you can get it working!

Skipping session rename since phpCAS is not handling the session.

This is desired behavior --- we need Drupal to handle the session, not phpCAS.

I assume that the support request has been resolved since we haven't heard from the original poster in several months.

Sorry to bring up this topic again, but I am having a similar issue. The example_simple.php works fine, however when going through Drupal i get a redirect loop.

Any insight to this would be greatly appreciated. I have attached a log file. Within the log the 2 blocks of output will show about 6 times (hence the redirect loop). To me it seems like there might be an issue with session being lost, but I am not 100% on that.

Thanks in advance,

Eric

Yes, it looks like the Drupal session is getting lost. Can you log in to Drupal regularly? Are you using Pressflow?

I can login with a regular Drupal user no problem and as far as I know I am not using Pressflow.

I have also noticed that the cas module is not creating a Drupal user even though I have the checkbox for it checked. I don't know if this will help pinpoint the issue any better.

Yes, that is consistent with what you have described. The CAS.module calls phpCAS::authenticate() however that command never returns successfully --- it gets stuck in the infinite redirect loop there.

I'm surprised that example_simple.php works for you... I've never seen a case yet where that worked but Drupal didn't. Is there anything else potentially unusual about your setup?

Is your site in maintenance mode by any chance?

We migrated this website from a different server and we have verified all owner/permission are correct. We are running php 5.3 through suPHP on a server running cPanel/WHM. We are unsure if it is a server configuration, however all the required modules are in place and we have validated with the curl response. I will try to setup some debugging/logging within the authenticate function to try and pinpoint this a little better on our end. Any more insight you can provide would be greatly appreciated.

Thank you for your help up to this point!

Eric

The site is online

After some searching it appears my version of phpCAS that I am using (1.2.2) does not have a phpCAS::authenticate() function within it. Am I using a wrong combo of the CAS module and phpCAS?

Thanks,
Eric

Sorry, I meant "phpCAS::forceAuthentication()". Nonetheless you probably want to upgrade to 1.3.0 or later for security reasons.

I have noticed there is a forceAuthentication function that I believe it is using. I have also upgraded the phpCAS 1.3.1 right now and still have the same issue.

The function seems to die when this line of code is called $auth = self::$_PHPCAS_CLIENT->forceAuthentication(); around line 1100.

So we have discovered the issue. It turns out during migration the table would not allow for a uid of 0 within the users table. We modified the table within the database to do so and set the uid column value to 0 for the blank user. Everything is working as expected now. Thank you for your help in helping me debug this issue. It was greatly appreciated.