Pablo, If it works with the default in memory store, try turning up the logging JPA/hibernate related classes. Can you view the ticket in postgres or see postgres logs?
Ray On Wed, 2022-09-14 at 08:29 -0700, Pablo Vidaurri wrote: Notice: This message was sent from outside the University of Victoria email system. Please be cautious with links and sensitive information. We are running into a strange issue where login sometimes does not work. The TGT is created, and 40ms later the ticket is determined to be invalid so the TGT gets destroyed. We are using JPA against a postgres db. Is this just not fast enough to persist the ticket? Bumping up log level for org.apereo.cas.web.flow package reveals the following: 08:13:25,645 INFO [org.apereo.inspektr.audit.support.Slf4jLoggingAuditTrailManager] (default task-3363) Audit trail record BEGIN ============================================================= WHO: x...@xxxxx.com WHAT: TGT-8132-5BH4unLipbzoIApkH8R27D6atlA6-6uoT-TKG3wFbuvXrx9Poc6jyh5RkxKBqt2lHck ACTION: TICKET_GRANTING_TICKET_CREATED APPLICATION: CAS WHEN: Wed Sep 14 08:13:25 MST 2022 CLIENT IP ADDRESS: xx.xx.xx.xx SERVER IP ADDRESS: www.xxxxxx.com ============================================================= 08:13:25,683 DEBUG [org.apereo.cas.web.flow.GenerateServiceTicketAction] (default task-3363) Ticket-granting ticket found in the context is [TGT-8132-5BH4unLipbzoIApkH8R27D6atlA6-6uoT-TKG3wFbuvXrx9Poc6jyh5RkxKBqt2lHck] 08:13:25,685 DEBUG [org.apereo.cas.web.flow.GenerateServiceTicketAction] (default task-3363) CAS has determined ticket-granting ticket [TGT-8132-5BH4unLipbzoIApkH8R27D6atlA6-6uoT-TKG3wFbuvXrx9Poc6jyh5RkxKBqt2lHck] is invalid and must be destroyed 08:13:25,686 INFO [org.apereo.inspektr.audit.support.Slf4jLoggingAuditTrailManager] (default task-3363) Audit trail record BEGIN ============================================================= WHO: x...@xxxxx.com WHAT: TGT-8132-5BH4unLipbzoIApkH8R27D6atlA6-6uoT-TKG3wFbuvXrx9Poc6jyh5RkxKBqt2lHck ACTION: TICKET_DESTROYED APPLICATION: CAS WHEN: Wed Sep 14 08:13:25 MST 2022 CLIENT IP ADDRESS: xx.xx.xx.xx SERVER IP ADDRESS: www.xxxxxx.com ============================================================= -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/1ad6fd1bc43db1be90d883120b2dc4071c7b0ba5.camel%40uvic.ca.
