Hi,
Which paths do you want to bypass exactly?
I think CasAuthenticationFilter only must handle login page requests but CasValidationFilter must handle all the requests.
My Web.xml
<filter>
<filter-name>CasSingleSignOutFilter</filter-name>
<filter-class>org.jasig.cas.client.session.SingleSignOutFilter</filter-class>
</filter>
<filter>
<filter-name>CasAuthenticationFilter</filter-name>
<filter-class>org.jasig.cas.client.authentication.AuthenticationFilter</filter-class>
<init-param>
<param-name>casServerLoginUrl</param-name>
<param-value>https://cas.server.url/cas/login</param-value>
</init-param>
<init-param>
<param-name>serverName</param-name>
<param-value>http://jira.server.url</param-value>
</init-param>
</filter>
<filter>
<filter-name>CasValidationFilter</filter-name>
<filter-class>org.jasig.cas.client.validation.Cas20ProxyReceivingTicketValidationFilter</filter-class>
<init-param>
<param-name>casServerUrlPrefix</param-name>
<param-value>https://cas.server.url/cas</param-value>
</init-param>
<init-param>
<param-name>serverName</param-name>
<param-value>http://jira.server.url</param-value>
</init-param>
<init-param>
<param-name>redirectAfterValidation</param-name>
<param-value>true</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>CasSingleSignOutFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<filter-mapping>
<filter-name>CasAuthenticationFilter</filter-name>
<url-pattern>/login.jsp</url-pattern>
</filter-mapping>
<filter-mapping>
<filter-name>CasAuthenticationFilter</filter-name>
<url-pattern>/secure/Dashboard.jspa</url-pattern>
</filter-mapping>
<filter-mapping>
<filter-name>CasValidationFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
My Seraph-config.xml
<param-name>login.url</param-name>
<param-value>https://cas.server.url/cas/login?service=${originalurl}</param-value>
<param-name>link.login.url</param-name>
<param-value>https://cas.server.url/cas/login?service=${originalurl}</param-value>
<param-name>logout.url</param-name>
<param-value>https://cas.server.url/cas/logout?service=${originalurl}</param-value>
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.