How to test CAS with jmeter?

Question

• request:

  I send a \"get\" http request, has no parameters;
  path: http://192.168.22.139:8080/KSP

• response:

Answer 1

If you're testing CAS login itself I can suggest using JMeter HTTP Proxy server to record login process, catch all values which are being passed, detect those, which are dynamic and deal with them via Regular Expression Extractor, XPath, Beanshell, etc. Post Processors - what you're most comfortable with.

In case if your application is behind CAS I guess that CAS login simply adds a cookie and your application considers user authenticated basing on it. In this case you can simply store cookies somewhere in CSV file and use them via HTTP Cookie Manager to simulate authenticated users.

Answer 2

From the first response, can use Regular Expression Extractor to extract ticke and lt.

Then send the second request with parameter:

username/password/It/execution/_eventId/_eventId

By the way, you should add HTTP Cookie Manager,

Answer 3

There is a few things you need to change in the second request:

• add execution parameter (extract it from the first request, eg. with XPath Extractor or Regular Expression Extractor),

  • the XPath expression would be something like .//*[@id='fm1']//*[@name='execution']/@value

• add _eventId=submit parameter,

• the lt parameter (the login ticket) should be extracted from the login form, too - it changes each time; see XPath Extractor or Regular Expression Extractor,

  • XPath expression: .//*[@id='fm1']//*[@name='lt']/@value,
• not required, but will look nicer - change GET to POST.

Answer 4

I didnot see parameters of your first request. At least I didnot see the lt.

The second request should be a GET request, and the parameters are: service and ticket(This is not jsessionid, the value is generated by CAS, and it is the same with the parameter lt in the first request to the CAS login ).