Hi all, I have a very stupid question that is amazing me... I have integrated Liferay + CAS + LDAP but because I need to have right password in liferay DB I did as follow:
In deployerConfigContext.xml I set: <property name="authenticationHandlers"> > <list> > > <bean > class="org.jasig.cas.authentication.handler.support.HttpBasedServiceCredentialsAuthenticationHandler" > p:httpClient-ref="httpClient" /> > > <bean class="com.verosa.jasig.cas.AuthSupport"/> > <bean > class="org.jasig.cas.adaptors.ldap.FastBindLdapAuthenticationHandler"> > <property name="filter" > value="cn=%u,ou=People,o=liferayTest" /> > <property name="contextSource" ref="contextSource" /> > </bean> > > </list> > </property> > </bean> > Where AuthSupport is a class of mine that simply update password in liferay DB: UserLocalServiceUtil.updatePassword(id , password , password, false); and it always returns false so authentication is performed by FastBindLdapAuthenticationHandler. But it's happening that If user inserts wrong password it's updated in liferay DB (no problem this), but also user get logged in liferay. Is CAS looking for matching password at LDAP or liferay DB where at authentication time the old password has been set? I'm getting confused on this...sorry for my poor explanation...if someone could help it would be very appreciated! Thanks in advance, Rosa -- You are currently subscribed to cas-dev@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev
