Hi,
I'm using LDAP with CAS 5.1.5 and want to try restricting access to a service
for some users.
What i did in the service definition :
"attributeReleasePolicy" : {
"@class" : "org.apereo.cas.services.ReturnAllAttributeReleasePolicy"
},
"accessStrategy" : {
"@class" : "org.apereo.cas.services.DefaultRegisteredServiceAccessStrategy",
"enabled" : true,
"ssoEnabled" : true,
"requiredAttributes" : {
"@class" : "java.util.HashMap",
"uid" : [ "java.util.HashSet", [ "user1, user2" ] ]
}
}
In cas.properties, i have
cas.authn.ldap[0].principalAttributeId=uid
and
cas.authn.attributeRepository.defaultAttributesToRelease=uid
but these users cannot access service : Cannot grant access to service
[http://service.domain.tld/] because it is not authorized for use by [user1]
What am i missing ?
Regards.
--
Sébastien BEAUDLOT
Administrateur réseaux, téléphonie et flotte mobile
Direction Opérationnelle des Systèmes d'Information ( DOSI )
Pôle Infrastructures
Université d'Avignon et des Pays de Vaucluse
Tèl : 04.90.16.26.04
--
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/937867729.1173640.1513155605101.JavaMail.zimbra%40univ-avignon.fr.
