Colin,
It has been a long time since I used the default page so I do not know its
behaviour.
You can back up the logger to org.apereo.cas.services to get many more messages
related to the service. That along with
<AsyncLogger name="org.ldaptive" level="debug" includeLocation="true" />
might provide more details in case there are ldap connection issues.
If you can look at logs from RADIUS and LDAP, they may tell you if the problem
is on that end.
Ray
On Fri, 2019-11-01 at 10:59 -0400, Colin Ryan wrote:
Ray,
I had already set the attribute release directive in the basic HTTPIMAP all
access service definition.
You've helped my brain tweak on the concept that only principal attributes are
automatically released while all others must be explicitly added to defaults or
service definitions. But your example below is for LDAP auth. I'm trying to use
RADIUS auth - which is releasing Framed Protocol and Service Type - and using
LDAP to fill out the attribute set, via
cas.authn.attribute-repository.ldap[].....
I set the debug to what you suggested and Logged in to the CAS default Login
page and just see the RADIUS attribute, and no reference in the logs to
AbstractRegisteredServiceAttributeReleasePolicy.
Is the "Click here to view attributes resolved and retrieved for " expected to
show all the native and resolved attributes, I want to make sure I'm using the
right test instrument.
My service definition is:
{
"@class" : "org.apereo.cas.services.RegexRegisteredService",
"serviceId" : "^(https|imaps)://.*",
"name" : "HTTPS and IMAPS",
"id" : 10000001,
"attributeReleasePolicy" : {
"@class" : "org.apereo.cas.services.ReturnAllAttributeReleasePolicy"
}
}
Sorry for my naivete..
Colin
On 2019-10-29 12:40 p.m., Ray Bon wrote:
You can set attributes to be released by default (normally no attributes are
released),
cas.authn.ldap[1].principalAttributeList=mail, \
cn, \
sn
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | [email protected]<mailto:[email protected]>
I respectfully acknowledge that my place of work is located within the
ancestral, traditional and unceded territory of the Songhees, Esquimalt and
WSÁNEĆ Nations.
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/d736dbdb27e413c258ba914b2c2fb34b02e4323e.camel%40uvic.ca.
