Jérémie,
Try this logger to see what cas is doing with the attributes:
<!-- DEBUG Found principal attributes [...] for [username]
Attribute policy [???] allows release of [...] for [username]
Final collection of attributes allowed are: [...] -->
<AsyncLogger
name="org.apereo.cas.services.AbstractRegisteredServiceAttributeReleasePolicy"
level="debug"/>
The client application must be configured to call the CASv3 endpoint.
Ray
On Thu, 2021-03-25 at 01:56 -0700, Jérémie Pilette wrote:
Notice: This message was sent from outside the University of Victoria email
system. Please be cautious with links and sensitive information.
Hi,
I would like to use Attribute release for one application (Yparéo).
I was usin CAS 5.1, and it was operationnal.
Now with the new version 6.4, it does'nt work.
I am using json file configuration :
******************************************************************
{
"@class" : "org.apereo.cas.services.RegexRegisteredService",
"serviceId" : "^(https|http)://URL/cas.*",
"name" : "netYpareo",
"id" : 10000005,
"description" : "NetYparéo",
"evaluationOrder" : 3,
"accessStrategy" :
{
"@class" :
"org.apereo.cas.services.DefaultRegisteredServiceAccessStrategy",
"enabled" : "true",
"ssoEnabled" : "true",
"requireAllAttributes": "true",
"caseInsensitive": "false"
},
"attributeReleasePolicy" :
{
"@class" :
"org.apereo.cas.services.ReturnMappedAttributeReleasePolicy",
"allowedAttributes" :
{
"@class" : "java.util.TreeMap",
"id_attribute" : "codeNYP"
}
},
"authorizedToReleaseCredentialPassword" : "false",
"authorizedToReleaseProxyGrantingTicket" : "false",
"excludeDefaultAttributes" : "false",
"principalIdAttribute" : "login_attribute"
}
******************************************************************
In my cas.properties :
cas.authn.authentication-attribute-release-enabled=true
cas.authn.ldap[0].principal-attribute-list=id_attribute
Maybe I forget something ?
One other question : How could we know which protocol is used to do that ?
The application accept CASv3, so I want to use CASv3, not SAML or other ....
Thank you
--
Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | [email protected]<mailto:[email protected]>
I respectfully acknowledge that my place of work is located within the
ancestral, traditional and unceded territory of the Songhees, Esquimalt and
WSÁNEĆ Nations.
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/67039239a4885bf073fb88deb930db61082aa369.camel%40uvic.ca.
