Hi, I'm running CAS 6.5.9 and have it configured to authenticate users either from LDAP or a PostgreSQL DB, along with some basic attributes like email and displayName. Beside that, for each user, I'm extracting some additional attributes with Attribute Repository (cas.authn.attribute-repository) from a Postgresql DB.
The problem I am facing is that if some attributes for a user change, either in LDAP or the Postgresql DB, they won't be updated in a current CAS session. The user needs to logout and login again. Is there a way to configure CAS to update attributes for current sessions, either periodically or when an app asks CAS about a user? I already tried `cas.authn.attributeRepository.core.expiration-time=1`, but from what I understand that's a cache if user re-logins, doesn't apply for existing sessions. I would need such a functionality, because the attributes I get through the Attribute Repository contain the permissions a user has to each separate app and don't want to ask the user to re-login for a permission change. -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/b00cd93e-095b-4615-aa96-3e23f45fd4f5n%40apereo.org.
