> I am probably wrong, but I had the impression that CAS does not support > extracting attributes other than the username during Authentication. I would > very much like to know if it is otherwise.
CAS supports sending arbitrary attributes about the principal at service ticket validation time using a SAML payload. The client application simply points to /samlValidate instead of /serviceValidate to obtain a SAML response. Currently only the Jasig CAS Client for Java 3.1.x understands SAML and exposes those attributes to CAS-enabled applications. See http://www.ja-sig.org/wiki/display/CASUM/Attributes for more about configuring the CAS server and your attribute repository, and http://www.middleware.vt.edu/doku.php?id=middleware:cas:client#obtaining_pid_and_attributes_from_java_application for sample code on extracting attributes at the client. Hope that helps, Marvin -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
