On Fri, Mar 13, 2009 at 10:54 AM, Andrew Feller <[email protected]> wrote:
> Bart, > > The only way currently is to lookup the principal associated with a TGT > directly from the ticket registry; there are no API points in the > CentralAuthenticationService interface currently. > > Scott: Here is application #2 =) > Actually, it really isn't since your authentication source should be determining if you have an expired password or not and throwing an appropriate exception up the stack. :-) This has nothing to do with retrieving the Ticket Granting Ticket. You'll also notice that CAS4 supports both the notion of a well-defined hierarchy of exceptions, as well as a method for returning warnings/messages to the user. -Scott > > A- > > > On 3/13/09 8:36 AM, "Bart Ophelders" <[email protected]> wrote: > > Hi, > > For our master thesis we would like to implement a password expiration > plugin for CAS. > We are basing our study on > http://www.ja-sig.org/wiki/display/CAS/Expired+Password+Integration . > > We would like to implement this expiration check after the user is > authenticated and there is a ticketGrantingTicket created (but not yet > sent), thus between the 'submit' and the 'sendTicketGrantingTicket' in the > login-webflow. > Is there an easy way to retrieve the principal to be able to do this check? > > Sincerely, > > Bart Ophelders & Johan Peeters > > > -- > Andrew Feller, Analyst > LSU University Information Services > 200 Frey Computing Services Center > Baton Rouge, LA 70803 > Office: 225.578.3737 > Fax: 225.578.6400 > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
