Thanks for this reply. Here's what I need to achieve: authenticate users against a custom database (requires its own authenticator because query is complex) return to CAS client more than username
I already wrote my own authenticator, and need to find out where to include it in the CAS descriptor About the second option, I'm not sure how to do it. I think previously, I used a custom Principal to hold all properties and then the CredentialsToPrincipalResolver to populate the properties; but I can't remember how to include that in the response. About the overall workflow, is the following correct? the Authenticator receives a Credentials and validates it; then, the Credentials is passed to CredentialsToPrincipalResolver to instantiate a Principal object from the Credentials How is the Principal returned to the CAS client? Cheers Jean-Noël Le 04-juin-09 à 17:36, Scott Battaglia a écrit : > CredentialsBinder is only necessary when you need to transfer > information from the HttpServletRequest to the Credentials object > when standard Spring Binding mechanisms cannot be used (i.e. > parameter->property mapping). > > The CredentialsToPrincipalResolver is used to turn a credential into > a principal after its been authenticated. > > Cheers, > Scott > > > On Thu, Jun 4, 2009 at 10:08 AM, Jean-Noel Colin > <[email protected]> wrote: > Hi > > I need to build a custom authenticator; I found back some code I > wrote 2 years ago on an older version of CAS and I'm trying to > figure out how everything was working; in particular, I'd like to > understand the role of CredentialsBinder and > CredentialsToPrincipalResolver. I couldn't not find information on > the overall authentication process down to that level of details. > > Also, I think i remember there was a way for the CAS server to > return more information to the CAS client than just the username (I > even think it's the reason why I wrote the above classes), but can't > find information on this subject neither. > > Would anyone be able to refresh my understanding or point me to > appropriate source of information? > > Best regards > > Jean-Noel Colin > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
