> I already wrote my own authenticator, and need to find out where to include > it in the CAS descriptor > About the second option, I'm not sure how to do it. I think previously, I > used a custom Principal to hold all properties and then the > CredentialsToPrincipalResolver to populate the properties; but I can't > remember how to include that in the response.
You should probably try to use the existing SimplePrincipal#getAttributes(), which contains the attribute values to send to clients in the SAML payload when service tickets are validated at /samlValidate. If you put your custom attributes in the map backed by getAttributes(), you don't need to do anything additional to get the attributes other than point your CAS clients at /samlValidate. M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
