Hi Phil,
I did have to increase the blob length in the the TGT table of my
database because i wanted to retreive the groupes DN of my users...
I have joined a cas assertion response in XML. I think in mod_auth_cas
it was truncated after the cas:Groupes section...
Thanks.
2010/4/2 Phil Ames <[email protected]>:
> Hi,
> It is also possible to increase the size of the allowed response in
> order to prevent mod_auth_cas from truncating this (this is currently
> hardcoded, but I didn't have any idea what a sane value would be so I
> just picked one, it may be too small for the typical use case). Do
> you have a sense of how large the response is?
>
> -Phil
>
> On Fri, Apr 2, 2010 at 5:41 AM, Jérôme Rautureau <[email protected]> wrote:
>> Hi everybody,
>>
>> I have a problem with the property : p:ignoreAttributes="true" of
>> <bean class="org.jasig.cas.services.RegisteredServiceImpl"/>
>>
>> I want to ignore the attributes in the XML response for certain
>> services but i don't known what to put before the <cas:attributes/>
>> markup in order to exclude the attributes from the response.
>>
>> The attributes are written in the response even if p:ignoreAttributes="true"
>> ;
>>
>> So a mod_auth_cas apache client truncate the response because the XML
>> is too long for this service, i had to specified a single attribute in
>> order to have a smaller response.
>>
>> Here's the file /view/jsp/protocole/2.0/casServiceValidationSuccess.jsp
>>
>> <%@ page pageEncoding="UTF-8" %>
>> <%@ page contentType="text/xml; charset=UTF-8" %><%@ page
>> session="false" %><%@ taglib prefix="c"
>> uri="http://java.sun.com/jsp/jstl/core"; %><%@ taglib
>> uri="http://java.sun.com/jsp/jstl/functions"; prefix="fn"
>> %><cas:serviceResponse xmlns:cas='http://www.yale.edu/tp/cas'>
>> <cas:authenticationSuccess>
>>
>> <cas:user>${fn:escapeXml(assertion.chainedAuthentications[fn:length(assertion.chainedAuthentications)-1].principal.id)}</cas:user>
>> <cas:attributes>
>> <c:forEach var="auth"
>> items="${assertion.chainedAuthentications}">
>> <c:forEach var="attr"
>> items="${auth.principal.attributes}" >
>>
>>
>> <cas:${fn:escapeXml(attr.key)}>${fn:escapeXml(attr.value)}</cas:${fn:escapeXml(attr.key)}>
>> </c:forEach>
>> </c:forEach>
>> </cas:attributes>
>>
>> <c:if test="${not empty pgtIou}">
>> <cas:proxyGrantingTicket>${pgtIou}</cas:proxyGrantingTicket>
>> </c:if>
>> <c:if test="${fn:length(assertion.chainedAuthentications) > 1}">
>> <cas:proxies>
>> <c:forEach var="proxy" items="${assertion.chainedAuthentications}"
>> varStatus="loopStatus" begin="0"
>> end="${fn:length(assertion.chainedAuthentications)-2}" step="1">
>>
>> <cas:proxy>${fn:escapeXml(proxy.principal.id)}</cas:proxy>
>> </c:forEach>
>> </cas:proxies>
>> </c:if>
>> </cas:authenticationSuccess>
>> </cas:serviceResponse>
>>
>> Thanks in advance.
>>
>> --
>> Jérôme Rautureau
>> Développeur Systèmes - CdA La Rochelle
>>
>> --
>> You are currently subscribed to [email protected] as:
>> [email protected]
>> To unsubscribe, change settings or access archives, see
>> http://www.ja-sig.org/wiki/display/JSG/cas-user
>>
>>
>
> --
> You are currently subscribed to [email protected] as:
> [email protected]
> To unsubscribe, change settings or access archives, see
> http://www.ja-sig.org/wiki/display/JSG/cas-user
>
>
--
Jérôme Rautureau
Développeur Systèmes - CdA La Rochelle
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user<cas:serviceResponse xmlns:cas="http://www.yale.edu/tp/cas";>
<cas:authenticationSuccess>
<cas:user>j.rautureau</cas:user>
<cas:attributes>
<cas:Service>Systèmes et technologies de l'information</cas:Service>
<cas:Telephone>3425</cas:Telephone>
<cas:CheminComplet>Direction générale des services / Direction générale adjointe / Pôle ressources / Systèmes et technologies de l'information / RAUTUREAU Jérôme</cas:CheminComplet>
<cas:SiteWeb>http://intranet/index.php?page=id&uid=j.rautureau</cas:SiteWeb>
<cas:Fax>3429</cas:Fax>
<cas:Prenom>Jérôme</cas:Prenom>
<cas:Matricule>00674</cas:Matricule>
<cas:NomComplet>Jérôme Rautureau</cas:NomComplet>
<cas:DistinguishedName>CN=Jérôme Rautureau,OU=DSTI,OU=Ressources,OU=DGA,OU=DGS,OU=CDA,DC=agglo-larochelle,DC=org</cas:DistinguishedName>
<cas:Emploi>Développeur systèmes</cas:Emploi>
<cas:NomAffiche>RAUTUREAU Jérôme</cas:NomAffiche>
<cas:Identifiant>j.rautureau</cas:Identifiant>
<cas:Societe>Communauté d'Agglomération de La Rochelle</cas:Societe>
<cas:Email>[email protected]</cas:Email>
<cas:Groupes>[CN=g_Projet - ICAR,OU=Projets,OU=Groupes,DC=agglo-larochelle,DC=org, CN=tout_le_monde,OU=Listes,DC=agglo-larochelle,DC=org, CN=liste_icar,OU=Listes,DC=agglo-larochelle,DC=org, CN=ICAR - CMS_Contrib_DSTI,OU=CMS,OU=Applications,OU=Groupes,DC=agglo-larochelle,DC=org, CN=dga_com,OU=DGA,OU=DGS,OU=CDA,DC=agglo-larochelle,DC=org, CN=gt_phototheque,OU=Groupes de travail,DC=agglo-larochelle,DC=org, CN=ICAR - Developpeurs,OU=Applications,OU=Groupes,DC=agglo-larochelle,DC=org, CN=GED_Utilisateurs,OU=Applications,OU=Groupes,DC=agglo-larochelle,DC=org, CN=SI_Administrateurs,OU=Applications,OU=Groupes,DC=agglo-larochelle,DC=org, CN=GED_Administrateurs,OU=Applications,OU=Groupes,DC=agglo-larochelle,DC=org, CN=ICAR - Administrateurs,OU=Applications,OU=Groupes,DC=agglo-larochelle,DC=org, CN=cda_com,OU=CDA,DC=agglo-larochelle,DC=org, CN=DSTI_com,OU=DSTI,OU=Ressources,OU=DGA,OU=DGS,OU=CDA,DC=agglo-larochelle,DC=org, CN=ressources_com,OU=Ressources,OU=DGA,OU=DGS,OU=CDA,DC=agglo-larochelle,DC=org, CN=Admins du domaine,CN=Users,DC=agglo-larochelle,DC=org, CN=Utilisateurs du Bureau à distance,CN=Builtin,DC=agglo-larochelle,DC=org]</cas:Groupes>
<cas:CompteBoiteAuxLettres>[email protected]</cas:CompteBoiteAuxLettres>
</cas:attributes>
</cas:authenticationSuccess>
</cas:serviceResponse>
