Attributes about the principal are ONLY stored with the principal itself. The attributes you are referring to to are the values POSTed. (i.e. ticket)
On Mon, May 3, 2010 at 4:49 PM, Andrew Tillinghast <[email protected]>wrote: > > > In our deployerConfigContext we're pulling some attributes from LDAP: > > <bean id="attributeRepository" > class="org.jasig.services.persondir.support.ldap.LdapPersonAttributeDao"> > <property name="ldapTemplate" ref="ldapTemplate" /> > <property name="baseDN" value="dc=conncoll,dc=edu" /> > <property name="requireAllQueryAttributes" value="true" /> > <property name="queryAttributeMapping"> > <map> > <entry key="username" value="sAMAccountName" /> > </map> > </property> > <property name="resultAttributeMapping"> > <map> > <!-- Mapping beetween LDAP entry attributes (key) and Principal's (value) > --> > <entry value="mailState" key="extensionAttribute14" /> > <entry value="interruptFlags" key="extensionAttribute8" /> > </map> > </property> > </bean> > > > In webflow I want to access that attribute "interruptFlags" to check it's > content. > > In redirect there is an expression: > <evaluate > expression="flowScope.service.getResponse(requestScope.serviceTicketId)" > result-type="org.jasig.cas.authentication.principal.Response" > result="requestScope.response" /> > > That makes attributes available to postView, but only under certain > conditions. > <output name="viewScope.parameters" > value="requestScope.response.attributes" /> > > We tried: > <action-state id="generateServiceTicket"> > <evaluate expression="generateServiceTicketAction" /> > <transition on="success" to ="ccCheck" /> > <transition on="error" to="viewLoginForm" /> > <transition on="gateway" to="redirect" /> > </action-state> > <action-state id="ccCheck"> > <evaluate > expression="flowScope.service.getResponse(requestScope.serviceTicketId)" > result-type="org.jasig.cas.authentication.principal.Response" > result="requestScope.response" /> > <transition to="AUPCheck" /> > </action-state> > <decision-state id="AUPCheck"> > <if test="requestScope.response.attributes['interruptFlags'] == 'AUP=;'" > then="showAcceptableUseView" else="warn" /> > </decision-state> > > But the map comes through empty. Is there a class we can call within > webFlow that will give us access to the LDAP attributes? > > > > Andrew Tillinghast > Sr. Web Developer > [email protected] > 270 Mohegan Avenue > New London, CT 06320-4196 > Ph:860 439-5265 Fax: 860 439-2871 > > > > > -- > You are currently subscribed to [email protected] as: > [email protected] > > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
