No they are available during validation, not during the login process. :-) [though for Google Apps support that line is blurred]
On Tue, May 4, 2010 at 10:16 AM, Andrew Tillinghast <[email protected]>wrote: > > So long and short of it, those LDAP attributes aren't available during the > validation. > > -Andrew > > On May 4, 2010, at 10:08 AM, Scott Battaglia wrote: > > Any Spring bean should be accessible from the web flow (at least in Web > Flow 2). > > The principal itself is not available from the web flow since its only > available on validation. > > > On Tue, May 4, 2010 at 9:12 AM, Andrew Tillinghast > <[email protected]>wrote: > >> >> So is there a bean that can be accessed in WebFlow that will return the >> principal with attributes? >> >> -Andrew >> >> On May 3, 2010, at 11:26 PM, Scott Battaglia wrote: >> >> Attributes about the principal are ONLY stored with the principal >> itself. The attributes you are referring to to are the values POSTed. >> (i.e. ticket) >> >> >> On Mon, May 3, 2010 at 4:49 PM, Andrew Tillinghast <[email protected] >> > wrote: >> >>> >>> >>> In our deployerConfigContext we're pulling some attributes from LDAP: >>> >>> <bean id="attributeRepository" >>> class="org.jasig.services.persondir.support.ldap.LdapPersonAttributeDao"> >>> <property name="ldapTemplate" ref="ldapTemplate" /> >>> <property name="baseDN" value="dc=conncoll,dc=edu" /> >>> <property name="requireAllQueryAttributes" value="true" /> >>> <property name="queryAttributeMapping"> >>> <map> >>> <entry key="username" value="sAMAccountName" /> >>> </map> >>> </property> >>> <property name="resultAttributeMapping"> >>> <map> >>> <!-- Mapping beetween LDAP entry attributes (key) and Principal's >>> (value) --> >>> <entry value="mailState" key="extensionAttribute14" /> >>> <entry value="interruptFlags" key="extensionAttribute8" /> >>> </map> >>> </property> >>> </bean> >>> >>> >>> In webflow I want to access that attribute "interruptFlags" to check it's >>> content. >>> >>> In redirect there is an expression: >>> <evaluate >>> expression="flowScope.service.getResponse(requestScope.serviceTicketId)" >>> result-type="org.jasig.cas.authentication.principal.Response" >>> result="requestScope.response" /> >>> >>> That makes attributes available to postView, but only under certain >>> conditions. >>> <output name="viewScope.parameters" >>> value="requestScope.response.attributes" /> >>> >>> We tried: >>> <action-state id="generateServiceTicket"> >>> <evaluate expression="generateServiceTicketAction" /> >>> <transition on="success" to ="ccCheck" /> >>> <transition on="error" to="viewLoginForm" /> >>> <transition on="gateway" to="redirect" /> >>> </action-state> >>> <action-state id="ccCheck"> >>> <evaluate >>> expression="flowScope.service.getResponse(requestScope.serviceTicketId)" >>> result-type="org.jasig.cas.authentication.principal.Response" >>> result="requestScope.response" /> >>> <transition to="AUPCheck" /> >>> </action-state> >>> <decision-state id="AUPCheck"> >>> <if test="requestScope.response.attributes['interruptFlags'] == 'AUP=;'" >>> then="showAcceptableUseView" else="warn" /> >>> </decision-state> >>> >>> But the map comes through empty. Is there a class we can call within >>> webFlow that will give us access to the LDAP attributes? >>> >>> >>> >>> Andrew Tillinghast >>> Sr. Web Developer >>> [email protected] >>> 270 Mohegan Avenue >>> New London, CT 06320-4196 >>> Ph:860 439-5265 Fax: 860 439-2871 >>> >>> >>> >>> >>> -- >>> You are currently subscribed to [email protected] as: >>> [email protected] >>> >>> >>> >>> >>> >>> To unsubscribe, change settings or access archives, see >>> http://www.ja-sig.org/wiki/display/JSG/cas-user >>> >>> >> -- >> You are currently subscribed to [email protected] as: >> [email protected] >> >> >> >> To unsubscribe, change settings or access archives, see >> http://www.ja-sig.org/wiki/display/JSG/cas-user >> >> >> -- >> You are currently subscribed to [email protected] as: >> [email protected] >> >> >> >> To unsubscribe, change settings or access archives, see >> http://www.ja-sig.org/wiki/display/JSG/cas-user >> >> > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > > -- > You are currently subscribed to [email protected] as: > [email protected] > > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
