The AuthenticationMethod tells you roughly what type of credentials
were used for authentication:
<AuthenticationStatement AuthenticationInstan
t="2010-05-06T15:30:52.240Z"
AuthenticationMethod="urn:oasis:names:tc:SAML:1.0:am:unspecified">
You need to do server-side configuration so that the proper
authentication method is transmitted to clients. This is via
authentiation metadata populators. An example from our config:
<!--
Populates the Authentication object with data about the authenticated
principal or other circumstances of the authentication event.
The Authentication object is an attribute or the TGT, so data in the
Authentication can be provided to CAS clients at service ticket validation
time.
-->
<property name="authenticationMetaDataPopulators">
<list>
<bean
class="org.jasig.cas.authentication.SamlAuthenticationMetaDataPopulator"
/>
<bean
class="edu.vt.middleware.cas.authentication.LevelOfAssuranceMetaDataPopulator"
p:loaHelper-ref="loaHelper" />
</list>
</property>
This is a property of the
org.jasig.cas.authentication.AuthenticationManagerImpl bean.
I'm not sure mod_auth_cas exposes a way to get at the authentication
method, though. Should be easy to do if support doesn't exist.
M
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
