Ok I got it to a point where cas server authenticates using ldap. The CAS
client webapp directs to CAS and then the user can authenticate.
In my web app I can list the attributes:
<code>
AttributePrincipal principal = (AttributePrincipal)
request.getUserPrincipal();
Map attributes = principal.getAttributes();
if (attributes.size() > 0) {
out.println("You have " + attributes.size() + " attributes : <br/>");
Iterator keyIterator = attributes.keySet().iterator();
while (keyIterator.hasNext()) {
Object key = keyIterator.next();
Object value = attributes.get(key);
out.println("<b>" + key + "</b>" + " : " + value + "<br>");
}
} else {
out.println("You have no attributes set");
}
</code>
The problem I have now is using "request.isUserInRole" I can't get it to
match against roles.
On 5/14/10 2:58 PM, "Marvin Addison" <[email protected]> wrote:
>> What I would like to do is be able to specify a list of attributes to
>> return, when I am authenticating a user. Is there anything like that
>> available in CAS?
>
> Yes. You'll want to use the attribute release feature of CAS in
> conjunction with the SAML protocol. Two good CASUM wiki links:
> 1. http://www.ja-sig.org/wiki/display/CASUM/Attributes
> 2. http://www.ja-sig.org/wiki/display/CASUM/SAML+1.1
>
> M
Emilio S. Acevedo
Enterprise Software Developer
Virginia's Community Colleges
1-804-423-6758
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
