After many hours. (Starting again... with Tomcat instead of TCserver)
I have it working but now im having issues seeing attributes in Cas client Via
assersion.
The Cas Server Attribute Repository say:
<bean id="attributeRepository"
class="org.jasig.services.persondir.support.ldap.LdapPersonAttributeDao">
<property name="contextSource" ref="contextSource" />
<property name="baseDN" value="ou=people,dc=meganexus,dc=com"
/>
<property name="requireAllQueryAttributes" value="true" />
<property name="queryAttributeMapping">
<map>
<entry key="username" value="uid" />
</map>
</property>
<property name="resultAttributeMapping">
<map>
<entry key="username" value="uid" />
<entry key="cn" value="cn" />
<entry key="sn" value="sn" />
</map>
</property>
</bean>
But the Debug from the Cas Client shows the SAML Ticket and it doesnt contain
the attributes.
(Striped down version:)
<Response>
<Status>
<StatusCode Value="samlp:Success">
</StatusCode>
</Status>
<Assertion xmlns="urn:oasis:names:tc:SAML:1.0:assertion"
AssertionID="<CENSORED>" IssueInstant="2011-02-24T11:40:41.435Z"
Issuer="localhost" MajorVersion="1" MinorVersion="1">
<Conditions NotBefore="2011-02-24T11:40:41.435Z"
NotOnOrAfter="2011-02-24T11:41:11.435Z">
<AudienceRestrictionCondition>
<Audience>https://ws-dev-04.meganexus.local:8443/neo_1_0/j_spring_cas_security_check</Audience>
</AudienceRestrictionCondition>
</Conditions>
<AuthenticationStatement
AuthenticationInstant="2011-02-24T11:40:41.371Z"
AuthenticationMethod="urn:oasis:names:tc:SAML:1.0:am:unspecified">
<Subject>
<NameIdentifier>James.Parry</NameIdentifier>
<SubjectConfirmation>
<ConfirmationMethod>urn:oasis:names:tc:SAML:1.0:cm:artifact</ConfirmationMethod>
</SubjectConfirmation>
</Subject>
</AuthenticationStatement>
</Assertion>
</Response>
Any ideas how i can make the attributes visable to CAS client using SAML.
Many Thanks
James
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
