Have you authorized the service to see the attributes via the Services Management Tool?
Thanks Scott On Thu, Feb 24, 2011 at 6:56 AM, James Parry <[email protected]>wrote: > After many hours. (Starting again... with Tomcat instead of TCserver) > > I have it working but now im having issues seeing attributes in Cas client > Via assersion. > > > The Cas Server Attribute Repository say: > > <bean id="attributeRepository" > class="org.jasig.services.persondir.support.ldap.LdapPersonAttributeDao"> > <property name="contextSource" ref="contextSource" /> > <property name="baseDN" > value="ou=people,dc=meganexus,dc=com" /> > <property name="requireAllQueryAttributes" value="true" /> > > > <property name="queryAttributeMapping"> > <map> > <entry key="username" value="uid" /> > </map> > </property> > > <property name="resultAttributeMapping"> > <map> > <entry key="username" value="uid" /> > <entry key="cn" value="cn" /> > <entry key="sn" value="sn" /> > </map> > </property> > </bean> > > But the Debug from the Cas Client shows the SAML Ticket and it doesnt > contain the attributes. > > (Striped down version:) > > <Response> > <Status> > <StatusCode Value="samlp:Success"> > </StatusCode> > </Status> > > <Assertion xmlns="urn:oasis:names:tc:SAML:1.0:assertion" > AssertionID="<CENSORED>" IssueInstant="2011-02-24T11:40:41.435Z" > Issuer="localhost" MajorVersion="1" MinorVersion="1"> > <Conditions NotBefore="2011-02-24T11:40:41.435Z" > NotOnOrAfter="2011-02-24T11:41:11.435Z"> > <AudienceRestrictionCondition> > <Audience> > https://ws-dev-04.meganexus.local:8443/neo_1_0/j_spring_cas_security_check > </Audience> > </AudienceRestrictionCondition> > </Conditions> > <AuthenticationStatement > AuthenticationInstant="2011-02-24T11:40:41.371Z" > AuthenticationMethod="urn:oasis:names:tc:SAML:1.0:am:unspecified"> > <Subject> > <NameIdentifier>James.Parry</NameIdentifier> > <SubjectConfirmation> > > > <ConfirmationMethod>urn:oasis:names:tc:SAML:1.0:cm:artifact</ConfirmationMethod> > </SubjectConfirmation> > </Subject> > </AuthenticationStatement> > </Assertion> > </Response> > > > Any ideas how i can make the attributes visable to CAS client using SAML. > > Many Thanks > James > > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
