Hi,
I have problem with passing additional attributes from LDAP. I have attached a
log file, but in a few words situation is as follows:
According to the log file:
2011-04-27 17:58:31,234 DEBUG
[org.jasig.cas.authentication.AuthenticationManagerImpl] - <Attribute map for
marcin.kwapisz: {category=employee, cn=Marcin Kwapisz}>
CAS is aware of category and cn atrtibutes, but they are not sent to the client
during ticket validation. The response is:
2011-04-27 17:58:31,718 DEBUG
[org.jasig.cas.client.validation.Cas20ServiceTicketValidator] - <Server
response: <cas:serviceResponse xmlns:cas='http://www.yale.edu/tp/cas'>
<cas:authenticationSuccess>
<cas:user>marcin.kwapisz</cas:user>
</cas:authenticationSuccess>
</cas:serviceResponse>
Thanks in advance for help
Marcin Kwapisz
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user2011-04-27 17:58:29,921 DEBUG
[org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler] - <Performing LDAP
bind with credential: cn=Marcin Kwapisz 9631,dc=empl,dc=p.lodz.pl>
2011-04-27 17:58:30,031 INFO
[org.jasig.cas.authentication.AuthenticationManagerImpl] -
<AuthenticationHandler:
org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler successfully
authenticated the user which provided the following credentials: [username:
marcin.kwapisz]>
2011-04-27 17:58:30,031 DEBUG
[org.jasig.cas.authentication.principal.CredentialsToLDAPAttributePrincipalResolver]
- <Attempting to resolve a principal...>
2011-04-27 17:58:30,031 DEBUG
[org.jasig.cas.authentication.principal.UsernamePasswordCredentialsToPrincipalResolver]
- <Attempting to resolve a principal...>
2011-04-27 17:58:30,031 DEBUG
[org.jasig.cas.authentication.principal.UsernamePasswordCredentialsToPrincipalResolver]
- <Creating SimplePrincipal for [marcin.kwapisz]>
2011-04-27 17:58:30,031 DEBUG
[org.jasig.services.persondir.support.ldap.LdapPersonAttributeDao] - <Created
seed map='{username=[marcin.kwapisz]}' for uid='marcin.kwapisz'>
2011-04-27 17:58:30,031 DEBUG
[org.jasig.services.persondir.support.ldap.LdapPersonAttributeDao] - <Adding
attribute 'uid' with value '[marcin.kwapisz]' to query builder 'null'>
2011-04-27 17:58:30,046 DEBUG
[org.jasig.services.persondir.support.ldap.LdapPersonAttributeDao] - <Generated
query builder '(uid=marcin.kwapisz)' from query Map
{username=[marcin.kwapisz]}.>
2011-04-27 17:58:30,578 DEBUG
[org.jasig.cas.authentication.principal.CredentialsToLDAPAttributePrincipalResolver]
- <Resolved marcin.kwapisz. Trying LDAP resolve now...>
2011-04-27 17:58:30,593 DEBUG
[org.jasig.cas.authentication.principal.CredentialsToLDAPAttributePrincipalResolver]
- <LDAP search with filter "(uid=marcin.kwapisz)">
2011-04-27 17:58:30,593 DEBUG
[org.jasig.cas.authentication.principal.CredentialsToLDAPAttributePrincipalResolver]
- <returning searchcontrols: scope=2; search base=dc=p.lodz.pl;
attributes=[uid]; timeout=1000>
2011-04-27 17:58:30,906 DEBUG
[org.jasig.cas.authentication.principal.CredentialsToLDAPAttributePrincipalResolver]
- <Resolved marcin.kwapisz to marcin.kwapisz>
2011-04-27 17:58:30,906 DEBUG
[org.jasig.cas.authentication.principal.CredentialsToLDAPAttributePrincipalResolver]
- <Creating SimplePrincipal for [marcin.kwapisz]>
2011-04-27 17:58:30,906 DEBUG
[org.jasig.services.persondir.support.ldap.LdapPersonAttributeDao] - <Created
seed map='{username=[marcin.kwapisz]}' for uid='marcin.kwapisz'>
2011-04-27 17:58:30,906 DEBUG
[org.jasig.services.persondir.support.ldap.LdapPersonAttributeDao] - <Adding
attribute 'uid' with value '[marcin.kwapisz]' to query builder 'null'>
2011-04-27 17:58:30,906 DEBUG
[org.jasig.services.persondir.support.ldap.LdapPersonAttributeDao] - <Generated
query builder '(uid=marcin.kwapisz)' from query Map
{username=[marcin.kwapisz]}.>
2011-04-27 17:58:31,234 INFO
[org.jasig.cas.authentication.AuthenticationManagerImpl] - <Resolved principal
marcin.kwapisz>
2011-04-27 17:58:31,234 INFO
[org.jasig.cas.authentication.AuthenticationManagerImpl] - <Principal found:
marcin.kwapisz>
2011-04-27 17:58:31,234 DEBUG
[org.jasig.cas.authentication.AuthenticationManagerImpl] - <Attribute map for
marcin.kwapisz: {category=employee, cn=Marcin Kwapisz 9631}>
2011-04-27 17:58:31,234 INFO
[com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit
trail record BEGIN
=============================================================
WHO: [username: marcin.kwapisz]
WHAT: supplied credentials: [username: marcin.kwapisz]
ACTION: AUTHENTICATION_SUCCESS
APPLICATION: CAS
WHEN: Wed Apr 27 17:58:31 CEST 2011
CLIENT IP ADDRESS: 127.0.0.1
SERVER IP ADDRESS: 127.0.0.1
=============================================================
>
2011-04-27 17:58:31,250 DEBUG
[org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Added ticket
[TGT-1-JF9GeUydafK0KOfiPLW6wJOVAzQqFFtqIl23rXmypmqbqcFlUc-cas] to registry.>
2011-04-27 17:58:31,250 INFO
[com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit
trail record BEGIN
=============================================================
WHO: [username: marcin.kwapisz]
WHAT: TGT-1-JF9GeUydafK0KOfiPLW6wJOVAzQqFFtqIl23rXmypmqbqcFlUc-cas
ACTION: TICKET_GRANTING_TICKET_CREATED
APPLICATION: CAS
WHEN: Wed Apr 27 17:58:31 CEST 2011
CLIENT IP ADDRESS: 127.0.0.1
SERVER IP ADDRESS: 127.0.0.1
=============================================================
>
2011-04-27 17:58:31,250 DEBUG
[org.jasig.cas.web.support.CookieRetrievingCookieGenerator] - <Removed cookie
with name [CASPRIVACY]>
2011-04-27 17:58:31,250 DEBUG
[org.jasig.cas.web.support.CookieRetrievingCookieGenerator] - <Added cookie
with name [CASTGC] and value
[TGT-1-JF9GeUydafK0KOfiPLW6wJOVAzQqFFtqIl23rXmypmqbqcFlUc-cas]>
2011-04-27 17:58:31,250 DEBUG
[org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Attempting to retrieve
ticket [TGT-1-JF9GeUydafK0KOfiPLW6wJOVAzQqFFtqIl23rXmypmqbqcFlUc-cas]>
2011-04-27 17:58:31,250 DEBUG
[org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Ticket
[TGT-1-JF9GeUydafK0KOfiPLW6wJOVAzQqFFtqIl23rXmypmqbqcFlUc-cas] found in
registry.>
2011-04-27 17:58:31,250 DEBUG
[org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Added ticket
[ST-1-r4WMPvMLRS9opdTd1St3-cas] to registry.>
2011-04-27 17:58:31,250 INFO [org.jasig.cas.CentralAuthenticationServiceImpl] -
<Granted service ticket [ST-1-r4WMPvMLRS9opdTd1St3-cas] for service
[http://localhost:8080/cas/services/j_acegi_cas_security_check] for user
[marcin.kwapisz]>
2011-04-27 17:58:31,250 DEBUG
[org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Attempting to retrieve
ticket [TGT-1-JF9GeUydafK0KOfiPLW6wJOVAzQqFFtqIl23rXmypmqbqcFlUc-cas]>
2011-04-27 17:58:31,250 DEBUG
[org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Ticket
[TGT-1-JF9GeUydafK0KOfiPLW6wJOVAzQqFFtqIl23rXmypmqbqcFlUc-cas] found in
registry.>
2011-04-27 17:58:31,250 INFO
[com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit
trail record BEGIN
=============================================================
WHO: marcin.kwapisz
WHAT: ST-1-r4WMPvMLRS9opdTd1St3-cas for
http://localhost:8080/cas/services/j_acegi_cas_security_check
ACTION: SERVICE_TICKET_CREATED
APPLICATION: CAS
WHEN: Wed Apr 27 17:58:31 CEST 2011
CLIENT IP ADDRESS: 127.0.0.1
SERVER IP ADDRESS: 127.0.0.1
=============================================================
>
2011-04-27 17:58:31,281 DEBUG
[org.jasig.cas.client.validation.Cas20ServiceTicketValidator] - <Placing URL
parameters in map.>
2011-04-27 17:58:31,281 DEBUG
[org.jasig.cas.client.validation.Cas20ServiceTicketValidator] - <Calling
template URL attribute map.>
2011-04-27 17:58:31,281 DEBUG
[org.jasig.cas.client.validation.Cas20ServiceTicketValidator] - <Loading custom
parameters from configuration.>
2011-04-27 17:58:31,281 DEBUG
[org.jasig.cas.client.validation.Cas20ServiceTicketValidator] - <Constructing
validation url:
http://localhost:8080/cas/serviceValidate?ticket=ST-1-r4WMPvMLRS9opdTd1St3-cas&service=http%3A%2F%2Flocalhost%3A8080%2Fcas%2Fservices%2Fj_acegi_cas_security_check>
2011-04-27 17:58:31,281 DEBUG
[org.jasig.cas.client.validation.Cas20ServiceTicketValidator] - <Retrieving
response from server.>
2011-04-27 17:58:31,281 DEBUG [org.jasig.cas.web.support.CasArgumentExtractor]
- <Extractor generated service for:
http://localhost:8080/cas/services/j_acegi_cas_security_check>
2011-04-27 17:58:31,281 DEBUG
[org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Attempting to retrieve
ticket [ST-1-r4WMPvMLRS9opdTd1St3-cas]>
2011-04-27 17:58:31,281 DEBUG
[org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Ticket
[ST-1-r4WMPvMLRS9opdTd1St3-cas] found in registry.>
2011-04-27 17:58:31,281 DEBUG
[org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Removing ticket
[ST-1-r4WMPvMLRS9opdTd1St3-cas] from registry>
2011-04-27 17:58:31,281 DEBUG
[org.jasig.cas.ticket.registry.DefaultTicketRegistry] - <Attempting to retrieve
ticket [ST-1-r4WMPvMLRS9opdTd1St3-cas]>
2011-04-27 17:58:31,281 INFO
[com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Audit
trail record BEGIN
=============================================================
WHO: audit:unknown
WHAT: ST-1-r4WMPvMLRS9opdTd1St3-cas
ACTION: SERVICE_TICKET_VALIDATED
APPLICATION: CAS
WHEN: Wed Apr 27 17:58:31 CEST 2011
CLIENT IP ADDRESS: 127.0.0.1
SERVER IP ADDRESS: 127.0.0.1
=============================================================
>
2011-04-27 17:58:31,312 DEBUG [org.jasig.cas.web.ServiceValidateController] -
<Successfully validated service ticket: ST-1-r4WMPvMLRS9opdTd1St3-cas>
2011-04-27 17:58:31,718 DEBUG
[org.jasig.cas.client.validation.Cas20ServiceTicketValidator] - <Server
response: <cas:serviceResponse xmlns:cas='http://www.yale.edu/tp/cas'>
<cas:authenticationSuccess>
<cas:user>marcin.kwapisz</cas:user>
</cas:authenticationSuccess>
</cas:serviceResponse>
>
