> I can confirm that it works, but as I can't wait further for 4.x release of > CAS, It will stay with my ugly hack until the next upgrade I'll do :-).
Totally understand. > I think > X509Credentials should show much more details about certificate (i.e > decoding some pieces of information like notBefore, notAfter dates, DN, > serialNumber, ...) I don't see the point. If you have access to the certificate, you have access to that data. I can, however, see the point of communicating the reason for the authentication failure clearly via exceptions. M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
