Hi Bill, The attributes aren't carried around in cookies but rather are part of the per service validation response from CAS. You need to both define the global set of attributes that will be pulled from ldap at the CAS server, and configure the subset of attributes to be released per service.
For more info. on defining that set of ldap attributes that you will be pulling for principals see: https://wiki.jasig.org/display/CASUM/Attributes To configure per service attribute release, this must be accomplished in the CAS service management console: See: https://wiki.jasig.org/display/CASUM/Adding+a+New+Service The index.jsp example at: https://wiki.jasig.org/display/CASC/Saml11TicketValidationFilter+Example may give you some context on how to pull out released attributes at the client side. Regards, Brian On Sun, Mar 4, 2012 at 8:11 PM, Bill Scully <[email protected]> wrote: > Hi, > > I'm new to CAS, have a working instance with authn to LDAP, but would like > to know if it's possible to store LDAP attributes in a CAS Cookie so that > they can be interrogated by another service? If so, would you mind > pointing me to info. on how I can set this up? > > Thanks for taking the time to read this and any help you can offer. > > Bill > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
