Thanks very much for the link Marvin, but I don't think that would solve my problem sorry, as it's within my AuthHandler that the attributes exist, so I think I need to find a way of putting them into the AttributeRepository so that they can be found using the /samlValidate calls by the CAS clients. Am I right in thinking that CAS works like this:
1. User is authenticated by custom auth handler 2. AttributeRepository then takes the username and queries LDAP/MySQL etc to get the attributes and associate them to that user for /samlValidate requests to retrieve If that is the case, do you know if it's possible for the AttributeRepository to use the username to query an Integra server instead of LDAP/MySQL? Thanks, Nathan -- On 21 Jun 2012, at 16:25, Marvin S. Addison wrote: >> I have a custom AuthHandler in my CAS 3.4.11 install which authenticates a >> user and retrieves more user attributes. The problem I have is how to pass >> these attributes back in the response (which is currently a simple true / >> false) so that the CAS client can call the samlValidate url to retrieve >> them? > > https://wiki.jasig.org/display/CASUM/SAML+1.1 provides background and has > links to client configuration for common CAS clients in the "Client Support" > section. > > M > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
