Hello, IMHO, when you say "user level authentication", it seems to mean authorization (User X is allow to access Service A but not B, has some roles in Service A, etc.). This feature is not directly covered by CAS but in our organization, we rely on existence of service related attributes (current values of these attributes are user roles in application) to allow access or not.
Regards. On 06/09/2012 19:02, Rex Posadas wrote: > > Hello All, > > My company is using CAS for service level authentication, meaning we > have service A, B and C. In the CAS management screen we allow > services A and B to authenticate against CAS. That's working. > > What I don't know how to accomplish is "user level" authentication. > For example: In the scenario above, User X is only allowed to log > into service A. > > User X can see the login screen for services A and B. If he tries to > log in to service A, he is successful. If he tries to log in to > service B, he gets an authentication error. > > Is that possible? If so, can someone point me to a reference on how > that's done? > > Thanks in advance. > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
