Hi Guy Thomas
You wrote a great document. Thank you very much.
I was reading it two days 'bit by bit', because I have a similar setup -
authentication via legacy web-service, one additional field on login page,
one additional attribute passed in Principal to service.
But........ looks like you missed one little but very important thing in
doc. How to make attributes to be returned available to service.
You have two attributes mentioned for *attributeRepository*
<bean id="attributeRepository"
class="org.jasig.services.persondir.support.StubPersonAttributeDao">
......
<entry key="roles" value="roles" />
<entry key="domain" value="domain" />
in order to get them to service inside Principal instance, you have to
specify them in *serviceRegistry* TOO:
<bean id="serviceRegistryDao"
.......
*<property name="allowedAttributes">*
<list>
<value>roles</value>
<value>domain</value>
</list>
</property>
I didn't find that very important step in your document -
https://wiki.jasig.org/display/CASUM/Attributes
Anyway, thanks you a lot for written step by step first setup manual. It
was very helpful for me as newbie.
Yuriy.
среда, 31 октября 2012 г., 14:43:28 UTC+2 пользователь Guy Thomas написал:
>
> The document mentioned below is now available:
>
> -
>
> By importing the Word document the layout is a bit messed up (especially
> code fragments and lists).
>
> [Thanks to Andrew Petro for helping me sort out some issues about setting
> up a personal space in the wiki.]
>
> - On Google Drive:
> cas-setup_public.pdf<https://docs.google.com/open?id=0BxKC_uHFW_sDVU5FcXZmcTh2NUE&invite=CLvzhqkE>
>
>
>
> Comments are welcome.
>
>
>
> *Van:* Guy Thomas [mailto:[email protected] <javascript:>]
> *Verzonden:* woensdag 31 oktober 2012 9:03
> *Aan:* [email protected] <javascript:>
> *Onderwerp:* [cas-user] doc about initial set-up
>
>
>
> I finished my first (basic) set-up of a CAS server and two CAS clients. In
> order to organize the information I found on the CAS site, in the mailing
> list and on the internet I created a document (MS-Word and PDF). It also
> contains some questions left after the initial set-up.
>
>
>
> I don’t know if people in this list struggling with a first set-up might
> be interested. If that’s the case, I’ll gladly share the information with
> you as is. Of course, you have to be aware that the document can and
> certainly will contain incorrent statements, assumptions, etc. Maybe an
> experienced CAS administrator could go through the document and correct the
> most obvious flaws.
>
>
>
> If people are interested, what’s the best way to distribute the
> information in the document?
>
>
>
> The set-up has two special “features”:
>
> · A user who wants to log in has to provide a “domain” next to a
> username and a password. A domain is a protected environment on the web,
> for example an extranet.
>
> · Authenticating a user is realized by means of a (SOAP-based) web
> service. A client layer for this web service is integrated in the CAS
> server. This can be considered an indirect variant of JDBC authentication.
>
>
>
>
>
>
>
> Guy Thomas
>
> Analist-Programmeur
>
> Dienst Projecten en Ontwikkelingen
>
>
>
> Provinciehuis
>
> Provincieplein 1
>
> 3010 Leuven
>
>
>
> Tel: 016267945
>
>
>
>
> ------------------------------
>
> Aan dit bericht kunnen geen rechten worden ontleend. Alle berichten naar
> dit professioneel e-mailadres kunnen door de werkgever gelezen worden. In
> het kader van de vervulling van onze taak van openbaar belang nemen wij uw
> relevante persoonlijke gegevens op in onze bestanden. U kunt deze inzien en
> verbeteren conform de Wet Verwerking Persoonsgegevens van 8 december 1992.
>
> Het ondernemingsnummer van het provinciebestuur is 0253.973.219
>
> --
> You are currently subscribed to [email protected] <javascript:> as:
> [email protected] <javascript:>
> To unsubscribe, change settings or access archives, see
> http://www.ja-sig.org/wiki/display/JSG/cas-user
>
>
>
> ------------------------------
> Aan dit bericht kunnen geen rechten worden ontleend. Alle berichten naar
> dit professioneel e-mailadres kunnen door de werkgever gelezen worden. In
> het kader van de vervulling van onze taak van openbaar belang nemen wij uw
> relevante persoonlijke gegevens op in onze bestanden. U kunt deze inzien en
> verbeteren conform de Wet Verwerking Persoonsgegevens van 8 december 1992.
>
> Het ondernemingsnummer van het provinciebestuur is 0253.973.219
>
> --
> You are currently subscribed to [email protected] <javascript:> as:
> [email protected] <javascript:>
> To unsubscribe, change settings or access archives, see
> http://www.ja-sig.org/wiki/display/JSG/cas-user
>
>
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
