Marvin, I am trying to understand the set up of the <pdcCredentialsResolver> bean in you deployerConfigContext.xml
<bean id="pdcCredentialsResolver" class="edu.vt.middleware.cas.authentication.principal.PDCCredentialsToPrincipalResolver" parent="abstractCredentialsResolver" p:attributeRepository-ref="attributeRepository2" p:principalCache-ref="principalCache"> What is the purpose of the attributeRepository-ref declaration? Is this used to map uid value returned from the PDCCredentialsToPrincipalResolver to an LDAP attribute for querying the LDAP? <bean id="attributeRepository2" parent="baseAttributeRepository"> <property name="personAttributeDaos"> <list> <ref local="ldapAttributesByUid" /> <ref local="staticAttributes" /> </list> </property> </bean> <bean id="ldapAttributesByUid" parent="baseLdapAttributeRepository" class="org.jasig.services.persondir.support.ldap.LdapPersonAttributeDao"> <!-- Attribute mapping beetween principal (key) and LDAP (value) names used to perform the LDAP search. By default, multiple search criteria are ANDed together. --> <property name="queryAttributeMapping"> <map> <entry key="username" value="uid" /> </map> </property> </bean> So this ldapAttributesByUid bean maps the UID (value="uid") returned from the PDCCredentialsToPrincipalResolver to the LDAP value "username"? Or am I missing something? Thanks again. Schawn- ________________________________ From: Marvin Addison <[email protected]> To: [email protected] Sent: Tuesday, November 20, 2012 3:45 PM Subject: Re: [cas-user] Using LDAP and X509 for authentication/authorization > Can I assume that in your deployConfigContext.xml file you have the > PDCCredentialsToPrincipalResolve declared in the > credentialsToPrincipalResolvers property? That's correct. > Is there more set up in the deployerConfigContext.xml file that I am missing? Hard to say. I'm hopeful that studying our config will provide some insight or at least lead to further targeted questions. > Is there a way you can share your deployerConfigContext.xml file or a portion > of it so I can see how you set up the configuration file? That's available in the source tree I cited previously: https://svn.middleware.vt.edu/svn/middleware/cas/cas-server/tags/cas-server-3.4.12/vt-cas-server-webapp/src/main/webapp/WEB-INF/deployerConfigContext.xml M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
