> Now, I'd like to add all the properties of the certificate (serialNumber, 
> issuer dn,...) as attributes.

You'd be better served by simply implementing a custom
CredentialsToPrincipalResolver that does not use PersonDirectory and
then providing a stub attribute resolver; for example:

  <bean id="attributeRepository"
    class="edu.vt.middleware.cas.persondir.StaticPersonAttributesDao">
    <property name="backingMap">
      <map>
        <entry key="accountState" value="UNDEFINED" />
        <entry key="groupMembership" value="UNDEFINED" />
        <entry key="passwordState" value="UNDEFINED" />
        <entry key="personType" value="UNDEFINED" />
        <entry key="uid" value="UNDEFINED" />
      </map>
    </property>
  </bean>

StaticPersonAttributesDao is a very simple class that uses a static
map for an attribute source. For service registry integration, all you
need are the same attribute names as those which your
CredentialsToPrincipalResolver obtains and everything will work fine.

M

-- 
You are currently subscribed to [email protected] as: 
[email protected]
To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user

Reply via email to