> We look up the role > of the user who is trying to login inside Luminis LDAP and then > determine if Luminus LDAP or AD to authenticate against. Is this > do-able inside CAS?
The component architecture of CAS supports this, but you would have to write some custom components to implement the logic. I would recommend a custom AuthenticationManager that implements the flow above. The natural role of AuthenticationManager is to determine an appropriate AuthenticationHandler to process the credentials. Your custom AM would simply perform the LDAP query against Luminis LDAP to determine which, if any, handler should attempt to authenticate credentials. M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
