.and if you need an example on how to configure, here's a template that should get you started with the basics:
https://github.com/UniconLabs/CASGrouperWebServicesWebApplication This is a sample .NET application that uses Grouper to determine access policy and roles via a custom role provider. The grouper implementation aside, the rest should be pretty savvy template to get you going. -Misagh From: Scott [mailto:[email protected]] Sent: Monday, March 04, 2013 9:30 AM To: [email protected] Subject: Re: [cas-user] Dotnet client integration Hi Farzan, IIRC, the CasAuthenticationModule doesn't handle authorization and doesn't expose any roles in the ticket. If you are checking for roles in your application, you will need to use a separate RoleManager provider implementation to retrieve the roles that the user has. By the time the role manage module runs, the request will either have a principal (the request is authenticated), or not (the request is anonymous). The RoleManager is responsible for "Now that I know this user is X, give me a list of roles that X has". -ScottH On Sat, Mar 2, 2013 at 5:30 AM, Farzan Qureshi <[email protected]> wrote: Hi, I am trying to casify a .Net application. I am redirected to login page. I log in and can see in logs that I get authenticated and CAS provide the username to the .Net application. But in my .Net application it keeps redirecting to CAS login and CAS on the other hand create serviceValidate tokens again and again. Under my .Net application logs I see the following: <Type TimeStamp="10:40:13 PM">Error</Type> <Id>50003</Id> <Message>The method or operation is not implemented.</Message> <Details>System.NotImplementedException: The method or operation is not implemented. at DotNetCasClient.Security.CasPrincipal.IsInRole(String role) in C:\Projects\Jasig\CAS\dotnet-client\trunk\DotNetCasClient\Security\CasPrin cipal.cs:line 102 at System.Web.Configuration.AuthorizationRule.IsTheUserInAnyRole(StringCollec tion roles, IPrincipal principal) at System.Web.Configuration.AuthorizationRule.IsUserAllowed(IPrincipal user, String verb) at System.Web.Configuration.AuthorizationRuleCollection.IsUserAllowed(IPrinci pal user, String verb) at System.Web.UI.WebControls.WebParts.PersonalizationProvider.DetermineUserCa pabilities(WebPartManager webPartManager) at System.Web.UI.WebControls.WebParts.WebPartPersonalization.Load() at System.Web.UI.WebControls.WebParts.WebPartPersonalization.LoadInternal() at System.Web.UI.WebControls.WebParts.WebPartManager.OnInit(EventArgs e) at System.Web.UI.Control.InitRecursive(Control namingContainer) at System.Web.UI.Control.InitRecursive(Control namingContainer) at System.Web.UI.Control.InitRecursive(Control namingContainer) at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)</Details> </Message> Any ideas what is really happening? Thanks in anticipation Farzan This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager ([email protected]). Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of the company. Finally, the recipient should check this email and any attachments for the presence of viruses. Rosmini College accepts no liability for any damage caused by any virus transmitted by this email. -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
