Just glancing over the current code, I don't think the .NET client does support CAS 2.0 attribute release right now. See: https://wiki.jasig.org/display/CASC/Client+Feature+Matrix
The PHP client apparently accepts 3 different styles. https://github.com/Jasig/phpCAS/blob/master/source/CAS/Client.php (see _readExtraAttributesCas20). The AuthenticationSuccess xml serialization class is here and it doesn't include any of those 3 formats. I'm assuming the first one is the most widely adopted? The reason I ask is that it would be difficult to get all 3 working using the serialization mechanism but pretty straightforward to implement one: https://github.com/Jasig/dotnet-cas-client/blob/master/DotNetCasClient/Validation/Schema/Cas20/AuthenticationSuccess.cs With the serialization changes in place, it should just involve reader the attributes from the AuthenticationSuccess object and setting them on the assertion: https://github.com/Jasig/dotnet-cas-client/blob/master/DotNetCasClient/Validation/TicketValidator/Cas20ServiceTicketValidator.cs -ScottH On Tue, Jun 4, 2013 at 5:13 PM, Gasper, John <[email protected]> wrote: > Hi Brian,**** > > ** ** > > I’d look into the hack that Marvin referenced. You’ll have to modify your > server install, but if memory serves correctly it’s pretty straight > forward. I didn’t realized that the .net client supports the CAS20 > attribute release, but Marvin would be in the know.**** > > ** ** > > John**** > > ** ** > > *From:* Brian [mailto:[email protected]] > *Sent:* Tuesday, June 4, 2013 11:50 AM > *To:* [email protected] > *Subject:* [cas-user] RE: Re:[cas-user] .NET CAS Client Attributes & > ClearPass**** > > ** ** > > ** ** > > John,**** > > ** ** > > Thanks for the reply... If I'm reading some of the examples on the Java > and PHP side right attribute release via cas20 is supported, if it an issue > of the .NET client not supporting attribute release using cas20?**** > > ** ** > > I need to sort out a solution, and have seen a could of posts with people > using clearpass (the reason I need proxy tickets) and attributes together > but they didn't actually com with enough details for me to sort through how > to make it work.**** > > ** ** > > ** ** > > Thanks**** > > Brian**** > > ** ** > > ** ** > > On June 4, 2013 at 2:23:24 PM, Gasper, John ([email protected]) wrote:**** > > Hi Brian,**** > > **** > > I don’t think I’ve seen anyone respond to you or not. I don’t think you > can get a Proxy ticket and get attribute release from Saml11. The new CAS > 3.0 protocol, which I think is slated for CAS Server v4.0, should allow you > to do both.**** > > **** > > John**** > > **** > > *From:* Brian Raymond [mailto:[email protected] <[email protected]>] > > *Sent:* Wednesday, May 29, 2013 5:07 AM > *To:* [email protected] > *Cc:* [email protected] > *Subject:* Re:[cas-user] .NET CAS Client Attributes & ClearPass**** > > **** > > Still beating my head against the wall on this one, I can't determine how > to get attributes in the .NET client using the cas20 protocol, or get proxy > tickets when using saml11... Would really appreciate any insights..**** > > **** > > Thanks**** > > **** > > On Mon, May 27, 2013 at 7:22 PM, Brian <[email protected]> wrote:**** > > I must be missing something with respect to the configuration I am > attempting to use, hoping for some insight on the list.**** > > **** > > Goal: .NET CAS client access attributes and using ClearPass..**** > > **** > > Current configuration: **** > > .NET Client (latest git)**** > > - Working for authentication and ClearPass using cas20 protocol.**** > > - I could not access the attributes using cas20, changed it saml11 and > attributes work however ClearPass does not.**** > > **** > > With saml11 I can in fact get the attributes and it works great HOWEVER > when using saml11 the .NET client errors with an "Unable to obtain CAS > Proxy Ticket" error when calling GetPassword to obtain the user password. > Thus far I have attempted to set the CAS server to return 2.0 SAML without > any changes in behavior, I am out of ideas at this time and am hoping for > some guidance from the list.**** > > **** > > Thanks**** > > **** > > -- > Sent with Airmail <http://airmailapp.info/tracking>**** > > **** > > -- > You are currently subscribed to [email protected] as: [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user**** > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user**** > > -- > You are currently subscribed to [email protected] as: [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user**** > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
