I modified CAS per the wiki: https://wiki.jasig.org/display/CASUM/Attributes
to deliver attributes using the CAS 2.0 protocol. One of these is a multivalued attribute, and I was having a problem getting it to work with an application that I initially blamed on the application, but on further investigation: <cas:serviceResponse xmlns:cas='http://www.yale.edu/tp/cas'> <cas:authenticationSuccess> <cas:user>henson</cas:user> <cas:attributes> <cas:csupomonaEduPersonAffiliation>[eoc_essential, employee, member, staff]</cas:csupomonaEduPersonAffilication> </cas:attributes> </cas:authenticationSuccess> </cas:serviceResponse> It looks like CAS is sending a multivalued attribute as a single xml value consisting of the individual values separated by commas wrapped inside of square brackets? I found one link that seems to indicate this is expected behavior: https://www.purdue.edu/apps/account/docs/CAS/CAS_java_client.jsp But reviewing the source code for the official PHP CAS client, it seems to expect multivalued attributes to be encoded in XML in the more usual way of actually having multiple XML entries: <cas:attributes> <cas:csupomonaEduPersonAffiliation>eoc_essential</cas:csupomonaEduPersonAffilication> <cas:csupomonaEduPersonAffiliation>employee</cas:csupomonaEduPersonAffilication> <cas:csupomonaEduPersonAffiliation>member</cas:csupomonaEduPersonAffilication> <cas:csupomonaEduPersonAffiliation>staff</cas:csupomonaEduPersonAffilication> </cas:attributes> What is the "unofficial official" way of handling attributes in the CAS 2.0 protocol? Should I complain to the application vendor that they are not doing the right thing, or do I need some different modification to casServiceValidationSuccess.jsp other than the one listed on the wiki that will encode the attributes in a different way? Thanks much... -- Paul B. Henson | (909) 979-6361 | http://www.csupomona.edu/~henson/ Operating Systems and Network Analyst | [email protected] California State Polytechnic University | Pomona CA 91768 -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
