Hello,
I found the solution to my use case. I got some time to work on this and
found that the credentials serves my needs.
Using it in the flow by transitioning on the expression
credentials.username enabled me to redirect the user to different flow
logic. The code is:
<action-state id="occLumadminCheck">
<evaluate expression="credentials.username" />
<transition on="admin-account" to="pwmBypassEndState" />
<transition to="normal-flow” />
</action-state>
Ken
On Thu, Oct 31, 2013 at 3:19 PM, Kenneth Erard <[email protected]>wrote:
> Hello,
>
> I'm trying to develop some webflow logic that redirects a particular user
> ID during authentication. The redirect is to another action-state before
> the user ends up in a custom flow for a password management system (PWM).
> The user is an admin user/service account that does not exist within the
> seperate LDAP source that the password management software uses to
> authenticate users, which causes this admin user's authentication to fail.
>
> The approach I was hoping to use was a string match for the current user
> id, similar to evaluating services id. So, in pseudocode the login would
> look like this:
>
> Evaluate service id
> If service is a service that should be front-ended by PWM
> If the user is an admin user
> Send the user to the normal end state
> End of Flow
> If the user isn't an admin user
> Send the user to the custom PWM end state
> End of Flow
> If service doesn't match a service that should be front-ended by PWM
> Send the user to the normal end state
> End of Flow
>
>
> As said above, I haven't had any difficulty with modifying the web flow
> based on service ids, but am at a loss for evaluating the user name in the
> flow. Is the user principal stored as an object that can be evaluated in
> the web flow?
>
> Thanks,
>
> Ken
>
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
