Here’s an example of a custom AuthenticationHandler that authenticates against Stormpath cloud service:
https://github.com/Unicon/cas-addons/blob/master/src/main/java/net/unicon/cas/addons/authentication/handler/StormpathAuthenticationHandler.java In your case, you would need to create a custom Credentials to encapsulate the “domain” data and customize a login flow to package that “domain” data in it before passing it further down the processing pipeline to authentication handler, etc. Best, Dmitriy. On Nov 13, 2013, at 9:23 AM, Idan Fridman <[email protected]> wrote: > Thanks for your response. > Do you have any example where you created specific authentication handler > for any other purpose? > > Thanks, > Idan. > > From: Jérôme LELEU [mailto:[email protected]] > Sent: Wednesday, November 13, 2013 11:41 AM > To: [email protected] > Subject: Re: [cas-user] Sending domain parameter > > Hi, > > OK. I understand your request. > You can't do that out of the box. You need some customization to do that : > you will need to create a specific authentication handler, in which you will > need to get the service from the url and use it dynamically to build your SQL > query. > Best regards, > Jérôme > > > > 2013/11/13 Idan Fridman <[email protected]> > Hi, > > Did you understand my target? > Thanks. > > > From: Idan Fridman > Sent: Tuesday, November 12, 2013 3:13 PM > To: '[email protected]' > Subject: RE: [cas-user] Sending domain parameter > > Hi, > Ill try to explain what I need. > > I am using CAS (beside of authentication) to retrieve user attributes(in my > case PERMISSIONS) from DB. > > The user roles retrieved from Database configured this way: > > <bean > class="org.jasig.services.persondir.support.jdbc.SingleRowJdbcPersonAttributeDao"> > <constructor-arg index="0" ref="dataSource"/> > <constructor-arg index="1" value="SELECT * FROM USER_DATA WHERE > {0}"/> > <property name="queryAttributeMapping"> > <map> > <entry key="username" value="LOGINNAME"/> > </map> > </property> > <property name="resultAttributeMapping"> > <map> > <entry key="PERMISSIONS" value="PERMISSIONS"/> > <entry key=" DOMAIN_NAME " value=" DOMAIN_NAME "/> > </map> > </property> > </bean> > > > My table in the database includes the column "DOMAIN_NAME". > > I want to adjust my query by involving the DOMAIN_NAME in the select clauses, > something like this: SELECT * FROM USER_DATA WHERE {0} and DOMAIN_NAME=? > > The question how I retrieve the DOMAIN_NAME from the client? > > If for example a user authentication from domain_name=www.mywebsite.com I > would like to have something like this: SELECT * FROM USER_DATA WHERE {0} and > DOMAIN_NAME='www.mywebsite.com' > > Thanks, > Ray. > > > From: Jérôme LELEU [mailto:[email protected]] > Sent: Tuesday, November 12, 2013 3:07 PM > To: [email protected] > Subject: Re: [cas-user] Sending domain parameter > > Hi, > > I'm not sure to understand your need : the CAS service sent to the CAS server > is the url of the CASsified application (example : > http://myserverhost/cas/login?service=http://myapphost/myapp). > The CAS service already provides you the domain name of the CAS > client/application. > Best regards, > Jérôme > > > 2013/11/12 ray <[email protected]> > Hi, > Want to know if it's possible to send additional attributes (for example > domain name) from CAS-client to CAS server? > > I would like the client application to send it's Domain name to a CAS server. > The domain name will help me to retrieve domain-based-attribute within the > CAS response to the user. > > thanks, > ray. > -- > You are currently subscribed to [email protected] as: [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > This e-mail and the information it contains may be privileged and/or > confidential. It is intended solely for the use of the named recipient(s). If > you are not the intended recipient you may not disclose, copy, distribute or > retain any part of this message or attachments. If you have received this > e-mail in error please notify the sender immediately [by clicking 'Reply'] > and delete this e-mail. > -- > You are currently subscribed to [email protected] as: [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > This e-mail and the information it contains may be privileged and/or > confidential. It is intended solely for the use of the named recipient(s). If > you are not the intended recipient you may not disclose, copy, distribute or > retain any part of this message or attachments. If you have received this > e-mail in error please notify the sender immediately [by clicking 'Reply'] > and delete this e-mail. > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
