On Fri, Feb 21, 2014 at 12:14:17PM -0800, Tom Poage wrote: > The username/principal is exposed through service ticket validation as > entered at the login page, so if the client enters "Fred" one time and > "FRED" another, it'll match the same LDAP entry, but to any > case-sensitive app downstream, it looks like two different clients. > > Ended up implementing a CredentialsToPrincipalResolver:
We kludged it and just tweaked the CAS login page to lowercase the username before submitting it :). Should catch 99% or more of the problems... -- Paul B. Henson | (909) 979-6361 | http://www.csupomona.edu/~henson/ Operating Systems and Network Analyst | [email protected] California State Polytechnic University | Pomona CA 91768 -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
