Brian, One of my colleagues, JJ, informed me that we have actually implemented that logic for CAS. You can check it out at https://github.com/UniconLabs/cas-surrogate-principal (info for adding to your pom: https://bintray.com/uniconiam/maven/cas-surrogate-principal/view). It¹s as is, but should probably get you were you want to go.
Thanks, John -- John Gasper IAM Consultant Unicon, Inc. PGP/GPG Key: 0xbafee3ef On 5/4/15, 9:30 AM, "John Gasper" <[email protected]> wrote: >Hi Brian, > >Out of the box, CAS Server does not support user impersonation by another >user. However, I know of several CAS implementers that have written >handlers that support this, so it is possible if you are willing to jump >into some code. > >John > >-- >John Gasper >IAM Consultant >Unicon, Inc. >PGP/GPG Key: 0xbafee3ef > > > > > > >On 5/1/15, 12:15 PM, "Brian Gibson" <[email protected]> >wrote: > >>Hi all. >> >>For app-testing we need the ability to login as an admin user (user-A) >>but have CAS return the attributes of another user (user-B) so user-A is >>logged into the web service as user-B. Is this possible? >> >>We are using CAS 3.5.3 with AD as the back end. >> >>Thanks >> >>-- >> >>++++++++++++++++++++++++++++ >>Brian Gibson >>Systems Administrator >>Wheaton College >> >>Are you a musician? If so visit my Arbans Online music site at >>http://arbansonline.com and listen & contribute >> >> >>-- >>You are currently subscribed to [email protected] as: >>[email protected] >>To unsubscribe, change settings or access archives, see >>http://www.ja-sig.org/wiki/display/JSG/cas-user > > > >-- >You are currently subscribed to [email protected] as: >[email protected] >To unsubscribe, change settings or access archives, see >http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
