There are alternatives to re-writing the core interfaces :-)

After Authentication, CAS returns a Ticket Granting Ticket Id.  Ticket 
Granting Tickets along with Authentication information are stored in a 
Ticket Registry.  We generally don't recommend accessing the Ticket 
Registry directly, but in your case it may be necessary.

You can compose an AuthenticationMetaDataPopulator which can add an 
attribute to the Authentication map that specifies your grace login 
information.

 From within an Action in the web flow (I recommend you add to the web 
flow rather than modifying classes directly) you can access the Ticket 
Registry, and using the Ticket Granting Ticket Id retrieve the 
Authentication object, which would contain the information you are 
looking for.

Again, generally Authentication information is only supposed to be 
exposed on ticket validation (which is why its only returned when an 
Assertion is returned) but it can be accessed outside that as long as 
you have a ticket id.

-Scott

Jason Tesser wrote:
> Well haven't gotten any comments from anyone but here is what I am 
> going to do.
>
> I am going to make my own CentralAuthenticationServiceImpl and 
> Interface which expose the Authentication object.  In the Impl class I 
> am going to look for a specific exception which means the user is on 
> grace logins.  I will set graceLogins to true in my Authentication 
> Object, which will also be my own, and then in my 
> AuthenticatFormAction I can look for the graceLogin and if it is true 
> I can return result("grace") which I handle in the web flow.  In the 
> web flow I send it to its own jsp warning the user of the grace login 
> and when the user hits continue I send them to sendTicketGrantingTicket. 
>
> If anyone has any experience here, would you be willing to provide 
> some input?
>
> On 7/18/06, *Jason Tesser* < [EMAIL PROTECTED] 
> <mailto:[EMAIL PROTECTED]>> wrote:
>
>     I think I maybe I could use the warnAction in the webflow but I am
>     not exactly sure how.  As I said before I need to warn the user
>     before redirecting back to the callbackurl that their password has
>     expired and they are on grace logins.  If someone could give me an
>     idea on the best way to do this in CAS I would appreciate it. 
>     Thank you
>
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> Yale CAS mailing list
> [email protected]
> http://tp.its.yale.edu/mailman/listinfo/cas
>   

_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas

Reply via email to