Yes your wright,
the difference in my case is that we already had sub-classed the
UsernamePasswordCredentials in base of our application needs. What I have done
is to generalize the credentials object to handle fields other then user name
and password, so I have sub classed UsernamePasswordCredentials. Actually the
info that you want to send to client are application dependent therefore also
the solution is application dependent. In my case I not only I can send but I
can also eventually receive other info fields. May be I am missing something
but the
interface method Principal resolvePrincipal(Credentials credentials) receives
only a crediantials object and I don't like injecting other services that are
not passed as parameters to a method.
I breaked the xml schema because I added other custom elements within
serviceResponse element; the schema doesn't allow other elements then:
authenticationSuccess
authenticationFailure
proxySuccess
proxyFailure
Yes, you can avoid this wrapping the the default cas xml response format for
example:
<new-xml-doc-root>
<cas:serviceResponse/>
<custom:customInfo/>
</new-xml-doc-root>
but what I was saying is that may be a schema extension point would be a better
solution.
Best,
Indrit
t ray <[EMAIL PROTECTED]> ha scritto: Indrit,
Thanks for your response. I have had to make the following changes-
- Subclass Principal (new class)
- Implement CredentialsToPrincipalResolver (new class)
- casServiceValidationSuccess.jsp (add new parameters)
I didn't have to make any changes to the other files you have mentioned. Maybe
I am missing something? I also am not sure what changes you had to make to
cas-servlet.xml and how that broke xml schema. Could you or someone please
explain? I am afraid that I may not have done all changes and that will break
something elsewhere...
Thanks,
Ray
----- Original Message ----
From: indrit Lavoro <[EMAIL PROTECTED]>
To: Yale CAS mailing list <[email protected]>
Sent: Wednesday, February 7, 2007 3:01:21 AM
Subject: Re: How to return more than username after authentication?
I have already done something like this but what I observed is that I breaked
the xml schema related to the 'http://www.yale.edu/tp/cas' namespace. I made
changes to the following files on the server side( that I remember ) :
- UsernamePasswordCredentials (subclass)
- CredentialsBinder (implement)
- SimplePrincipal (subclass)
- CredentialsToPrincipalResolver (implement)
- CasServlet.xml (changes to authenticationViaFormAction)
- casServiceValidationSuccess.jsp (add new parameters)
May be for the xml community is necessary to create an extending point to the
related W3CSchema for the response's xml format.
Best,
Indrit
"Stephen A. Cochran" <[EMAIL PROTECTED]> ha scritto:
On Feb 2, 2007, at 5:34 PM, t ray wrote:
> Is it possible (and advisable) to return than just the username
> after successful login? I would like to be able to return a small
> amount of user data apart from the name such that this extra
> information is also available along with the user name.
Dartmouth has extended the standard CAS 2.0 XML response to include
some non-standard attributes. This involves extending some of the
classes in the server, as well as updating the clients to present
these new fields to users.
The archives of this mailing list should contain a fairly detailed
description of the design we chose.
Steve Cochran
Dartmouth College
_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas
---------------------------------
Vinci i biglietti per FIFA World Cup in Germania!
_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas
---------------------------------
Check out the all-new Yahoo! Mail beta - Fire up a more powerful email and get
things done faster._______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas
---------------------------------
L'email della prossima generazione? Puoi averla con la nuova Yahoo! Mail_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas
