Anna Pakkala wrote: > > On Jan 18, 2007, at 5:00 PM, Perry Minchew wrote: > >> So far I have liferay portal successfully logging in using cas. In >> liferay, we search for a user by their email address and company id >> for the portal. That returns a “User” object which has >> user.getUsername() and user.getPassword(). We then submit that >> username and userPassword back to a login method to start the users >> session. Easy enough. >> > > Sorry for hijacking your thread and bringing it back to life at this time.. > > I just installed Liferay, and wanted it to use CAS for authentication. > The problem I have (following the detailed instructions at the LIferay > site) I kept getting the "com.liferay.portal.NoSuchUserException: No > User exists with the primary key xxxx" after succesfull cas-login > > Which means of course that Liferay can't find the user in it's own > database and so denies access, which kind of sucks since the whole > purpose of single sign-on is to get rid of multiple > user-databases...right? :) > > So could you (or anyone else who has set this up successfully) step > through how you configured Liferay to accept the CAS credentials as-is. > After that, the user info should be taken from ldap, and preferably not > inserted into liferays own database at all. > I've only been playing with Liferay since yesterday, but I figured that > someone has probably done this before. > > Using liferay 4.2.1, casclient 2.11 and CAS-server 3.0.5 >
Using CAS gets rid of separate passwords, but not separate user information. CAS does the authentication, but then Liferay still needs its users table to store users' names, email addresses, etc. I have a schedule job set to populate the Liferay users table with the correct information for our users. I believe it is also possible to write a Java class (or use one.. I can't remember if the portal comes with one already) that creates/updates Liferay user info from LDAP automatically whenever the user logs in. -- Dave Brondsema Software Developer Cornerstone University
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
