I'm trying to use CAS to authenticate access to a set of custom applications that require the accessing user to have an Oracle account. I've got it set up using the BindModeSearchDatabaseAuthenticationHandler, and the authentication portion appears to be working correctly. My next step is to authorize the user, such that certain aspects of the application are available (or not) depending on which Oracle Roles have been granted to the user. The list of granted roles can be easily retrieved by the connected user by executing a "select granted_roles from user_role_privs". Unfortunately, I'm at a loss currently in figuring out how to transport those roles to the point that the application can perform a request.isUserInRole(x) and have it return a viable answer.
Has anyone else used the supplied JDBC adaptors in this manner? I've seen where SecurityFilter has incorporated CAS into the JDBCRealm such that they are retrieving the user roles from the database (from a specific table within the database, I should say) and propagating them forward. Unfortunately, it's not readily apparent how they are doing this. John Graves Advanced Systems Group Essex This electronic message and any files transmitted with it contain information which may be privileged and/or proprietary. The information is intended for use solely by the intended recipient(s). If you are not the intended recipient, be aware that any disclosure, copying, distribution or use of this information is prohibited. If you have received this electronic message in error, please advise the sender by reply email or by telephone (301-939-7000) and delete the message.
_______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
