Re: Get user's attributes from ldap after login

Wed, 02 Apr 2008 12:40:40 -0700 

Per the instructions in the wiki you either need to explicitly add user
names to the deployerConfigContext.xml's UserDetailsService object or add
your own custom (or Acegi-defined) UserDetailsService to manage your users
access to that application.

-Scott

On Wed, Apr 2, 2008 at 9:32 AM, ana castro lamas <[EMAIL PROTECTED]>
wrote:

>
>
>
>
> Hello,
>
> I have cas server 3.1.1  working with Ldap. I'm able to login and obtain a
> ticket.
> Now I want to obtein the user's mail from ldap. I've tried using
> "org.jasig.services.persondir.support.ldap.LdapPersonAttributeDao".
> I'm using this:
>
>
> <bean id="attribRepository"
>
> class="org.jasig.services.persondir.support.ldap.LdapPersonAttributeDao">
>         <property name="baseDN" value="o=empresas" />
>             <!-- value="dc=example,dc=com" />  -->
>
>         <!-- This query is used to find the entry for populating
> attributes. {0} will be replaced by the new Principal ID extracted from the
> ldap-->
>         <property name="query" value="(cn={0})" />
>
>         <property name="contextSource" ref="contextSource" />
>         <property name="ldapAttributesToPortalAttributes">
>             <map>
>                 <!-- Mapping beetween LDAP entry's attributes (key) and
> Principal"s (value) -->
>
>
>                  <entry value="mail" key="mail" />
>
>
>             </map>
>         </property>
>     </bean>
>
> If I delete de original StubPersonAttribureDao I obtain context=null
>
>
>
> I've read "Populate Principal's attributes with LDAP repository" in the
> wiki, but I can't configure Service's Management.
> When I go to https://localhost:8443/cas/services I get a ticket:
>                   2008-04-02 12:22:26,658 INFO
> [org.jasig.cas.CentralAuthenticationServiceImpl] - <Granted service ticket
> [ST-2-99AoTOMOHEx2VajAH4Pu] for service                      [
> https://localhost:8443/cas-web/services/j_acegi_cas_security_check] for
> user [user1]>
>
>  but returns a message that said:
>
>                      Authorization Failure
>
>                     You are not authorized to use this application for the
> following reason: Could not find user: user1.
>
>  something like "can't find user"
>
> I need the user's mail to work with google services. My credentials are
> userName, companyName and password, so the only way I have to idintefied a
> user with google is by his mail.
>
> What could I do?
>
> Thanks.
>
>
>
>
>
>
>
> _______________________________________________
> Yale CAS mailing list
> [email protected]
> http://tp.its.yale.edu/mailman/listinfo/cas
>
>


-- 
-Scott Battaglia
PGP Public Key Id: 0x383733AA
LinkedIn: http://www.linkedin.com/in/scottbattaglia

_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas

Reply via email to