Hi
I've chosen CAS to replace our existing SSO. I've managed to get it
authenticating against our LDAP server, and protecting our apps.
Now, my apps need to know about the roles that a user has (also in LDAP). These
were previously obtained from a Principal object stored in the session of a
logged in user.
I'm very new to this, but from what I can tell, CAS only looks after the
authentication side of things. Authorisation is left to something else. I'm
guessing Spring Security is a good way to go (ACEGI), but I have no idea where
to start, what needs configuring etc etc.
I would really appreciate any pointers as to where I go next.
Regards
Richard
_________________________________________________________________
Play the Andrex Hello Softie Game & win great prizes
http://www.thehellosoftiegame.co.uk
_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas
