[NEWSENDER] - Re: User information - Message is from an unknown sender
Scott Battaglia
scott.battaglia at gmail.com
Wed Feb 13 22:33:19 EST 2008
If you use the SAML 1.1 protocol (or customize the CAS 2.0 response) and
combine it with PersonDirectory you can return arbitrary attributes via the
chosen protocol.
-Scott
On Feb 13, 2008 10:25 PM, Ole Ersoy <ole.ersoy at gmail.com> wrote:
> Li,
>
> (Guys I'm still getting started with CAS, so if anything looks off, please
> correct it)
> As far as I know CAS will only populate the Principal's name (Stored in
> the session).
> But once you have that you should be able to query an LDAP directory or
> rdbms using it as a query parameter to fetch the row or ldap entry
> containing the rest of the user information.
>
> CAS populates the principal user name attribute after the user has
> authenticated and has a ticket granting cookie, so the user name will always
> be available on the principal.
>
> Cheers,
> - Ole
>
> Li Wei Nan wrote:
> > Besides user loginname, can I get any additional information about user?
> >
> > It's seems CAS can manage and populate principal's attribute. Is it
> > stored in session or there's a CAS protocol to fetch it?
> >
> > In WIKI there's a config sample with LDAP, but ours is JDBC. And it says
> > "Attributes are controlled by the _JA-SIG Person Directory project"
> > <http://developer.ja-sig.org/projects/person-directory/>_
> >
> > Does that mean I must use this project to fetch user attributes?
> >
> >
> > Thanks,
> > - Li Wei Nan
> >
> >
> >
> >
> >
> > Le 2008-2-14 à ??7:27, Wilson França a écrit :
> >
> >> Thanx!
> >>
> >> On Feb 13, 2008 5:39 PM, Ole Ersoy <ole.ersoy at gmail.com
> >> <mailto:ole.ersoy at gmail.com>> wrote:
> >>
> >> I think you want this:
> >>
> >> HttpServletRequest.getUserPrincipal()
> >>
> >> This returns:
> >> java.security.Principal
> >>
> >>
> >> Now call
> >> java.security.Principal.getName()
> >>
> >> to get the name of Principal (User that logged in).
> >>
> >> Cheers,
> >> - Ole
> >>
> >>
> >>
> >>
> >> Wilson França wrote:
> >> > Hi,
> >> >
> >> > Can i get information about the user after login is successfull?
> >> >
> >> > if yes, how?
> >> >
> >> > Thanx
> >> >
> >> > Wilson
> >> >
> >> >
> >> >
> >>
> ------------------------------------------------------------------------
> >> >
> >> > _______________________________________________
> >> > Yale CAS mailing list
> >> > cas at tp.its.yale.edu <mailto:cas at tp.its.yale.edu>
> >> > http://tp.its.yale.edu/mailman/listinfo/cas
> >> _______________________________________________
> >> Yale CAS mailing list
> >> cas at tp.its.yale.edu <mailto:cas at tp.its.yale.edu>
> >> http://tp.its.yale.edu/mailman/listinfo/cas
> >>
> >>
> >> _______________________________________________
> >> Yale CAS mailing list
> >> cas at tp.its.yale.edu <mailto:cas at tp.its.yale.edu>
> >> http://tp.its.yale.edu/mailman/listinfo/cas
> >
> >
> > ------------------------------------------------------------------------
> >
> > _______________________________________________
> > Yale CAS mailing list
> > cas at tp.its.yale.edu
> > http://tp.its.yale.edu/mailman/listinfo/cas
> _______________________________________________
> Yale CAS mailing list
> cas at tp.its.yale.edu
> http://tp.its.yale.edu/mailman/listinfo/cas
>
--
-Scott Battaglia
PGP Public Key Id: 0x383733AA
LinkedIn: http://www.linkedin.com/in/scottbattaglia
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://tp.its.yale.edu/pipermail/cas/attachments/20080213/80ceb773/attachment.html
More information about the cas
mailing list