CAS w/ ACEGI

Scott Battaglia scott.battaglia at gmail.com
Tue Mar 18 14:05:13 EDT 2008 

My mistake on that one (I think I got my interfaces mixed up).   If you
submit a JIRA issue I'll have the AuthenticationManager populate the
attribute on the Authentication object by default.  This would make it to
3.2.1 which hopefully should come out as an RC1 tomorrow.

-Scott

On Tue, Mar 18, 2008 at 1:48 PM, Larry Symms <lsymms at gmail.com> wrote:

> Ok, I'm very close to getting this.  I'm passing attributes from a
> remote CAS server through to the Acegi client.  I've written a custom
> MetaDataPopulator on the server side and a cutom ProxyTicketValidator on
> the client side.  What I'm not seeing is how to get the class name of
> the successful authenticationHandler from the scope of the
> populateAttribute method of the MetaDataPopulator.  populateAttributes
> takes an Authentication object and Credentials object as parameters.
> The handlers don't modify the credentials or authentication objects so
> it seems the only way to do this would be to add the handler name to the
> principal attributes in the authenticate method of the
> AuthenticationManagerImpl.  So it seems that I would have to write my
> own AuthenticationManagerImpl.  Am I on the right path or can this be
> done in configuration?
>
> Here's my current authenticationManager config from
> deployerConfigContext.xml:
>
> <bean id="authenticationManager"
>        class="org.jasig.cas.authentication.AuthenticationManagerImpl">
>
>        <property name="authenticationMetaDataPopulators">
>              <list>
>                 <bean
> class="com.mycom.server.cas.MyAuthenticationMetaDataPopulator" />
>              </list>
>        </property>
>
>        <property name="credentialsToPrincipalResolvers">
>            <list>
>                <bean
>
> class="
> org.jasig.cas.authentication.principal.UsernamePasswordCredentialsToPrincipalResolver
> "
> />
>                <bean
>
> class="
> org.jasig.cas.authentication.principal.HttpBasedServiceCredentialsToPrincipalResolver
> "
> />
>            </list>
>        </property>
>
>        <property name="authenticationHandlers">
>            <list>
>                <bean
>
> class="
> org.jasig.cas.authentication.handler.support.HttpBasedServiceCredentialsAuthenticationHandler
> "
>                    p:httpClient-ref="httpClient" />
>                <bean
>
> class="
> org.jasig.cas.authentication.handler.support.SimpleTestUsernamePasswordAuthenticationHandler
> "
> />
>                <bean
>
> class="org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler">
>                    <property name="filter" value="uid=%u" />
>                    <property name="searchBase" value="dc=mycom,dc=com" />
>                    <property name="contextSource" ref="contextSource" />
>                </bean>
>            </list>
>        </property>
>    </bean>
> _______________________________________________
> Yale CAS mailing list
> cas at tp.its.yale.edu
> http://tp.its.yale.edu/mailman/listinfo/cas
>



-- 
-Scott Battaglia
PGP Public Key Id: 0x383733AA
LinkedIn: http://www.linkedin.com/in/scottbattaglia
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://tp.its.yale.edu/pipermail/cas/attachments/20080318/d081a9b2/attachment.html

More information about the cas mailing list