Sending pricipal and principal attributes

yashwanth chowdary

unread,

Apr 17, 2018, 8:11:50 AM4/17/18

to CAS Community

Hi Team,

CasVersion: 5.3.0-RC2

we use ldap for authentication.We need to send a set of attributes to the application where use cas for authentication.I am able to authenticate successfully.But the info that is send to the application contains only principal not the attributes.How do i send the attributes.You can find the logs,registered service(Json file),customized handler in attached files.

These are the list of properties:

##
#Jdbc Authentication Details
#
cas.authn.jdbc.encode[0].url=**********
cas.authn.jdbc.encode[0].user=*****
cas.authn.jdbc.encode[0].password=*****
cas.authn.jdbc.encode[0].driverClass=oracle.jdbc.driver.OracleDriver
cas.authn.jdbc.encode[0].algorithmName=SHA-256
cas.authn.jdbc.encode[0].staticSalt=*****
cas.adminPagesSecurity.jdbc.query=select first_name from gump_own.team_member where first_name = ?

##
#Ldap Authentication Details
#
cas.authn.ldap[0].type=AUTHENTICATED
cas.authn.ldap[0].ldapUrl=*******
cas.authn.ldap[0].baseDn=*******
cas.authn.ldap[0].searchFilter=******
cas.authn.ldap[0].bindDn=****
cas.authn.ldap[0].bindCredential=****

cas.authn.ldap[0].principalAttributeId=objectGUID
cas.authn.ldap[0].principalAttributeList=memberOf:authorities,userPrincipalName:EmailAddress,employeeID:lawsonId,sAMAccountName:username,name

#Ticket Registry

cas.ticket.registry.jpa.dialect=org.hibernate.dialect.Oracle10gDialect
cas.ticket.registry.jpa.url=*******
cas.ticket.registry.jpa.driverClass=oracle.jdbc.driver.OracleDriver
cas.ticket.registry.jpa.user=***
cas.ticket.registry.jpa.password=****
cas.ticket.registry.jpa.ddlAuto=update
cas.ticket.registry.jpa.defaultSchema=******

cas.serviceRegistry.initFromJson=true
cas.serviceRegistry.json.location=classpath:/services

LTAuthenticationHandler.java

wildcard-20170905111650.json

cas.log

Misagh Moayyed

unread,

Apr 17, 2018, 8:35:38 AM4/17/18

to cas-...@apereo.org

From your logs:

Preparing to validate ticket [/serviceValidate] for service [ST-1-Kt3tSwNS7-WALoEctIOCQu1GD68EDWTS017] via [AbstractWebApplicationService(id=http://localhost:3001/login?destination=%2F, originalUrl=http://localhost:3001/login?destination=%2F, artifactId=ST-1-Kt3tSwNS7-WALoEctIOCQu1GD68EDWTS017, principal=null, loggedOutAlready=false, format=XML)]. Do note that this validation request is not equipped to release principal attributes to applications. To access the authenticated principal along with attributes, invoke the [/p3/serviceValidate] endpoint instead.>

--Misagh

--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+u...@apereo.org.
To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/66da726d-be04-46b3-9a46-b9eb34a17863%40apereo.org.

yashwanth chowdary

unread,

Apr 17, 2018, 10:51:36 AM4/17/18

to CAS Community, mmoa...@unicon.net

Thanks Misagh. I was able to acheive things with what you have mentioned.

can you please help me out with statsD thing.

Post:https://groups.google.com/a/apereo.org/d/msgid/cas-user/c75e153f-8c4d-434e-8bb9-883ca00728f0%40apereo.org

Reply all

Reply to author

Forward