CAS 6.x delegated auth chanied with different attributeRepository

51 views
Skip to first unread message

Julien Gribonvald

unread,
Apr 12, 2019, 5:24:39 AM4/12/19
to CAS Community
Hi,

Is there something already existing to map to a specific authn
configuration a specific authn.attributeRepository ?

I have several kind of external auth system and so the attribute
resolution locally (local LDAP) should be done by different LDAP search
request (and so attributeRepository), each authn system should have his
own attributeRepository, and I need to avoid to chain all
attributeRepository. Is it possible or should I implement something ?

If I should implement something could you tell me what is the best way
(and where to look) ?

I'm following the CAS master branch.

Thanks,

--

Julien Gribonvald

Julien Gribonvald

unread,
Apr 16, 2019, 5:33:04 AM4/16/19
to cas-...@apereo.org
Hi,

Sorry to re-run the question but how can I do that ? I've found how to
define a policy with authenticationHandlers but it doesn't help to chain
with an attributeRepository.

Is it possible to do what I want or I should chain all delegated
authenticationHandlers with all attributeResolver ?

Thanks,

Julien

Misagh Moayyed

unread,
Apr 26, 2019, 2:36:30 PM4/26/19
to CAS Community
This isn't quite possible to do as you describe it today. I'd suggest you wait until 6.1 RC4 as this is being somewhat worked. Otherwise, you might need to write your authentication handler and in there decide how to fetch attributes based on the client, etc.

Julien Gribonvald

unread,
Apr 29, 2019, 3:43:00 AM4/29/19
to cas-...@apereo.org

Thanks Misagh,

Ok, so don't hesitate to notify me when the feature will be available.

Julien

--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+u...@apereo.org.
To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/1c38d176-bd4f-4fbc-80dd-12c33924df04%40apereo.org.
--
Julien Gribonvald
Reply all
Reply to author
Forward
0 new messages