CAS Management: How to do authorization?
37 views
Skip to first unread message
Richard Frovarp
Feb 6, 2020, 3:56:49 PM2/6/20
to CAS Community
How does one do authorization checks in CAS Management 5.3.6 using CAS
attribute return? In 5.1, I have this:
cas.mgmt.adminRoles[0]=CN=<GropuName>,OU=<OU>,DC=dc,DC=ndsu,DC=edu
cas.mgmt.authzAttributes[0]=memberOf
Not entirely sure why that is failing on 5.3.6. Part of me says that it
is due to pac4j splitting on the commas.
So I get the bright idea of using eduPersonEntitlement, so
mgmt.adminRoles[0]=https://www.ndsu.edu/eci/entitlement
mgmt.authzAttributes[0]=eduPersonEntitlement
But that isn't working either. In the log for the application I can see
that my list of entitlements is being returned, but I see no roles.
What am I missing?
Thanks,
Richard
attribute return? In 5.1, I have this:
cas.mgmt.adminRoles[0]=CN=<GropuName>,OU=<OU>,DC=dc,DC=ndsu,DC=edu
cas.mgmt.authzAttributes[0]=memberOf
Not entirely sure why that is failing on 5.3.6. Part of me says that it
is due to pac4j splitting on the commas.
So I get the bright idea of using eduPersonEntitlement, so
mgmt.adminRoles[0]=https://www.ndsu.edu/eci/entitlement
mgmt.authzAttributes[0]=eduPersonEntitlement
But that isn't working either. In the log for the application I can see
that my list of entitlements is being returned, but I see no roles.
What am I missing?
Thanks,
Richard
Reply all
Reply to author
Forward
0 new messages