Skip to first unread message
Jonathan
Feb 6, 2023, 6:48:48 AM2/6/23
to AtoM Users
Hello,
I want to use the new CAS module, but I have some problems.
I think the fields coming back from our CAS are not the fields you expect.
I can do a mapping before returning the CAS fields but I don't know what is the expected format/label of username and mail?
Can you help me ?
I think the fields coming back from our CAS are not the fields you expect.
I can do a mapping before returning the CAS fields but I don't know what is the expected format/label of username and mail?
Can you help me ?
Thank you
Jonathan
Dan Gillean
Feb 6, 2023, 12:52:02 PM2/6/23
to ica-ato...@googlegroups.com
Hi Jonathan,
I confess that CAS authentication is not a topic I personally understand well, but here goes:
I believe that when you use the CAS module in AtoM, no local authentication happens at all, so I don't think you need to map local authentication parameters like username and email to AtoM's.
Instead, you configure your CAS server location details in an AtoM configuration file, and when users try to log in, they are redirected to your CAS authentication service.The configuration file also includes AtoM default user groups and a group_id value - this is what you need to map. You edit the configuration file in AtoM so the user group you want has the proper group_id key from CAS.
In terms of mapping other parameters - I believe the team tried to make this module flexible for different setups during development, so: it's really going to check 1 user parameter for mapping, and then use the group_id values from there. So you should have some freedom in defining what attribute is mapped to your CAS server? See:
So I believe this means that if your users are using emails for authentication, then you would set the attribute_key in the config file to match the name of the CAS email parameter. And if you're using usernames instead, then configure the key for that.
Hopefully the documentation links help? If not, let me know and I will see if one of our system administrators can answer any further questions you have.
Cheers,
he / him
--
You received this message because you are subscribed to the Google Groups "AtoM Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to ica-atom-user...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/ica-atom-users/c7e45cb1-64bd-40bb-be2b-f7dcbe6e3f2bn%40googlegroups.com.
Reply all
Reply to author
Forward
0 new messages