Most of the AuthenticationHandlers have Pre and Post hooks. Can't you just
extend one and implement it pre or post?
On Fri, Nov 11, 2011 at 11:53 AM, Vitty, Paul <p.vi...@ulster.ac.uk> wrote:
> Hi,
>
> Is there currently a feature in place to allow blacklisting of user
> accounts. The scenario we have in our institution is a group of users who
> are provisioned in our Active Directory and can currently log on to our CAS
> instance, but we want to prevent them from logging on.
>
> It is a requirement that they are not placed in a different OU, or have
> any modifications made to their AD record. They all share a similar naming
> convention, i.e. ^[Pp][0-9]{1, 9}$. Is there currently a method of
> filtering logons, regardless of the result of the authenticationHandlers?
>
> If there is not, I'd like to propose that we have some sort of pre and
> post authentication hooks added to AuthenticationManager interface, or even
> the creation of a FilteredAuthenticationManagerInterface.
>
> I have a test implementation of FilteredAuthenticationManagerImpl, which
> is essentially the same as AuthenticationManagerImpl, but with a pre and
> post filter method to define a list of filters to be applied before and
> after authentication attempts. If there is any interest in this, I create a
> JIRA issue and generate a pull request for it?
>
> Thanks
> Paul
>
> ________________________________
>
> This email and any attachments are confidential and intended solely for
> the use of the addressee and may contain information which is covered by
> legal, professional or other privilege. If you have received this email in
> error please notify the system manager at postmas...@ulster.ac.uk and
> delete this email immediately. Any views or opinions expressed are solely
> those of the author and do not necessarily represent those of the
> University of Ulster. The University's computer systems may be monitored
> and communications carried out on them may be recorded to secure the
> effective operation of the system and for other lawful purposes. The
> University of Ulster does not guarantee that this email or any attachments
> are free from viruses or 100% secure. Unless expressly stated in the body
> of a separate attachment, the text of email is not intended to form a
> binding contract. Correspondence to and from the University may be subject
> to requests for disclosure by 3rd parties under relevant legislation. The
> University of Ulster was founded by Royal Charter in 1984 and is registered
> with company number RC000726 and VAT registered number GB672390524.The
> primary contact address for the University of Ulster in Northern Ireland
> is,Cromore Road, Coleraine, Co. Londonderry BT52 1SA
>
> --
> You are currently subscribed to cas-dev@lists.jasig.org as:
> scott.battag...@gmail.com
> To unsubscribe, change settings or access archives, see
> http://www.ja-sig.org/wiki/display/JSG/cas-dev
>
>
--
You are currently subscribed to cas-dev@lists.jasig.org as:
arch...@mail-archive.com
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-dev
