Parker, As you said you should be able to use this: https://www.ja-sig.org/svn/cas3/trunk/cas-server-support-ldap/src/main/java/org/jasig/cas/authentication/principal/CredentialsToLDAPAttributePrincipalResolver.java
You'll need to inject a CredentialsToPrincipalResolver that can take the provided credentials (UsernamePasswordCredentials for example) and return some form of Principal of that. Then the CredentailsToLDAPAttributePrincipalResolver would look that up in LDAP and then it would call the appropriate AttributeRepository to look up the attributes. So you'll ned to configure CredentialsToAttributePrincipalResolver with the following: *Context Source to contact LDAP * CredentialToPrincipalResolver to take the original credential and provide a principal that can be looked up in LDAP * AttributeRepository that checks the appropriate attribute repository. -Scott -Scott Battaglia PGP Public Key Id: 0x383733AA LinkedIn: http://www.linkedin.com/in/scottbattaglia On Wed, Feb 4, 2009 at 5:41 PM, Parker Grimes <[email protected]> wrote: > So am I on the right track with this? I am thinking I need to implement my > own CredentialsToPrincipalResolver that builds the Principal object with the > LDAP username as the Principal id and populates the attribute map from my > database attributeRepository. Is that right? Or is there an existing > implementation of CredentialsToPrincipalResolver that I overlooked that will > do this? > > Thanks, > Parker > > > > On Fri, Jan 30, 2009 at 12:14 PM, Parker Grimes <[email protected]> wrote: > >> I thought so. I just couldn't find any documentation or examples of >> anybody else doing it. I am missing something and I am just not quite sure >> what. >> >> One thing I am unclear about is the credentialsToPrincipalResolvers. >> According to the documentation at >> http://www.ja-sig.org/wiki/display/CASUM/Attributes, which is specific to >> pulling attributes from LDAP, there is a >> CredentialsToLDAPAttributePrincipalResolver that gets the >> attributeRepository bean injected into it. What would the setup look like in >> this case where the user is authenticated against LDAP and the >> attributeRepository is pulling attributes from a database? >> >> Parker >> >> >> On Thu, Jan 29, 2009 at 4:43 PM, Scott Battaglia < >> [email protected]> wrote: >> >>> It should work fine. >>> >>> -Scott >>> >>> -Scott Battaglia >>> PGP Public Key Id: 0x383733AA >>> LinkedIn: http://www.linkedin.com/in/scottbattaglia >>> >>> >>> On Thu, Jan 29, 2009 at 6:04 PM, Parker Grimes <[email protected]> wrote: >>> >>>> Is it possible to authenticate via LDAP and pull attributes from a >>>> database? >>>> >>>> For instance, use >>>> org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler as the >>>> authentication handler and use >>>> org.jasig.services.persondir.support.jdbc.SingleRowJdbcPersonAttributeDao >>>> for the attributeRepository? >>>> >>>> Thanks, >>>> Parker >>>> >>>> _______________________________________________ >>>> Yale CAS mailing list >>>> [email protected] >>>> http://tp.its.yale.edu/mailman/listinfo/cas >>>> >>>> >>> >>> _______________________________________________ >>> Yale CAS mailing list >>> [email protected] >>> http://tp.its.yale.edu/mailman/listinfo/cas >>> >>> >> > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
