Thanks for the response.
But I don't see a way to access the ticketRegistry..
Is it safe to put the principal in the flowscope in AuthenticationManagerImpl
in the method authenticate, just before the return of the
ImmutableAuthentication, so that I can easily access it?
context.getFlowScope().put("principal",authentication.getPrincipal());
Is it possible to access "context" in this location?
-Bart Ophelders
Date: Fri, 13 Mar 2009 11:29:40 -0400
From: [email protected]
Subject: Re: [cas-user] password expiration
To: [email protected]
On Fri, Mar 13, 2009 at 10:54 AM, Andrew Feller <[email protected]> wrote:
Bart,
The only way currently is to lookup the principal associated with a TGT
directly from the ticket registry; there are no API points in the
CentralAuthenticationService interface currently.
Scott: Here is application #2 =)
Actually, it really isn't since your authentication source should be
determining if you have an expired password or not and throwing an appropriate
exception up the stack. :-) This has nothing to do with retrieving the Ticket
Granting Ticket.
You'll also notice that CAS4 supports both the notion of a well-defined
hierarchy of exceptions, as well as a method for returning warnings/messages to
the user.
-Scott
A-
On 3/13/09 8:36 AM, "Bart Ophelders" <[email protected]> wrote:
Hi,
For our master thesis we would like to implement a password expiration plugin
for CAS.
We are basing our study on
http://www.ja-sig.org/wiki/display/CAS/Expired+Password+Integration .
We would like to implement this expiration check after the user is
authenticated and there is a ticketGrantingTicket created (but not yet sent),
thus between the 'submit' and the 'sendTicketGrantingTicket' in the
login-webflow.
Is there an easy way to retrieve the principal to be able to do this check?
Sincerely,
Bart Ophelders & Johan Peeters
--
Andrew Feller, Analyst
LSU University Information Services
200 Frey Computing Services Center
Baton Rouge, LA 70803
Office: 225.578.3737
Fax: 225.578.6400
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user