At this point in time, our goal is not to expose that method on the interface, as CAS's goal is to deal with Tickets. A user is only valid in the context of ticket, and even then, only in the context of when a service access is requested. The stated goal of the CentralAuthenticationService interface is to essentially vend tickets. CAS4 exposes a way for the authenticating backend to pass up additional errors or messages when there are issues with accounts that may fit better into the model that you are looking at.
I am aware that its outside of the scope of your project to look into CAS4, I'm just letting you know the direction we're going into, which is enhancing the information exposed via the interface, rather than implementing logic in the web flow. -Scott On Tue, Mar 24, 2009 at 10:57 AM, Johan Peeters <[email protected]>wrote: > Hi, > > For the implementation of the password expiry, we added some code to the > core of CAS to be able to fetch the principal in a later stage. > We added a method getPrincipal() in the 'CentralAuthenicationService' and > its implementation in the 'CentralAuthenicationImpl' and > 'RemoteCentralAuthenicationService'. Further on, we use this method in > 'AuthenticationViaForm' to put the principal in the flowscope. > These small changes are summarized below or can be viewed in the > attachments of > http://www.ja-sig.org/wiki/display/CAS/Expired+Password+Integration. > > Is it possible to get them included in the CAS3 packages? > > Kind regards, > Johan Peeters > > > > > > > * 'CentralAuthenticationService.java', add the method: > > > public Principal getPrincipal(String id); > > * 'CentralAuthenticationServiceImpl.java', add the method: > > public Principal getPrincipal(String id){ > Principal principal = > ((TicketGrantingTicket)ticketRegistry.getTicket(id)).getAuthentication().getPrincipal(); > > return principal; > } > > * 'RemoteCentralAuthenticationService.java', add the method: > > > public Principal getPrincipal(String id){ > return this.centralAuthenticationService.getPrincipal(id); > } > > * 'AuthenticationViaFormAction.java' add at line 110: > > > context.getFlowScope().put("principal", > this.centralAuthenticationService.getPrincipal(id)); > > > ------------------------------ > Waarom betalen om foto's en video's te bewerken, e-mails te lezen, te > bloggen enz…? Met Windows Live is dit allemaal > gratis!<http://www.microsoft.com/belux/nl/windows/windowslive/default.aspx> > > -- > You are currently subscribed to [email protected] as: > [email protected] > > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
