> I'd rather have the userDetailsService bean inspect the SAML attributes for a > user
This is possible using a poorly documented component: http://static.springsource.org/spring-security/site/apidocs/org/springframework/security/cas/userdetails/GrantedAuthorityFromAssertionAttributesUserDetailsService.html We've used this component for several Spring Security-enabled Webapps here at Virginia Tech and it works exactly like you want. I have in mind to contribute some documentation to spring sec some rainy day. Then again with all the rain here we've had in the past week I should have had plenty of time to do it; so maybe it's more like when hell freezes over. Really needs more documentation in any case. M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
