All, Found the issue. I did not have the org.jasig.cas.authentication.principal.CredentialsToLDAPAttributePrincipalResolver bean defined in my deployerConfigContext.xml. After adding this and restarting my cas services, I was then able to see my attributes in the xml response.
Ben Branch UNIX/Linux Administrator University of Central Oklahoma ITIL Foundation v3, Network+, RHCSA 100 N. University Drive, Box 122 Edmond, OK 73034 D: 405.974.2649 | M: 405.550.6804 | bbranch@uco.<mailto:bbranch@uco.>edu | www.uco.edu<http://www.uco.edu/> "I am wiser than this man, for neither of us appears to know anything great and good; but he fancies he knows something, although he knows nothing; whereas I, as I do not know anything, so I do not fancy I do. In this trifling particular, then, I appear to be wiser than he, because I do not fancy I know what I do not know." - Socrates From: Ben Branch [mailto:bbra...@uco.edu] Sent: Wednesday, April 10, 2013 1:59 PM To: cas-user@lists.jasig.org Subject: [cas-user] Unable to see attributes in the response xml. All, I've recently begun adding attributes to our test CAS environment for a new project we are working on. I've gone into the Services Management Web GUI to enable the attributes that I would like, but when I review the XML response from the authentication, I do not see any attributes listed. Below is part of my configuration: casServiceValidationSuccess.jsp: <c:forEach var="auth" items="${assertion.chainedAuthentications}"> <c:forEach var="attr" items="${auth.principal.attributes}" > <cas:attribute name="${fn:escapeXml(attr.key)}" value="${fn:escapeXml(attr.value)}"/> </c:forEach> </c:forEach> <c:if test="${not empty pgtIou}"> <cas:proxyGrantingTicket>${pgtIou}</cas:proxyGrantingTicket> </c:if> <c:if test="${fn:length(assertion.chainedAuthentications) > 1}"> <cas:proxies> <c:forEach var="proxy" items="${assertion.chainedAuthentications}" varStatus="loopStatus" begin="0" end="${fn:length(assertion.chainedAuthentications)-2}" step="1"> <cas:proxy>${fn:escapeXml(proxy.principal.id)}</cas:proxy> </c:forEach> </cas:proxies> </c:if> </cas:authenticationSuccess> </cas:serviceResponse> deployerConfigContext.xml: ## Modified UsernamePasswordCredentialstoPrincipalResolver bean to reference attributeRepository <bean class="org.jasig.cas.authentication.principal.UsernamePasswordCredentialsToPrincipalResolver" > <property name="attributeRepository" ref="attributeRepository" /> </bean> ##authenticationHandler <bean class="org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler" p:filter="sAMAccountName=%u" p:searchBase="cn=Users,dc=testad,dc=local" p:contextSource-ref="contextSource" p:searchContextSource-ref="pooledContextSource" p:ignorePartialResultException="true" /> ##attributeRepository Config <bean id="attributeRepository" class="org.jasig.services.persondir.support.ldap.LdapPersonAttributeDao"> <property name="contextSource" ref="contextSource" /> <property name="baseDN" value="cn=Users,dc=testad,dc=local" /> <property name="requireAllQueryAttributes" value="true" /> <!-- <property name="query" value="(uid={0})" /> --> <property name="queryAttributeMapping"> <map> <entry key="username" value="uid" /> </map> </property> <property name="resultAttributeMapping"> <map> <entry value="Name" key="cn" /> <entry value="employeeId" key="employeeId" /> </map> </property> </bean> The Attribute that I want to come back for this test is the employeeId attribute that we have populated in our AD Schema. Here is the xml response that I receive back when I authenticate: <cas:serviceResponse> <cas:authenticationSuccess> <cas:user>bbranch</cas:user> </cas:authenticationSuccess> </cas:serviceResponse> If I go into the casServiceValidationSuccess.jsp and manually add <cas:attribute name="employeeId" value="test_value" />, I see the value that I put in the casServiceValidationSuccess.jsp in my XML response then. Is there something that I'm missing here? Ben Branch UNIX/Linux Administrator University of Central Oklahoma ITIL Foundation v3, Network+, RHCSA 100 N. University Drive, Box 122 Edmond, OK 73034 D: 405.974.2649 | M: 405.550.6804 | bbranch@uco.<mailto:bbranch@uco.>edu | www.uco.edu<http://www.uco.edu/> "I am wiser than this man, for neither of us appears to know anything great and good; but he fancies he knows something, although he knows nothing; whereas I, as I do not know anything, so I do not fancy I do. In this trifling particular, then, I appear to be wiser than he, because I do not fancy I know what I do not know." - Socrates -- You are currently subscribed to cas-user@lists.jasig.org<mailto:cas-user@lists.jasig.org> as: bbra...@uco.edu<mailto:bbra...@uco.edu> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to cas-user@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
