I'm not clear on this though... Don't I want
ignorePartialResultException to be true so I do ignore it?
Apologies, that was a glaring typo. Indeed, you want the value to be
true. Sorry for the confusion.
I don't understand what is happening in the log though. The first thing
it says is that it is performing an LDAP bind for my user's DN
("Performing LDAP bind with credential:
CN=chauvetp,OU=npuser,DC=active,DC=newpaltz,DC=edu"). Then it says I'm
successfully authenticated
"org.jasig.cas.adaptors.ldap.BindLdapAuthenticationHandler successfully
authenticated the user which provided the following credentials:
[username: chauvetp]".
Ah, this is enlightening. It indicates that your handler configuration
with p:ignorePartialResultException="true" is fine. It's likely your
CredentialToPrincipalResolver that's causing problems. Unfortunately,
there is no way to configure CredentialsToLDAPAttributePrincipalResolver
to ignore partial result exceptions. You could easily extend it, though,
to provide a setter for the underlying ldapTemplate, and then pass in an
LdapTemplate [1] configured with ignorePartialResultException="true".
Hope that helps,
M
[1]
http://static.springsource.org/spring-ldap/site/apidocs/org/springframework/ldap/core/LdapTemplate.html
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
