Hi all,
I'd like to rephrase my last question to add some more information.
Currently we use CAS 3.4.1 to provide authorization based on X509
certificates and LDAP. We also use JPA Registry to maintain tickets and
Inspktr to provide some monitoring info. I can find out which users have
successfully logged in by joining JPARegistry and Inspktr tables
(TICKETGRANTINGTICKET + COM_AUDIT_TRAIL). Since we use tomcat to deploy CAS
I can also keep track of which users have session.
As far as I know I can only query these sources to list currently logged
users. However, there are some issues I don't know how to resolve:
* I'd like to be able to decode column SERVICES_GRANTED_ACCESS_TO in
TICKETGRANTINGTICKET table to list services the user has access to.
* Sometimes we need to force a logout for a particular user. So I
expire their tomcat sessions and delete the corresponding row from
TICKETGRANTINGTICKET. Is there a more straightforward manner?
The ideal solution would be to provide a webapp for
administrators with these functions. I don't know if there is some
module/plugin out of the box. Even if I had to develop my own webapp that
meet these requirements I'd need to know how to resolve these questions
(granted services for a particular user and force a user logout)
Please help
Thank you very much in advance
--
You are currently subscribed to cas-user@lists.jasig.org as:
arch...@mail-archive.com
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
