Hi all, I'd like to rephrase my last question to add some more information. Currently we use CAS 3.4.1 to provide authorization based on X509 certificates and LDAP. We also use JPA Registry to maintain tickets and Inspktr to provide some monitoring info. I can find out which users have successfully logged in by joining JPARegistry and Inspktr tables (TICKETGRANTINGTICKET + COM_AUDIT_TRAIL). Since we use tomcat to deploy CAS I can also keep track of which users have session.
As far as I know I can only query these sources to list currently logged users. However, there are some issues I don't know how to resolve: * I'd like to be able to decode column SERVICES_GRANTED_ACCESS_TO in TICKETGRANTINGTICKET table to list services the user has access to. * Sometimes we need to force a logout for a particular user. So I expire their tomcat sessions and delete the corresponding row from TICKETGRANTINGTICKET. Is there a more straightforward manner? The ideal solution would be to provide a webapp for administrators with these functions. I don't know if there is some module/plugin out of the box. Even if I had to develop my own webapp that meet these requirements I'd need to know how to resolve these questions (granted services for a particular user and force a user logout) Please help Thank you very much in advance -- You are currently subscribed to cas-user@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user