Can you point your client to /p3/serviceValidate instead?
From: richard.wise...@bt.com [mailto:richard.wise...@bt.com] Sent: Wednesday, August 6, 2014 3:21 AM To: cas-user@lists.jasig.org Subject: RE: [cas-user] Java-sourced custom attributes not being released Yep, that was it. I’ve (hopefully temporarily) copied the 3.0 version of casServiceValidationSuccess.jsp to 2.0 and it now shows the attributes. So all I now need is to be able to tall CAS I want it to use the 3.0 version of casServiceValidationSuccess.jsp. Regards, Richard From: richard.wise...@bt.com <mailto:richard.wise...@bt.com> [mailto:richard.wise...@bt.com] Sent: 06 August 2014 11:14 To: cas-user@lists.jasig.org <mailto:cas-user@lists.jasig.org> Subject: RE: [cas-user] Java-sourced custom attributes not being released I think I’ve found the problem! It’s using casServiceValidationSuccess.jsp from "WEB-INF/view/jsp/protocol/2.0" not "WEB-INF/view/jsp/protocol/3.0". Surely it should default to the 3.0 one if there are attributes, shouldn’t it? I can’t find any way of telling CAS that I am using the v3 protocol when I make the serviceValidate call… Regards, Richard From: richard.wise...@bt.com <mailto:richard.wise...@bt.com> [mailto:richard.wise...@bt.com] Sent: 06 August 2014 10:28 To: cas-user@lists.jasig.org <mailto:cas-user@lists.jasig.org> Subject: RE: [cas-user] Java-sourced custom attributes not being released Thanks – that definitely helped! I’m getting there now. My log now contains: 2014-08-06 10:20:45,521 DEBUG [org.jasig.cas.services.support.RegisteredServiceDefaultAttributeFilter] - Found attribute [billingAccountId] in the list of allowed attributes for service [HTTP Services] 2014-08-06 10:20:45,521 DEBUG [org.jasig.cas.services.support.RegisteredServiceDefaultAttributeFilter] - Found attribute [groupMembership] in the list of allowed attributes for service [HTTP Services] 2014-08-06 10:20:45,522 DEBUG [org.jasig.cas.services.support.RegisteredServiceDefaultAttributeFilter] - Found attribute [uid] in the list of allowed attributes for service [HTTP Services] Still no attributes in the XML from serviceValidate though… Regards, Richard From: Misagh Moayyed [mailto:mmoay...@unicon.net] Sent: 06 August 2014 10:07 To: cas-user@lists.jasig.org <mailto:cas-user@lists.jasig.org> Subject: RE: [cas-user] Java-sourced custom attributes not being released Answers inline. -----Original Message----- From: richard.wise...@bt.com <mailto:richard.wise...@bt.com> [mailto:richard.wise...@bt.com] Sent: Wednesday, August 6, 2014 1:41 AM To: cas-user@lists.jasig.org <mailto:cas-user@lists.jasig.org> Subject: RE: [cas-user] Java-sourced custom attributes not being released Thanks. So does "CAS is not looking at your handler for attributes" mean that the attributes supplied via the SimplePrincipal object are not being used? Correct. When you refer to "3 hardcoded attributes" do you mean this block...? <util:map id="attrRepoBackingMap"> <entry key="uid" value="uid" /> <entry key="eduPersonAffiliation" value="eduPersonAffiliation" /> <entry key="groupMembership" value="groupMembership" /> </util:map> Yes. And if so, presumably because only uid and groupMembership are listed as allowedAttributes, only these two can be released? (Currently, no attributes are coming through into the serviceValidate response XML.) Yes. Also, when you say "null out the resolver" do you mean primaryPrincipalResolver? When I do that, my primaryAuthenticationHandler no longer works (or is used). Apologies, but I don't yet understand enough about CAS to confidently make assumptions! See: http://jasig.github.io/cas/development/installation/Configuring-Authentication-Components.html#principalresolver-vs-authenticationhandler I'll turn on debug and see what it says. Regards, Richard -----Original Message----- From: Misagh Moayyed [ <mailto:mmoay...@unicon.net> mailto:mmoay...@unicon.net] Sent: 06 August 2014 09:24 To: <mailto:cas-user@lists.jasig.org> cas-user@lists.jasig.org Subject: RE: [cas-user] Java-sourced custom attributes not being released CAS is not looking at your handler for attributes; it will take a look at your resolver which right now has 3 hardcoded attributes, two of which can be released. (if you want the handler to take precedence, null out the resolver) If you are not getting those two, up the CAS logging to DEBUG and see what's coming out. -----Original Message----- From: Richard Wiseman [ <mailto:richard.wise...@bt.com> mailto:richard.wise...@bt.com] Sent: Wednesday, August 6, 2014 12:58 AM To: <mailto:cas-user@lists.jasig.org> cas-user@lists.jasig.org Subject: RE:[cas-user] Java-sourced custom attributes not being released There are lots of commented-out elements from my various attempts and I've scrubbed out the database details but here it is. Thanks! -- You are currently subscribed to <mailto:cas-user@lists.jasig.org> cas-user@lists.jasig.org as: <mailto:mmoay...@unicon.net> mmoay...@unicon.net To unsubscribe, change settings or access archives, see <http://www.ja-sig.org/wiki/display/JSG/cas-user> http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to <mailto:cas-user@lists.jasig.org> cas-user@lists.jasig.org as: <mailto:richard.wise...@bt.com> richard.wise...@bt.com To unsubscribe, change settings or access archives, see <http://www.ja-sig.org/wiki/display/JSG/cas-user> http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to <mailto:cas-user@lists.jasig.org> cas-user@lists.jasig.org as: <mailto:mmoay...@unicon.net> mmoay...@unicon.net To unsubscribe, change settings or access archives, see <http://www.ja-sig.org/wiki/display/JSG/cas-user> http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to cas-user@lists.jasig.org <mailto:cas-user@lists.jasig.org> as: richard.wise...@bt.com <mailto:richard.wise...@bt.com> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to cas-user@lists.jasig.org <mailto:cas-user@lists.jasig.org> as: richard.wise...@bt.com <mailto:richard.wise...@bt.com> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to cas-user@lists.jasig.org <mailto:cas-user@lists.jasig.org> as: richard.wise...@bt.com <mailto:richard.wise...@bt.com> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to cas-user@lists.jasig.org <mailto:cas-user@lists.jasig.org> as: mmoay...@unicon.net <mailto:mmoay...@unicon.net> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to cas-user@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
