Setting up IdP3 to release set of attributes only to CAS users
Martin, Brandon L
martinb at psd401.net
Thu Aug 13 12:49:39 EDT 2015
Jessica,
I recently setup CAS and Shibboleth together. I used https://github.com/Unicon/shib-cas-authn3 as the remote user authentication gateway between CAS and Shibboleth. Unfortunately as Unicon pointed out to me, there is no way to exchange data between CAS and Shibboleth besides PrincipalName. To get the data I needed I query LDAP using the PrincipalName. Seems counter productive but it works for me.
[https://avatars3.githubusercontent.com/u/835400?v=3&s=400]<https://github.com/Unicon/shib-cas-authn3>
Unicon/shib-cas-authn3 · GitHub
shib-cas-authn3 - Integrates an external CAS Server and Shibboleth IdPv3.
Read more...<https://github.com/Unicon/shib-cas-authn3>
Brandon Martin
martinb at psd401.net
Peninsula School District
Data Integration Analyst
Ext: 3712
________________________________
From: users <users-bounces at shibboleth.net> on behalf of Jessica Coltrin <jcoltrin at pdx.edu>
Sent: Thursday, August 13, 2015 9:42 AM
To: users at shibboleth.net
Subject: Setting up IdP3 to release set of attributes only to CAS users
We're setting up IdP3 and want to release a set of attributes to only users that login via CAS. Has anyone done this? What configuration did you use?
Thanks,
Jessica
--
Jessica Coltrin
Manager, Identity and Access Management
Computing Infrastructure Services
Office of Information Technology
Portland State University
503-725-9599
jcoltrin at pdx.edu<mailto:jcoltrin at pdx.edu>
www.pdx.edu/oit<http://www.pdx.edu/oit>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20150813/9c27f629/attachment-0001.html>
More information about the users
mailing list