[cas-user] Re: CAS Management Webapp v5 + LDAP Authorization

Tue, 06 Jun 2017 07:03:39 -0700 

I can log in my mgmt webapp base on my admin role using ldap group,

I don't know why I have to set rolePrefix and groupPrefix both to : ROLE_, 
but its working!

here is my config :
























*cas.mgmt.adminRoles=ROLE_ADMIN,ROLE_IDMADMIN# Attributes that you wish to 
resolve for the 
principalcas.authn.attributeRepository.attributes.uid=uidcas.authn.attributeRepository.attributes.mail=mailcas.authn.attributeRepository.attributes.displayName=displayNamecas.authn.attributeRepository.attributes.cn=commonNamecas.authn.attributeRepository.attributes.affiliation=groupMembershipcas.authn.attributeRepository.attributes.lastName=sncas.authn.attributeRepository.attributes.firstName=givenNamecas.authn.attributeRepository.attributes.givenName=givenNamecas.authn.attributeRepository.attributes.member=memberOfcas.mgmt.authzAttributes[0]=memberOfcas.mgmt.authzAttributes[1]=groupMembershipcas.mgmt.ldap.ldapAuthz.groupAttribute=cncas.mgmt.ldap.ldapAuthz.groupPrefix=ROLE_cas.mgmt.ldap.ldapAuthz.groupFilter=(member={0})cas.mgmt.ldap.ldapAuthz.groupBaseDn=ou=groups,dc=xxxxxxx,dc=comcas.mgmt.ldap.ldapAuthz.rolePrefix=ROLE_cas.mgmt.ldap.ldapAuthz.roleAttribute=memberOfcas.mgmt.ldap.ldapAuthz.searchFilter=(cn={user})cas.mgmt.ldap.ldapAuthz.baseDn=dc=xxxxxx,dc=com*




Le mardi 6 juin 2017 04:21:14 UTC-4, Jugurtha OURLISSENE a écrit :
>
> Hello,
> I encounter the same problem with CAS 5.0.4. Have you solved the problem? 
> could 
> you help me ?
>
> Le lundi 21 novembre 2016 10:34:28 UTC+1, Ludovic Senecaux a écrit :
>>
>> Hy,
>>
>> I would like to configure the new mgmt webapp (v5) authorization through 
>> LDAP like in CAS v4.2.x.
>> I have a LDAP group (groupOfNames) with many members (member attribute).
>> In CAS 4.x, this was possible through ldaptive:AuthorizationGenerator.
>> In CAS 5.x, I didn't find any doc to configure authz through LDAP groups.
>>
>> Thanks in advance
>>
>

-- 
- CAS gitter chatroom: https://gitter.im/apereo/cas
- CAS mailing list guidelines: https://apereo.github.io/cas/Mailing-Lists.html
- CAS documentation website: https://apereo.github.io/cas
- CAS project website: https://github.com/apereo/cas
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to [email protected].
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/08b54882-d3b9-4bcf-ab87-e755e82422d3%40apereo.org.

Reply via email to