Re: [cas-user] User Attributes for SAML 2.0

[David Curry]

Based on the SELECT, I think these definitions are flipped:

cas.authn.attributeRepository.jdbc[0].attributes.uid=id
cas.authn.attributeRepository.jdbc[0].attributes.givenName=first_name
cas.authn.attributeRepository.jdbc[0].attributes.emailaddress=email
cas.authn.attributeRepository.jdbc[0].attributes.surname=last_name

The format is  "attribute-name-in-my-repository =
what-i-want-to-call-it-when-its-released" , so you want

cas.authn.attributeRepository.jdbc[0].attributes.id=uid
cas.authn.attributeRepository.jdbc[0].attributes.first_name=givenName
cas.authn.attributeRepository.jdbc[0].attributes.email=emailaddress
cas.authn.attributeRepository.jdbc[0].attributes.last_name=surname

--Dave

--

DAVID A. CURRY, CISSP
*DIRECTOR OF INFORMATION SECURITY*
INFORMATION TECHNOLOGY

71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
+1 212 229-5300 x4728 • david.cu...@newschool.edu

[image: The New School]


On Mon, May 21, 2018 at 4:28 PM John D Giotta <jdgio...@gmail.com> wrote:

> cas.authn.accept.users=
>
> cas.authn.jdbc.query[0].ddlAuto=none
> cas.authn.jdbc.query[0].dialect=org.hibernate.dialect.MySQLDialect
> cas.authn.jdbc.query[0].driverClass=com.mysql.cj.jdbc.Driver
> cas.authn.jdbc.query[0].fieldPassword=password
> cas.authn.jdbc.query[0].password=
> cas.authn.jdbc.query[0].passwordEncoder.characterEncoding=
> cas.authn.jdbc.query[0].passwordEncoder.encodingAlgorithm=
> cas.authn.jdbc.query[0].passwordEncoder.secret=
> cas.authn.jdbc.query[0].passwordEncoder.strength=10
> cas.authn.jdbc.query[0].passwordEncoder.type=BCRYPT
> cas.authn.jdbc.query[0].sql=SELECT * FROM app_user WHERE email=? AND enabled 
> = 1
> cas.authn.jdbc.query[0].user=u
>
> # User Attribute Settings
> cas.authn.attributeRepository.jdbc[0].dialect=org.hibernate.dialect.MySQLDialect
> cas.authn.attributeRepository.jdbc[0].driverClass=com.mysql.cj.jdbc.Driver
> cas.authn.attributeRepository.jdbc[0].user=u
> cas.authn.attributeRepository.jdbc[0].password=
> cas.authn.attributeRepository.jdbc[0].singleRow=true
> cas.authn.attributeRepository.jdbc[0].sql=SELECT id, first_name, last_name, 
> email FROM app_user WHERE {0}
>
> cas.authn.attributeRepository.jdbc[0].attributes.uid=id
> cas.authn.attributeRepository.jdbc[0].attributes.givenName=first_name
> cas.authn.attributeRepository.jdbc[0].attributes.emailaddress=email
> cas.authn.attributeRepository.jdbc[0].attributes.surname=last_name
>
> --
> - Website: https://apereo.github.io/cas
> - Gitter Chatroom: https://gitter.im/apereo/cas
> - List Guidelines: https://goo.gl/1VRrw7
> - Contributions: https://goo.gl/mh7qDG
> ---
> You received this message because you are subscribed to the Google Groups
> "CAS Community" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to cas-user+unsubscr...@apereo.org.
> To view this discussion on the web visit
> https://groups.google.com/a/apereo.org/d/msgid/cas-user/ca06a377-c1db-4a79-a428-142815698536%40apereo.org
> <https://groups.google.com/a/apereo.org/d/msgid/cas-user/ca06a377-c1db-4a79-a428-142815698536%40apereo.org?utm_medium=email&utm_source=footer>
> .
>

-- 
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/CA%2Bd9XAOYrE2LJwcgcD7iE%3DSNiW680NMcMZh2%2BWNLZzX089hy6g%40mail.gmail.com.