Hi Nick- Thanks for the reply.
Since it needed doing, and I wanted it...I figured I'd take a crack at doing it. I've created a pull request for a proposed and functioning solution to PR GUACAMOLE-793. It works (at least for my use-case)! Needs doc, and probably a few other things (which I suppose will come with review). For now it adds two more configuration options to guacamole.properies: 1. To set the attribute used for group membership: cas-group-attribute: memberOf 2. To "clean up" DNs when the backing store for CAS is LDAP: cas-group-dn-format: CN=%s,OU=People,DC=example,DC=com This option allows the extention to receive a full DN specification from CAS such as "CN=foo,OU=People,DC=example,DC=com" and reduce it to "foo." This parameter should be omitted for CAS that isn't LDAP-backed. Now if I could figure out how to make Logout work, I can get on with deploying this to production...would you have any guidance on an architecturally acceptable way to implement that? How did you do it when you ran CAS in production? --Stew -- Sent from: http://apache-guacamole-general-user-mailing-list.2363388.n4.nabble.com/ --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
