AnsweredAssumed Answered

SSO Authentication issue

Question asked by grk on Sep 15, 2014
Latest reply on Sep 16, 2014 by kimberlydeborah
Hello again.

I am trying to configure an external authentication method for Alfresco. I have followed the instructions provided for Shibboleth and I have managed to successfully set it up.

I am trying to figure out a way to "filter" the users that try to login, based on an atrribute of theirs (e.g. affiliation: "staff", "student" etc.).

Now this can be done by the IDP, but the user will not be seeing a user-friendly screen to understand why they cannot login, and of course in case that the application broadens, it would be difficult to change the settings again in the IDP, as it is externally managed.

I am trying to understand what can be done for this. I have used the "query" of LDAP in order to get only the users' details that I want, but if someone logs in with SSO, then the user is created, but without any details, other than its username.

Can anyone guide me as to what I can do? Develop a module maybe? A Shibboleth-related java behaviour? What exactly, because I am kind of lost. :)

Thank you all in advance.

Outcomes