CAS ACL は CAS を利用したアプリケーションからのアクセスを制御するものです.
CAS ACL を plain text file で記述する時には, 空白行で区切られたものが一つのエントリとなります.
dn: ou=cas,dc=math,dc=nagoya-u,dc=ac,dc=jp cas-allow: (|(uid=naito)(uid=kajita)) cas-auth-type: trusted description: Trusted User Entry dn: ou=naito,ou=cas,dc=math,dc=nagoya-u,dc=ac,dc=jp cas-allow: (uid=naito) cas-auth-type: trusted description: Trusted User Entry
dn: cn=success,ou=naito,ou=cas,dc=math,dc=nagoya-u,dc=ac,dc=jp cas-allow: (uid=naito) cas-service: http.?://www\.math\.nagoya\-u\.ac\.jp/~naito/CAS/cas3-test/success-test/.* cas-attributes: uid,mail,employeeNumber,employeeType,sn,givenName,dn,sn;lang-ja,givenName;lang-ja cas-auth-type: basic cas-login-level: PIN_UID_AUTHENTICATION cas-client-ip: 172.16.254.12/32 description: MathNet dn: cn=success-x509,ou=naito,ou=cas,dc=math,dc=nagoya-u,dc=ac,dc=jp cas-allow: (uid=naito) cas-service: http.?://www\.math\.nagoya\-u\.ac\.jp/~naito/CAS/cas3-test/success-only-x509/.* cas-attributes: uid,mail,employeeNumber,employeeType,sn,givenName,dn,sn;lang-ja,givenName;lang-ja cas-auth-type: basic cas-login-level: X509_CLIENT_CERTIFICATION cas-client-ip: 172.16.254.12/32 description: MathNet dn: cn=denied,ou=naito,ou=cas,dc=math,dc=nagoya-u,dc=ac,dc=jp cas-allow: (datetime<=200601011200) cas-service: http.?://www\.math\.nagoya\-u\.ac\.jp/~naito/CAS/cas3-test/access-denied-test/.* cas-attributes: uid,mail,employeeNumber,employeeType,sn,givenName,dn,sn;lang-ja,givenName;lang-ja cas-auth-type: basic cas-login-level: PIN_UID_AUTHENTICATION cas-client-ip: 172.16.254.12/32 description: MathNet1 dn: cn=servlet_0,ou=naito,ou=cas,dc=math,dc=nagoya-u,dc=ac,dc=jp cas-allow: (uid=naito) cas-service: http.?://tomcat\.math\.nagoya\-u\.ac\.jp/postEUC/.* cas-attributes: uid,mail,sn,givenName,dn,sn;lang-ja,givenName;lang-ja,nextticket cas-auth-type: basic cas-login-level: PIN_UID_AUTHENTICATION cas-client-ip: 172.16.254.11/32, 172.16.254.12/32 description: MathNet dn: cn=servlet_1,ou=naito,ou=cas,dc=math,dc=nagoya-u,dc=ac,dc=jp cas-allow: (uid=naito) cas-service: http.?://tomcat\.math\.nagoya\-u\.ac\.jp/postUTF8/.* cas-attributes: uid,mail,sn,givenName,dn,sn;lang-ja,givenName;lang-ja,nextticket cas-auth-type: basic cas-login-level: PIN_UID_AUTHENTICATION cas-client-ip: 172.16.254.12/32 description: MathNet
Return to Document TOP
Return to TOP
$Id: cas-acl.html,v 1.2 2007-06-19 21:03:34+09 naito Exp $