Hi Everyone:
I am attempting to integrate GeoServer with CAS and GeoFence. I noticed that while on the surface I am logged in as the user I provided to CAS, but on GeoFence’s side, it thinks I am logged in as “admin” user. In addition, how does GeoServer determine if an authenticated CAS user is of ADMIN_ROLE or USER_ROLE? My CAS is setup with LDAP and configured to use authenticated search method. When I log into GeoServer with any user I defined in CAS, I’m always given the ADMIN_ROLE privilege.
To reproduce this, just install CAS and GeoFence plug-ins to GeoServer. Add an user to CAS and when you log into GeoServer’s WEB UI using CAS, you will notice that in GeoFence’s log it will always say “User not found admin”.
Thanks,
Danny