ANNOUNCEMENT: community.oracle.com is currently Read only due to planned upgrade until 28-Sep-2020 9:30 AM Pacific Time. Any changes made during Read only mode will be lost and will need to be re-entered when the application is back read/write.
We have succeeded at setting up CAS authentication with Weblogic Apex Listener 2.1 by setting up the authentication in the web.xml file.
Our challenge now is to try to add another filter for AD group attributes such that only users with the correct group attribute be allowed to get to the URL that is registered with CAS. (Our CAS requires that each application URL be registered.) Our campus standard is that authorization groups be done in AD or LDAP.
Since we have to register each application with CAS in the first place, can CAS check for the matching AD group attribute? I have read some blogs that seem to indicate this is feaible. Has anyone done this with Apex -- especially with Listener 2.1.
I know we can also do LDAP query for groups using PL/SQL calls, but would rather do this at the app serve layer.