Attribute Resolution

Attribute resolution strategies are controlled by the Person Directory family of components. The framework supports both LDAP and JDBC attribute resolution, caching, attribute aggregation from multiple attribute sources, etc.

:information_source: Default Caching Policy

By default, attributes are cached to the length of the SSO session. This means that while the underlying component provided by Person Directory may have a different caching model, attributes by default and from a CAS perspective will not be refreshed and retrieved again on subsequent requests as long as the SSO session exists.

Actuator Endpoints

The following endpoints are provided by CAS:

 Resolve principal attributes for user.

 Remove cached attributes in the attribute repository for user.

 Display cached attributes in the attribute repository for user. If attributes are found in the cache, they are returned. Otherwise, attribute repositories will be contacted to fetch and cache person attributes again.

 Display available attribute repositories and their order of execution.