All the examples of CAS and spring security I have found so far show using CAS for authentication only.

I need to use CAS for authentication and authorization via the attribute release from CAS. My CAS does get roles from LDAP, but I don't want my spring app to talk to LDAP.

Can spring security + CAS be configured to do this ?