CAS单点登录子系统改造步骤

企业开发 2018-05-12 02:32:27 阅读次数: 0
系统集成中单点登录是必不可少的话题,使用cas进行单点登录认证,如何把子系统进行cas单点登录,下面说说步骤:
1.web系统需要增加jar,把下面的jar放入web应用的lib
cas-client-core-3.2.1.jar (我使用的是3.2.1版本)
commons-logging-1.1.jar

2.修改web.xml 添加cas filter,将下面这个cas的配置加入到web.xml中的顶端 
<!-- cas begin -->
	<filter> 
		<filter-name>CAS Authentication Filter</filter-name> 
		<filter-class>org.jasig.cas.client.authentication.AuthenticationFilter</filter-class> 
	
		<init-param> 
			<param-name>casServerLoginUrl</param-name> 
			<param-value>http://localhost:8088/cas-web/login</param-value> 
		</init-param> 
		<init-param> 
			<param-name>renew</param-name> 
			<param-value>false</param-value> 
		</init-param> 
		<init-param> 
			<param-name>gateway</param-name> 
			<param-value>false</param-value> 
		</init-param> 
		<init-param> 
			<param-name>serverName</param-name> 
			<param-value>http://localhost:8090</param-value> 
		</init-param> 
	</filter> 
 
	<filter> 
		<filter-name>CAS Validation Filter</filter-name> 
		<filter-class>org.jasig.cas.client.validation.Cas20ProxyReceivingTicketValidationFilter</filter-class> 
		<init-param> 
			<param-name>casServerUrlPrefix</param-name> 
			<param-value>http://localhost:8088/cas-web</param-value> 
		</init-param> 
		<init-param>
			<param-name>serverName</param-name> 
			<param-value>http://localhost:8090</param-value> 
		</init-param> 
		<init-param> 
			<param-name>useSession</param-name> 
			<param-value>true</param-value> 
		</init-param> 
		<init-param> 
			<param-name>redirectAfterValidation</param-name> 
			<param-value>true</param-value> 
		</init-param> 
	</filter> 
	<filter> 
		<filter-name>CAS HttpServletRequest WrapperFilter</filter-name> 
		<filter-class>org.jasig.cas.client.util.HttpServletRequestWrapperFilter</filter-class> 
	</filter> 
	<filter> 
		<filter-name>CAS Assertion Thread Local Filter</filter-name> 
		<filter-class>org.jasig.cas.client.util.AssertionThreadLocalFilter</filter-class> 
	</filter> 
	
	<filter-mapping> 
		<filter-name>CAS Authentication Filter</filter-name> 
		<url-pattern>/*</url-pattern> 
	</filter-mapping> 
	<filter-mapping> 
		<filter-name>CAS Validation Filter</filter-name> 
		<url-pattern>/*</url-pattern> 
	</filter-mapping> 
	<filter-mapping> 
		<filter-name>CAS HttpServletRequest WrapperFilter</filter-name> 
		<url-pattern>/*</url-pattern> 
	</filter-mapping> 
	<filter-mapping> 
		<filter-name>CAS Assertion Thread Local Filter</filter-name> 
		<url-pattern>/*</url-pattern> 
	</filter-mapping>
	<!-- cas end -->


3. 如果需要配置exclude path ,使某些url不进行单点登录就可以访问,需要改造CAS 的filter ,添加ExcludeFile 列表,具体参见另外一篇文章 http://wangyangqq2008.iteye.com/blog/2043018

猜你喜欢

转载自wangyangqq2008.iteye.com/blog/2043047
今日推荐
《美国对全球网络空间安全与发展的威胁和破坏》报告发布
火速冲上 GitHub 热榜 —— 开源编程语言、框架哪有这么可爱?
北京人形机器人创新中心发布全球首个纯电驱拟人奔跑的全尺寸人形机器人“天工”
LFOSSA 源来如此公开课 | 掌握云原生未来:CNCF 认证全面攻略与备考秘籍
周排行
让自己的头脑极度开放
CentOS 6.5(x64) 和Redhat6.5操作系误删libc
高可用注册中心
【日记】12.28/【题解】AtCoder AGC041
XML(5)_XML 约束_DTD
Java集合Map(四)
树梅派安装桌面环境教程
pipenv 的 使用和安装
小程序白屏问题和内存研究
C语言简单选择排序
每日归档
更多
2024-05-02(0)
2024-05-01(4)
2024-04-30(1)
2024-04-29(40)
2024-04-28(0)
2024-04-27(56)
2024-04-26(39)
2024-04-25(22)
2024-04-24(36)
2024-04-23(26)

代码天地 © 2018 codetd.com

境外服务器   最新电视剧2022