学习链接:
https://blog.csdn.net/qq_24708791/article/details/78535565
https://mianhuaman.iteye.com/blog/2224250
https://blog.csdn.net/ae6623/article/details/9494601
https://www.cnblogs.com/vhua/p/cas_4.html
1. 配置cas.server
修改服务ip server.name=http://localhost:8080
Cas服务端其实就是一个war包。
在资源\cas\source\cas-server-4.0.0-release\cas-server-4.0.0\modules目录下
cas-server-webapp-4.0.0.war 将其改名为cas.war放入tomcat目录下的webapps下。启动tomcat自动解压war包。浏览器输入http://localhost:8080/cas/login ,可看到登录页面
固定的用户名和密码4.0 casuser /Mellon 3.5 admin/admin
2. 将cas.client相关的jar 放在项目的lib中
3. 在web.xm中配置认证校验
<!-- ========== sso start =========-->
<!-- SingleSignOutHttpSessionListener -->
<listener>
<listener-class>org.jasig.cas.client.session.SingleSignOutHttpSessionListener</listener-class>
</listener>
<!-- SingleSignOutFilter -->
<filter>
<filter-name>CAS Single Sign Out Filter</filter-name>
<filter-class>org.jasig.cas.client.session.SingleSignOutFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>CAS Single Sign Out Filter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<!-- AuthenticationFilter -->
<filter>
<filter-name>CASFilter</filter-name>
<filter-class>org.jasig.cas.client.authentication.AuthenticationFilter</filter-class>
<init-param>
<param-name>casServerLoginUrl</param-name>
<param-value>http://10.68.3.112:8088/cas/login</param-value>
</init-param>
<init-param>
<param-name>serverName</param-name>
<param-value>http://10.68.3.112:8088</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>CASFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<!--
TicketValidationFilter
-->
<filter>
<filter-name>CAS Validation Filter</filter-name>
<filter-class>org.jasig.cas.client.validation.Cas20ProxyReceivingTicketValidationFilter</filter-class>
<init-param>
<param-name>casServerUrlPrefix</param-name>
<param-value>http://10.68.3.112:8088/cas</param-value>
</init-param>
<init-param>
<param-name>serverName</param-name>
<param-value>http://10.68.3.112:8088</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>CAS Validation Filter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<!-- HttpServletRequestWrapperFilter,HttpServletRequest?getRemoteUser()
-->
<filter>
<filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
<filter-class>org.jasig.cas.client.util.HttpServletRequestWrapperFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<!--
AssertionThreadLocalFilter,AssertionHolder.getAssertion().getPrincipal().getName()
-->
<filter>
<filter-name>CAS Assertion Thread Local Filter</filter-name>
<filter-class>org.jasig.cas.client.util.AssertionThreadLocalFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>CAS Assertion Thread Local Filter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<!-- ============ sso end ================-->
4. 获取用户名(三种方式)
4.1 getUserPrincipal()
AttributePrincipal principal = (AttributePrincipal) request.getUserPrincipal();
String username = principal.getName();
4.2 getRemoteUser()
<%
String loginName1 = request.getRemoteUser();
%>
<br>request.getRemoteUser(): <%=loginName1%>;<br/>
4.3 session 中获取
<%
Object object =request.getSession().getAttribute("_const_cas_assertion_");
Assertion assertion =(Assertion)object;
String loginName3 =assertion.getPrincipal().getName();
%>
request.getSession().getAttribute("_const_cas_assertion_").getPrincipal().getName():<%=loginName3%><br/>