1. Understand Single Sign On
The main features of SSO are: Web protocols (such as HTTPS) are used between SSO applications, and there is only one login entry.
There are three roles in the SSO system:
1) User(multiple)
2) Web application (multiple)
3) SSO certification center (one)
2. SSO implementation includes the following three principles
1) All logins are performed at the SSO authentication center.
2) The SSO authentication center uses some methods to tell the web application whether the current access user is an authenticated user.
3) The SSO certificate authority establishes a trust relationship with all web applications.
3. Understand single sign-on architecture
1) CAS Server is responsible for completing the authentication of user information and needs to be deployed separately. CAS Server will process credentials such as username/password.
2) CAS Client is deployed on the client side. When there is an access request to the protected resources of the local Web application, and the requester needs to be authenticated, it will be redirected to the CAS Server for authentication.
4. CAS SSO single sign-on can be a cross-domain solution that does not rely on cookies
It is more advantageous to not rely on cookies to cross domains. If we log in once on Jingdong Mall, there are actually many sites on Jingdong Mall. After clicking on other sites, we can use them directly without logging in again. We can clearly understand As you can see, the domain names inside are all different. If the traditional solution is used, there may be a cross-domain cookie problem, which is more troublesome to solve.
5.CAS SSO single sign-on official website:
https://www.apereo.org/projects/cas
6. CAS source code download address
Enter the source code download address, the current git library is the CAS that is being maintained, and it is also the latest CAS
The latest version of CAS may be unstable, so we do not recommend using this download method. You can click releases to view different versions and download and use the more stable version.
7. Download the relevant source package of cas by downloading the stable version, as follows:
Just select the stable code of 4.2.1 directly
8. The version version in our project uses the maven apereo remote library to download
Download the war package of cas-server-webapp through the remote maven library. The steps are as follows:
(1) Visit the Maven address: http://mvnrepository.com/, and search for cas-server-webapp
(2) Click the link address of cas-server-webapp to download the latest version
9. Download the jar package of cas-client-core as follows:
10.CAS document, cas is developed using spring mvc, supported protocols, supported development languages, etc.
Architecture diagram of CAS:
Cas installation requirements (our project instance uses server version 4.2.7 and clent version is 3.3):
This is a detailed tutorial done through sso cas. There are many documents and source code in it. The source code can be directly run to view the effect.
Friends who need sso single sign-on to all source code and documents can add me Q penguin: 3377589122