security 集成cas

Posted 采姑娘的蘑菇

tags:

篇首语:本文由小常识网(cha138.com)小编为大家整理,主要介绍了security 集成cas相关的知识,希望对你有一定的参考价值。

    1. web.xml
    2. <context-param>  
    3.         <param-name>contextConfigLocation</param-name>  
    4.         <param-value>  
    5.             /WEB-INF/applicationContext-security.xml  
    6.         </param-value>  
    7.     </context-param>  
    8.   
    9.     <context-param>  
    10.         <param-name>log4jConfigLocation</param-name>  
    11.         <param-value>/WEB-INF/classes/log4j.properties</param-value>  
    12.     </context-param>  
    13.   
    14.     <context-param>  
    15.         <param-name>webAppRootKey</param-name>  
    16.         <param-value>cas.root</param-value>  
    17.     </context-param>  
    18.   
    19.     <filter>  
    20.        <filter-name>CAS Single Sign Out Filter</filter-name>  
    21.        <filter-class>org.jasig.cas.client.session.SingleSignOutFilter</filter-class>  
    22.     </filter>  
    23.   
    24.     <filter>  
    25.         <filter-name>springSecurityFilterChain</filter-name>  
    26.         <filter-class>org.springframework.web.filter.DelegatingFilterProxy</filter-class>  
    27.     </filter>  
    28.   
    29.     <filter-mapping>  
    30.        <filter-name>CAS Single Sign Out Filter</filter-name>  
    31.        <url-pattern>/*</url-pattern>  
    32.     </filter-mapping>  
    33.   
    34.     <filter-mapping>  
    35.       <filter-name>springSecurityFilterChain</filter-name>  
    36.       <url-pattern>/*</url-pattern>  
    37.     </filter-mapping>  
    38.   
    39.     <listener>  
    40.         <listener-class>org.jasig.cas.client.session.SingleSignOutHttpSessionListener</listener-class>  
    41.     </listener>  
    42.   
    43.     <listener>  
    44.         <listener-class>org.springframework.web.context.ContextLoaderListener</listener-class>  
    45.     </listener>  
    46.   
    47.     <listener>  
    48.         <listener-class>org.springframework.web.util.Log4jConfigListener</listener-class>  
    49.     </listener
  10. 2)applicationContext-security.xml
  12. <?xml version="1.0" encoding="UTF-8"?> 
  13. <beans:beans xmlns="http://www.springframework.org/schema/security" 
  14.     xmlns:context="http://www.springframework.org/schema/context" 
  15.     xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:p="http://www.springframework.org/schema/p" 
  16.     xmlns:beans="http://www.springframework.org/schema/beans" 
  17.     xsi:schemaLocation="  http://www.springframework.org/schema/context  http://www.springframework.org/schema/context/spring-context-2.5.xsd  
  18.            http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd    
  19.            http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security-3.0.xsd"  
  20.     default-lazy-init="true"
  21.     <context:component-scan base-package="com.itec.core" /> 
  22. <!--SSO --> 
  23.     <http auto-config="false" entry-point-ref="casEntryPoint" servlet-api-provision="true">    
  24.         <intercept-url pattern="/login.do" filters="none" /> 
  25.         <intercept-url pattern="/image.do" filters="none" /> 
  26.         <intercept-url pattern="/admin/*.do*" access="ROLE_LOGIN" />   
  27.         <!-- logout-success-url="/login.html" -->    
  28. <!--        <logout logout-url="/login.do" success-handler-ref="casLogoutSuccessHandler"/>   --> 
  29.         <custom-filter ref="requestSingleLogoutFilter" before="LOGOUT_FILTER" />   
  30.         <custom-filter position="FORM_LOGIN_FILTER" ref="casFilter"/>    
  31.         <custom-filter ref="singleLogoutFilter" before="CAS_FILTER" /> 
  32.     </http>   
  33.  
  34.     <beans:bean id="casEntryPoint"  class="org.springframework.security.cas.web.CasAuthenticationEntryPoint">    
  35.         <beans:property name="loginUrl" value="http://172.19.50.21:9083/HASLSSO/login"/>    
  36.         <beans:property name="serviceProperties" ref="serviceProperties"/>    
  37.     </beans:bean
  38.     <beans:bean id="serviceProperties"  class="org.springframework.security.cas.ServiceProperties">    
  39.         <beans:property name="service"  value="http://172.19.4.225:8080/HACMS/j_spring_cas_security_check"/>    
  40.         <beans:property name="sendRenew" value="false"/>    
  41.     </beans:bean
  42.  
  43.     <beans:bean id="casFilter"  class="org.springframework.security.cas.web.CasAuthenticationFilter">    
  44.         <beans:property name="authenticationManager" ref="authenticationManager"/>    
  45.     </beans:bean>    
  46.         
  47.     <authentication-manager alias="authenticationManager">    
  48.         <authentication-provider ref="casAuthenticationProvider"/>   
  49.     </authentication-manager>    
  50.         
  51.     <beans:bean id="casAuthenticationUserDetailsService" class="org.springframework.security.core.userdetails.UserDetailsByNameServiceWrapper">    
  52.         <beans:property name="userDetailsService" >    
  53.             <beans:ref bean="userDetailsManager" />    
  54.         </beans:property>    
  55.     </beans:bean>    
  56.        
  57.     <beans:bean id="casAuthenticationProvider"    
  58.             class="org.springframework.security.cas.authentication.CasAuthenticationProvider">    
  59.         <beans:property name="authenticationUserDetailsService" ref="casAuthenticationUserDetailsService"/>    
  60.         <beans:property name="serviceProperties" ref="serviceProperties" />    
  61.         <beans:property name="ticketValidator">    
  62.             <beans:bean class="org.jasig.cas.client.validation.Cas20ServiceTicketValidator">    
  63.                 <beans:constructor-arg index="0" value="http://172.19.50.21:9083/HASLSSO" />    
  64.             </beans:bean>    
  65.         </beans:property>    
  66.         <beans:property name="key" value="an_id_for_this_auth_provider_only"/>    
  67.     </beans:bean>    
  68.  
  69.     <!-- 注销客户端 --> 
  70.     <beans:bean id="singleLogoutFilter" class="org.jasig.cas.client.session.SingleSignOutFilter" /> 
  71.  
  72.     <!-- 注销服务器端 --> 
  73.     <beans:bean id="requestSingleLogoutFilter" 
  74.     class="org.springframework.security.web.authentication.logout.LogoutFilter"
  75.     <beans:constructor-arg 
  76.     value="http://172.19.50.21:9083/HASLSSO/logout" /> 
  77.     <beans:constructor-arg
  78.     <beans:bean 
  79.     class="org.springframework.security.web.authentication.logout.SecurityContextLogoutHandler"/> 
  80.     </beans:constructor-arg
  81.     <beans:property name="filterProcessesUrl" value="/j_spring_cas_security_logout" /> 
  82.     </beans:bean
  83.  
  84. </beans:beans>  

以上是关于security 集成cas的主要内容,如果未能解决你的问题,请参考以下文章

Spring Security:如何将两个应用程序与单独的 Spring Security 配置集成?

springboot集成security(鉴权)

如何集成 Spring Security 和 GWT?

springboot集成security(认证)

Spring(Websockets / REST / Security)、JWT 和 Sockjs(Stomp)集成

集成 Spring Security:身份验证自定义 UserDetailsS​​ervice