一区二区三区在线-一区二区三区亚洲视频-一区二区三区亚洲-一区二区三区午夜-一区二区三区四区在线视频-一区二区三区四区在线免费观看

服務器之家:專注于服務器技術及軟件下載分享
分類導航

PHP教程|ASP.NET教程|Java教程|ASP教程|編程技術|正則表達式|C/C++|IOS|C#|Swift|Android|VB|R語言|JavaScript|易語言|vb.net|

服務器之家 - 編程語言 - Java教程 - spring boot整合CAS配置詳解

spring boot整合CAS配置詳解

2020-10-05 12:37這樣不太好吧 Java教程

這篇文章主要介紹了spring boot整合CAS配置詳解,小編覺得挺不錯的,現在分享給大家,也給大家做個參考。一起跟隨小編過來看看吧

在下不才,以下是我花了好幾天的時間才整合出來的在spring boot里面的CAS配置整合

為了幫助沒搞定的人,畢竟自己踩了很多坑,一步一步爬過來的,有什么不足之處可以給建議  謝謝(小部分代碼是整合他人的)

1.不多廢話,直接上最重要的代碼,以下代碼整合cas的重要過程

?
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
import org.jasig.cas.client.authentication.AuthenticationFilter;
import org.jasig.cas.client.session.SingleSignOutFilter;
import org.jasig.cas.client.session.SingleSignOutHttpSessionListener;
import org.jasig.cas.client.util.AssertionThreadLocalFilter;
import org.jasig.cas.client.util.HttpServletRequestWrapperFilter;
import org.jasig.cas.client.validation.Cas20ProxyReceivingTicketValidationFilter;
import org.jasig.cas.client.validation.Cas20ServiceTicketValidator;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.boot.web.servlet.FilterRegistrationBean;
import org.springframework.boot.web.servlet.ServletListenerRegistrationBean;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.security.cas.ServiceProperties;
import org.springframework.security.cas.authentication.CasAuthenticationProvider;
import org.springframework.security.cas.userdetails.GrantedAuthorityFromAssertionAttributesUserDetailsService;
import org.springframework.security.web.authentication.logout.LogoutFilter;
import org.springframework.security.web.authentication.logout.SecurityContextLogoutHandler;
 
import java.util.List;
 
 
@Configuration
public class CasConfig {
   
  @Autowired
  SpringCasAutoconfig autoconfig;
   
  private static boolean casEnabled = true;
   
  public CasConfig() {
  }
 
  @Bean
  public SpringCasAutoconfig getSpringCasAutoconfig(){
    return new SpringCasAutoconfig();
  }
 
  /**
   * 用于實現單點登出功能
   */
  @Bean
  public ServletListenerRegistrationBean<SingleSignOutHttpSessionListener> singleSignOutHttpSessionListener() {
    ServletListenerRegistrationBean<SingleSignOutHttpSessionListener> listener = new ServletListenerRegistrationBean<>();
    listener.setEnabled(casEnabled);
    listener.setListener(new SingleSignOutHttpSessionListener());
    listener.setOrder(1);
    return listener;
  }
 
  /**
   * 該過濾器用于實現單點登出功能,單點退出配置,一定要放在其他filter之前
   */
  @Bean
  public FilterRegistrationBean logOutFilter() {
    FilterRegistrationBean filterRegistration = new FilterRegistrationBean();
    LogoutFilter logoutFilter = new LogoutFilter(autoconfig.getCasServerUrlPrefix() + "/logout?service=" + autoconfig.getServerName(),new SecurityContextLogoutHandler());
    filterRegistration.setFilter(logoutFilter);
    filterRegistration.setEnabled(casEnabled);
    if(autoconfig.getSignOutFilters().size()>0)
      filterRegistration.setUrlPatterns(autoconfig.getSignOutFilters());
    else
      filterRegistration.addUrlPatterns("/logout");
    filterRegistration.addInitParameter("casServerUrlPrefix", autoconfig.getCasServerUrlPrefix());
    filterRegistration.addInitParameter("serverName", autoconfig.getServerName());
    filterRegistration.setOrder(2);
    return filterRegistration;
  }
 
  /**
   * 該過濾器用于實現單點登出功能,單點退出配置,一定要放在其他filter之前
   */
  @Bean
  public FilterRegistrationBean singleSignOutFilter() {
    FilterRegistrationBean filterRegistration = new FilterRegistrationBean();
    filterRegistration.setFilter(new SingleSignOutFilter());
    filterRegistration.setEnabled(casEnabled);
    if(autoconfig.getSignOutFilters().size()>0)
      filterRegistration.setUrlPatterns(autoconfig.getSignOutFilters());
    else
      filterRegistration.addUrlPatterns("/*");
    filterRegistration.addInitParameter("casServerUrlPrefix", autoconfig.getCasServerUrlPrefix());
    filterRegistration.addInitParameter("serverName", autoconfig.getServerName());
    filterRegistration.setOrder(3);
    return filterRegistration;
  }
 
  /**
   * 該過濾器負責用戶的認證工作
   */
  @Bean
  public FilterRegistrationBean authenticationFilter() {
    FilterRegistrationBean filterRegistration = new FilterRegistrationBean();
    filterRegistration.setFilter(new AuthenticationFilter());
    filterRegistration.setEnabled(casEnabled);
    if(autoconfig.getAuthFilters().size()>0)
      filterRegistration.setUrlPatterns(autoconfig.getAuthFilters());
    else
      filterRegistration.addUrlPatterns("/*");
    //casServerLoginUrl:cas服務的登陸url
    filterRegistration.addInitParameter("casServerLoginUrl", autoconfig.getCasServerLoginUrl());
    //本項目登錄ip+port
    filterRegistration.addInitParameter("serverName", autoconfig.getServerName());
    filterRegistration.addInitParameter("useSession", autoconfig.isUseSession()?"true":"false");
    filterRegistration.addInitParameter("redirectAfterValidation", autoconfig.isRedirectAfterValidation()?"true":"false");
    filterRegistration.setOrder(4);
    return filterRegistration;
  }
 
  /**
   * 該過濾器負責對Ticket的校驗工作
   */
  @Bean
  public FilterRegistrationBean cas20ProxyReceivingTicketValidationFilter() {
    FilterRegistrationBean filterRegistration = new FilterRegistrationBean();
    Cas20ProxyReceivingTicketValidationFilter cas20ProxyReceivingTicketValidationFilter = new Cas20ProxyReceivingTicketValidationFilter();
    //cas20ProxyReceivingTicketValidationFilter.setTicketValidator(cas20ServiceTicketValidator());
    cas20ProxyReceivingTicketValidationFilter.setServerName(autoconfig.getServerName());
    filterRegistration.setFilter(cas20ProxyReceivingTicketValidationFilter);
    filterRegistration.setEnabled(casEnabled);
    if(autoconfig.getValidateFilters().size()>0)
      filterRegistration.setUrlPatterns(autoconfig.getValidateFilters());
    else
      filterRegistration.addUrlPatterns("/*");
    filterRegistration.addInitParameter("casServerUrlPrefix", autoconfig.getCasServerUrlPrefix());
    filterRegistration.addInitParameter("serverName", autoconfig.getServerName());
    filterRegistration.setOrder(5);
    return filterRegistration;
  }
 
 
  /**
   * 該過濾器對HttpServletRequest請求包裝, 可通過HttpServletRequest的getRemoteUser()方法獲得登錄用戶的登錄名
   *
   */
  @Bean
  public FilterRegistrationBean httpServletRequestWrapperFilter() {
    FilterRegistrationBean filterRegistration = new FilterRegistrationBean();
    filterRegistration.setFilter(new HttpServletRequestWrapperFilter());
    filterRegistration.setEnabled(true);
    if(autoconfig.getRequestWrapperFilters().size()>0)
      filterRegistration.setUrlPatterns(autoconfig.getRequestWrapperFilters());
    else
      filterRegistration.addUrlPatterns("/*");
    filterRegistration.setOrder(6);
    return filterRegistration;
  }
 
  /**
   * 該過濾器使得可以通過org.jasig.cas.client.util.AssertionHolder來獲取用戶的登錄名。
   比如AssertionHolder.getAssertion().getPrincipal().getName()。
   這個類把Assertion信息放在ThreadLocal變量中,這樣應用程序不在web層也能夠獲取到當前登錄信息
   */
  @Bean
  public FilterRegistrationBean assertionThreadLocalFilter() {
    FilterRegistrationBean filterRegistration = new FilterRegistrationBean();
    filterRegistration.setFilter(new AssertionThreadLocalFilter());
    filterRegistration.setEnabled(true);
    if(autoconfig.getAssertionFilters().size()>0)
      filterRegistration.setUrlPatterns(autoconfig.getAssertionFilters());
    else
      filterRegistration.addUrlPatterns("/*");
    filterRegistration.setOrder(7);
    return filterRegistration;
  }
}

2.為了讓你們更省力且直接的看到效果,我把相關配置也貼出來

?
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
import org.springframework.boot.context.properties.ConfigurationProperties;
import org.springframework.context.annotation.Configuration;
 
import java.util.Arrays;
import java.util.List;
 
@ConfigurationProperties(prefix = "spring.cas")
public class SpringCasAutoconfig {
 
  static final String separator = ",";
 
  private String validateFilters;
  private String signOutFilters;
  private String authFilters;
  private String assertionFilters;
  private String requestWrapperFilters;
 
  private String casServerUrlPrefix;
  private String casServerLoginUrl;
  private String serverName;
  private boolean useSession = true;
  private boolean redirectAfterValidation = true;
 
  public List<String> getValidateFilters() {
    return Arrays.asList(validateFilters.split(separator));
  }
  public void setValidateFilters(String validateFilters) {
    this.validateFilters = validateFilters;
  }
  public List<String> getSignOutFilters() {
    return Arrays.asList(signOutFilters.split(separator));
  }
  public void setSignOutFilters(String signOutFilters) {
    this.signOutFilters = signOutFilters;
  }
  public List<String> getAuthFilters() {
    return Arrays.asList(authFilters.split(separator));
  }
  public void setAuthFilters(String authFilters) {
    this.authFilters = authFilters;
  }
  public List<String> getAssertionFilters() {
    return Arrays.asList(assertionFilters.split(separator));
  }
  public void setAssertionFilters(String assertionFilters) {
    this.assertionFilters = assertionFilters;
  }
  public List<String> getRequestWrapperFilters() {
    return Arrays.asList(requestWrapperFilters.split(separator));
  }
  public void setRequestWrapperFilters(String requestWrapperFilters) {
    this.requestWrapperFilters = requestWrapperFilters;
  }
  public String getCasServerUrlPrefix() {
    return casServerUrlPrefix;
  }
  public void setCasServerUrlPrefix(String casServerUrlPrefix) {
    this.casServerUrlPrefix = casServerUrlPrefix;
  }
  public String getCasServerLoginUrl() {
    return casServerLoginUrl;
  }
  public void setCasServerLoginUrl(String casServerLoginUrl) {
    this.casServerLoginUrl = casServerLoginUrl;
  }
  public String getServerName() {
    return serverName;
  }
  public void setServerName(String serverName) {
    this.serverName = serverName;
  }
  public boolean isRedirectAfterValidation() {
    return redirectAfterValidation;
  }
  public void setRedirectAfterValidation(boolean redirectAfterValidation) {
    this.redirectAfterValidation = redirectAfterValidation;
  }
  public boolean isUseSession() {
    return useSession;
  }
  public void setUseSession(boolean useSession) {
    this.useSession = useSession;
  }
 
}

3.配置文件  dev.yml

?
1
2
3
4
5
6
7
8
9
10
11
12
#cas client config
spring:cas:
sign-out-filters: /logout
auth-filters: /*
validate-filters: /*
request-wrapper-filters: /*
assertion-filters: /*
cas-server-login-url: cas登錄url
cas-server-url-prefix:cas登錄域名
redirect-after-validation: true
use-session: true
server-name: http://localhost:8080

以上就是本文的全部內容,希望對大家的學習有所幫助,也希望大家多多支持服務器之家。

原文鏈接:http://blog.csdn.net/jw314947712/article/details/54236216

延伸 · 閱讀

精彩推薦
主站蜘蛛池模板: 亚洲成人黄色网址 | 男女全黄h全肉细节文 | 成人免费视频播放 | avtt天堂网手机版亚洲 | jk制服喷水 | 秒播影视 午夜福利毛片 | 国产综合成色在线视频 | 日本一区二区三区视频在线观看 | 久久99精品国产免费观看 | 精品欧美小视频在线观看 | 欧美日韩亚毛片免费观看 | 99在线资源 | 美女下面被cao出水 美女污视频 | 国产一区日韩二区欧美三 | 欧美大美bbb和大白屁股 | 不良小说 | 日韩理论片在线看免费观看 | 国产自产一区c | 亚洲色图2 | 精品手机在线视频 | 国产午夜亚洲精品 | 半挠脚心半黄的网站 | 1024亚洲天堂 | 美国69xxxx59 | 欧美人禽杂交狂配无删完整 | 欧美一区二区三区久久久 | 91制片厂 果冻传媒 天美传媒 | 色婷婷综合久久久中文字幕 | 亚洲第一综合天堂另类专 | 校花在公车上被内射好舒 | 久久精品国产清白在天天线 | 国产午夜视频在线观看网站 | 60岁了天天要小伙子 | 国产麻豆精品原创 | zol中关村在线 | 热久久最新 | 亚洲精品国产成人99久久 | 免费在线观看a | 亚洲精品m在线观看 | 欧美精品一区二区三区免费观看 | 亚洲欧美综合区自拍另类 |