码上欢乐
相关内容   简体   繁体

项目集成单点登录

本文转载自  查看原文  2017-01-09 10:30  1624    web集成

项目集成单点登录

1、web.xml集成单点
  1. <?xml version="1.0" encoding="UTF-8"?>
  2. <web-appversion="2.5"xmlns="http://java.sun.com/xml/ns/javaee"xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
  3. xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd">
  4. <display-name>smartcity base Application</display-name>
  5. <description>smartcity base web</description>
  8. <context-param>
  9. <param-name>casServerLogoutUrl</param-name>
  10. <param-value>http://192.168.21.46:8080/cas/logout</param-value>
  11. </context-param>
  13. <listener>
  14. <listener-class>org.jasig.cas.client.session.SingleSignOutHttpSessionListener</listener-class>
  15. </listener>
  16. <filter>
  17. <filter-name>CAS Single Sign Out Filter</filter-name>
  18. <filter-class>org.jasig.cas.client.session.SingleSignOutFilter</filter-class>
  19. </filter>
  20. <filter-mapping>
  21. <filter-name>CAS Single Sign Out Filter</filter-name>
  22. <url-pattern>/*</url-pattern>
  23. </filter-mapping>
  25. <!-- CAS 客户端配置 这个filter负责对请求进行登录验证拦截,-->
  26. <filter>
  27. <filter-name>CAS Authentication Filter</filter-name>
  28. <filter-class>
  29. cn.com.bmsoft.smartcity.survey.filter.AuthenticationFilterWithExcludeUrl
  30. </filter-class>
  31. <!-- CAS验证服务器地址,有域名填写域名 -->
  32. <init-param>
  34. <param-name>casServerLoginUrl</param-name>
  35. <param-value>
  36. http://192.168.21.46:8080/cas
  37. </param-value>
  38. </init-param>
  39. <init-param>
  40. <param-name>renew</param-name>
  41. <param-value>false</param-value>
  42. </init-param>
  43. <init-param>
  44. <param-name>gateway</param-name>
  45. <param-value>false</param-value>
  46. </init-param>
  47. <init-param>
  48. <param-name>serverName</param-name>
  49. <param-value>http://localhost:8080</param-value>
  50. </init-param>
  51. <init-param>
  52. <description>排除路径</description>
  53. <param-name>excludePaths</param-name>
  54. <param-value>/management/questionnaire/*,/management/stat/*,/account/*,/resources/*</param-value>
  55. </init-param>
  56. </filter>
  57. <filter-mapping>
  58. <filter-name>CAS Authentication Filter</filter-name>
  59. <url-pattern>/*</url-pattern>
  60. </filter-mapping>
  62. <!--负责Ticket校验 这个filter负责对请求参数ticket进行验证(ticket参数是负责子系统与CAS进行验证交互的凭证)-->
  63. <filter>
  64. <filter-name>CAS Validation Filter</filter-name>
  65. <filter-class>
  66. org.jasig.cas.client.validation.Cas20ProxyReceivingTicketValidationFilter
  67. </filter-class>
  68. <init-param>
  69. <param-name>casServerUrlPrefix</param-name>
  70. <param-value>http://192.168.21.46:8080/cas/</param-value>
  71. </init-param>
  72. <init-param>
  73. <param-name>serverName</param-name>
  74. <param-value>http://localhost:8080</param-value>
  75. </init-param>
  76. <init-param>
  77. <param-name>useSession</param-name>
  78. <param-value>true</param-value>
  79. </init-param>
  80. <init-param>
  81. <param-name>redirectAfterValidation</param-name>
  82. <param-value>true</param-value>
  83. </init-param>
  84. <init-param>
  85. <param-name>encoding</param-name>
  86. <param-value>UTF-8</param-value>
  87. </init-param>
  88. </filter>
  89. <filter-mapping>
  90. <filter-name>CAS Validation Filter</filter-name>
  91. <url-pattern>/*</url-pattern>
  92. </filter-mapping>
  94. <filter>
  95. <filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
  96. <filter-class>
  97. org.jasig.cas.client.util.HttpServletRequestWrapperFilter
  98. </filter-class>
  99. </filter>
  100. <filter-mapping>
  101. <filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
  102. <url-pattern>/*</url-pattern>
  103. </filter-mapping>
  105. <filter>
  106. <filter-name>CAS Assertion Thread Local Filter</filter-name>
  107. <filter-class>
  108. org.jasig.cas.client.util.AssertionThreadLocalFilter
  109. </filter-class>
  110. </filter>
  111. <filter-mapping>
  112. <filter-name>CAS Assertion Thread Local Filter</filter-name>
  113. <url-pattern>/*</url-pattern>
  114. </filter-mapping>
  116. <!--<filter-mapping>-->
  117. <!--<filter-name>login</filter-name>-->
  118. <!--<url-pattern>/*</url-pattern>-->
  119. <!--</filter-mapping>-->
  120. <listener>
  121. <listener-class>
  122. org.springframework.web.context.request.RequestContextListener
  123. </listener-class>
  124. </listener>
  126. <!--<filter>-->
  127. <!--<filter-name>login</filter-name>-->
  128. <!--<filter-class>cn.com.bmsoft.smartcity.common.LoginFilter</filter-class>-->
  129. <!--<init-param>-->
  130. <!--<param-name>loginUrl</param-name>-->
  131. <!--&lt;!&ndash;下面是未登录跳转和超时跳转代理页面&ndash;&gt;-->
  132. <!--<param-value>/account/login</param-value>-->
  133. <!--</init-param>-->
  134. <!--</filter>-->
  135. <!--<filter-mapping>-->
  136. <!--<filter-name>login</filter-name>-->
  137. <!--<url-pattern>/*</url-pattern>-->
  138. <!--</filter-mapping>-->
  140. <servlet>
  141. <servlet-name>smartcity springMvc </servlet-name>
  142. <servlet-class>org.springframework.web.servlet.DispatcherServlet</servlet-class>
  143. <init-param>
  144. <param-name>contextConfigLocation</param-name>
  145. <param-value>classpath*:servlet-context.xml,classpath*:spring-mybatis.xml,classpath*:spring-rbac.xml</param-value>
  146. </init-param>
  147. <load-on-startup>1</load-on-startup>
  148. </servlet>
  150. <servlet-mapping>
  151. <servlet-name>smartcity springMvc</servlet-name>
  152. <url-pattern>/</url-pattern>
  153. </servlet-mapping>
  155. <session-config>
  156. <session-timeout>60</session-timeout>
  157. </session-config>
  158. <welcome-file-list>
  159. <welcome-file>/</welcome-file>
  160. </welcome-file-list>
  161. </web-app>
2、权限和单点配置信息
  1. sso.enable=true
  2. rbac.enable=true
  3. rbac.url=http://192.168.21.46:8080/
  4. weixin.url=http://192.168.28.111:8181/
  5. sso.casServerUrlPrefix = http://192.168.21.46:8080/cas/
  6. sso.logoutUrl = ${sso.casServerUrlPrefix}logout
  7. sso.client.serverName=http://localhost:8080
3、登录拦截filter,将单点系统存放在session中的用户信息拿到后做处理再添加系统所需用户信息在session中
  1. publicfinalvoid doFilter(ServletRequest servletRequest,ServletResponse servletResponse,FilterChain filterChain)throwsIOException,ServletException{
  2. HttpServletRequest request =(HttpServletRequest)servletRequest;
  3. HttpServletResponse response =(HttpServletResponse)servletResponse;
  4. HttpSession session = request.getSession(false);
  5. Assertion assertion = session !=null?(Assertion)session.getAttribute("_const_cas_assertion_"):null;
  6. if(assertion !=null){
  7. String username = assertion.getPrincipal().getName();
  8. IUserService userService =(IUserService)ServiceLocator.getService("userService");
  9. Map<String,Object> queryParams =newHashMap<String,Object>();
  10. queryParams.put("username",username);
  11. List<User> users = userService.find(queryParams);
  12. SessionUtil.set(request,SessionUtil.USER_SESSION_NAME,users.get(0));
  13. filterChain.doFilter(request, response);
  14. }else{
  15. String serviceUrl =this.constructServiceUrl(request, response);
  16. boolean isInWhiteList =false;
  17. if(excludePaths!=null&& excludePaths.size()>0&& serviceUrl !=null){
  18. for(String path : excludePaths){
  19. if(CommonUtils.isNotBlank(path)){
  20. isInWhiteList =StringUtil.isIn(path,serviceUrl);
  21. if(isInWhiteList){
  22. break;
  23. }
  24. }
  25. }
  26. }
  27. String ticket =CommonUtils.safeGetParameter(request,this.getArtifactParameterName());
  28. boolean wasGatewayed =this.gatewayStorage.hasGatewayedAlready(request, serviceUrl);
  29. if(isInWhiteList){
  30. filterChain.doFilter(request, response);
  31. }elseif(!CommonUtils.isNotBlank(ticket)&&!wasGatewayed){
  32. this.log.debug("no ticket and no assertion found");
  33. String modifiedServiceUrl;
  34. if(this.gateway){
  35. this.log.debug("setting gateway attribute in session");
  36. modifiedServiceUrl =this.gatewayStorage.storeGatewayInformation(request, serviceUrl);
  37. }else{
  38. modifiedServiceUrl = serviceUrl;
  39. }
  41. if(this.log.isDebugEnabled()){
  42. this.log.debug("Constructed service url: "+ modifiedServiceUrl);
  43. }
  45. String urlToRedirectTo =CommonUtils.constructRedirectUrl(this.casServerLoginUrl,this.getServiceParameterName(), modifiedServiceUrl,this.renew,this.gateway);
  46. if(this.log.isDebugEnabled()){
  47. this.log.debug("redirecting to \""+ urlToRedirectTo +"\"");
  48. }
  50. response.sendRedirect(urlToRedirectTo);
  51. }else{
  52. filterChain.doFilter(request, response);
  53. }
  54. }
  55. }
4、修改我们的首页控制器,获取session中的用户信息,处理存放到变量集合
  1. package cn.com.bmsoft.smartcity.common.controller;
  3. import cn.com.bmsoft.smartcity.common.IContextService;
  4. import cn.com.bmsoft.smartcity.common.TreeModel;
  5. import cn.com.bmsoft.smartcity.common.domain.User;
  6. import cn.com.bmsoft.smartcity.common.util.SessionUtil;
  7. import com.bmsoft.jasig.cas.client.util.CASClientUtils;
  8. import org.springframework.beans.factory.annotation.Autowired;
  9. import org.springframework.stereotype.Controller;
  10. import org.springframework.web.bind.annotation.RequestMapping;
  11. import org.springframework.web.bind.annotation.RequestMethod;
  12. import org.springframework.web.bind.annotation.ResponseBody;
  13. import org.springframework.web.servlet.ModelAndView;
  15. import javax.servlet.http.HttpServletRequest;
  16. import java.util.HashMap;
  17. import java.util.Map;
  20. @Controller("home")
  21. publicclassHomeController{
  23. @Autowired
  24. privateIContextService contextService;
  26. @RequestMapping(value={"","/home/index","/home"})
  27. publicModelAndView home(HttpServletRequest request){
  28. Map<String,String> map=newHashMap<String,String>();
  29. User user =(User)SessionUtil.get(request,SessionUtil.USER_SESSION_NAME);
  30. map.put("userName", user.getName());
  31. returnnewModelAndView("home/index",map);
  32. }
  34. @ResponseBody
  35. @RequestMapping(value ={"/home/menu"}, method =RequestMethod.GET)
  36. publicTreeModel getMenu(HttpServletRequest request){
  37. User user =(User)SessionUtil.get(request,SessionUtil.USER_SESSION_NAME);
  38. returnthis.contextService.getMenu(user.getUsername());
  39. }
  42. }
5、退出控制器,退出按钮方法修改
  1. package cn.com.bmsoft.smartcity.common.controller;
  3. import cn.com.bmsoft.smartcity.common.util.SessionUtil;
  4. import org.springframework.beans.factory.annotation.Value;
  5. import org.springframework.stereotype.Controller;
  6. import org.springframework.web.bind.annotation.RequestMapping;
  7. import org.springframework.web.servlet.ModelAndView;
  8. import org.springframework.web.servlet.view.RedirectView;
  10. import javax.servlet.http.HttpServletRequest;
  12. /**
  13. * Created by Administrator on 2016/4/18.
  14. */
  15. @Controller
  16. @RequestMapping(value ="/accounts")
  17. publicclassLogoutController{
  19. @Value("${sso.logoutUrl}")
  20. privateString logoutUrl;
  21. @Value("${sso.client.serverName}")
  22. privateString serverName;
  24. // @RequestMapping("/logout")
  25. // public ModelAndView logout(ModelAndView view, HttpServletRequest request) {
  26. // SessionUtil.destroy(request,SessionUtil.USER_SESSION_NAME);
  27. //// request.getSession().invalidate();
  28. // request.setAttribute("message","");
  29. // String logout = logoutUrl+"?service="+serverName+request.getContextPath()+"/";
  30. // view.setView(new RedirectView(logout, false));
  31. // return view;
  32. // }
  34. @RequestMapping("/logout")
  35. publicString logout(HttpServletRequest request){
  36. SessionUtil.destroy(request,SessionUtil.USER_SESSION_NAME);
  37. // request.getSession().invalidate();
  38. request.setAttribute("message","");
  39. return"account/login";
  40. }
  41. }
 






免责声明!

本站转载的文章为个人学习借鉴使用,本站对版权不负任何法律责任。如果侵犯了您的隐私权益,请联系本站邮箱yoyou2525@163.com删除。



猜您在找 SpringBoot项目集成cas单点登录 SpringBoot集成CAS单点登录,SSO单点登录,CAS单点登录(视频资料分享篇) abp集成IdentityServer4和单点登录 springboot+vue集成cas单点登录 ABP集成WIF实现单点登录 Spring Security 集成CAS实现单点登录 Java项目接入sso单点登录 基于IdentityServer4的单点登录——项目基本结构与流程 实战:ADFS3.0单点登录系列-集成MVC 系统集成(单点登录)-钉钉、OA、金蝶云
 
粤ICP备18138465号  © 2018-2025 CODEPRJ.COM