Spring Security整合CAS的示例代码

这里使用的是spring–security和原生的jasig cas包来进行整合，为什么没有直接使用spring提供的spring-security-cas，后面会进行解释。

配置

web.xml

<filter>

<filter-name>casfilterchain</filter-name>

<filter-class>org.springframework.web.filter.delegatingfilterproxy</filter-class>

</filter>

<filter-mapping>

<filter-name>casfilterchain</filter-name>

<url-pattern>/*</url-pattern>

</filter-mapping>

<listener>

<listener-class>org.jasig.cas.client.session.singlesignouthttpsessionlistener</listener-class>

</listener>

applicationcontext-security.xml

<?xml version="1.0" encoding="utf-8"?>

<beans xmlns="http://www.springframework.org/schema/beans"

xmlns:xsi="http://www.w3.org/2001/xmlschema-instance"

xmlns:security="http://www.springframework.org/schema/security"

xmlns:util="http://www.springframework.org/schema/util"

xsi:schemalocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd

http://www.springframework.org/schema/security

http:

//www.springframework.org/schema/security/spring-security-3.2.xsd http://www.springframework.org/schema/util http://www.springframework.org/schema/util/spring-util.xsd">

<bean id="casfilterchain" class="org.springframework.security.web.filterchainproxy">

<constructor-arg>

<util:list>

<security:filter-chain pattern="/**" filters=

"singlesignoutfilter, cas20proxyreceivingticketvalidationfilter, authenticationfilter, httpservletrequestwrapperfilter, assertionthreadlocalfilter"

/>

</util:list>

</constructor-arg>

</bean>

<bean id="singlesignoutfilter" class="org.jasig.cas.client.session.singlesignoutfilter"/>

<bean id="cas20proxyreceivingticketvalidationfilter"

class="org.jasig.cas.client.validation.cas20proxyreceivingticketvalidationfilter">

<property name="servername" value="${client.url}"/>

<property name="ticketvalidator" ref="cas20serviceticketvalidator"/>

</bean>

<bean id="cas20serviceticketvalidator" class="org.jasig.cas.client.validation.cas20serviceticketvalidator">

<constructor-arg value="${cas.url}"/>

<property name="renew" value="false"/>

</bean>

<bean id="authenticationfilter" class="org.jasig.cas.client.authentication.authenticationfilter">

<property name="renew" value="false"/>

<property name="casserverloginurl" value="${cas.url}"/>

<property name="servername" value="${client.url}"/>

</bean>

<bean id="httpservletrequestwrapperfilter" class="org.jasig.cas.client.util.httpservletrequestwrapperfilter"/>

<bean id="assertionthreadlocalfilter" class="org.jasig.cas.client.util.assertionthreadlocalfilter"/>

</beans>

properties

Spring Security整合CAS的示例代码

相关文章

快网idc优惠网

相关文章

微信

快网idc优惠网

QQ交流群