源码:https://github.com/Jasig/phpCAS
文档:https://wiki.jasig.org/display/CASC/phpCAS+examples
安 装
ubuntu下使用pear安装
sudo pear install http://downloads.jasig.org/cas-clients/php/current.tgz
配置
// CAS Server 主机
$cas_host = 'cas-server';
// CAS Server 路径
$cas_context = '/cas';
// CAS server.端口
$cas_port = 443;
// <span lang="EN-US">CAS Server </span>证书
$cas_server_ca_cert_path = './ssoserver.cer';
使用
//验证访问用户是否合法
require_once 'include/cas_config.php';
require_once 'phpcas/CAS.php';
// Enable debugging
phpCAS::setDebug();
// Initialize phpCAS
phpCAS::client(CAS_VERSION_2_0, $cas_host, $cas_port, $cas_context);
// For production use set the CA certificate that is the issuer of the cert
// on the CAS server and uncomment the line below
// phpCAS::setCasServerCACert($cas_server_ca_cert_path);
// For quick testing you can disable SSL validation of the CAS server.
// THIS SETTING IS NOT RECOMMENDED FOR PRODUCTION.
// VALIDATING THE CAS SERVER IS CRUCIAL TO THE SECURITY OF THE CAS PROTOCOL!
phpCAS::setNoCasServerValidation();
// force CAS authentication
phpCAS::forceAuthentication();
// 取得登陆用户id
$cas_user_id = phpCAS::getAttribute('id');
//phpCAS::logout();
</pre><strong>原 理</strong><p>推荐资料:http://blog.chinaunix.net/uid-22816738-id-3525939.html</p><p></p><p>问题一:</p><p></p><h1>CAS Authentication failed!</h1>如果发现出现上述错误,应该是证书问题, 把<p><pre name="code" class="php">phpCAS::setCasServerCACert($cas_server_ca_cert_path);
注释掉就好了,主要是为了联调通过,生产环境最好设置证书