[b]为什么有Login ticket:[/b] 类似与Struts的token,防止当用户退出系统注销CAS凭证后,另外一个用户通过浏览器的回退按钮,一直到浏览器提示重新提交数据(用户名,密码等登陆数据)而成功登陆系统。由于Login ticket只能被验证一次,因此第二次通过浏览器后退而导致的数据提交,后台验证会失败。参考:[url=http://www.jasig.org/cas/server-deployment/faq#2]Why was the LoginTicket added?[/url]
[b]为什么Cas要使用pgtIou[/b]:[url=http://jasig.275507.n4.nabble.com/What-is-the-pgtIou-used-for-td255725.html]What is the pgtIou used for? [/url]
[b]Cas下用代理的基础步骤[/b]:[url=https://wiki.jasig.org/display/CAS/Proxy+CAS+Walkthrough]Proxy CAS Walkthrough[/url]
[b]开发时,使用虚拟证书(不能用在生产环境)[/b]: 1, 把DummySSLSocketFactory.java和DummyTrustManager.java放到src/edu/yale/its/tp/cas/util 2,把代码((HttpsURLConnection)uc).setSSLSocketFactory(new DummySSLSocketFactory()); 加到SecureURL.java类的URLConnection uc = u.openConnection(); 后面。参考:[url=http://www.jasig.org/cas/server-deployment/faq#7]How do I use a self-signed certificate?[/url]
[b]为什么应该在Cas服务器启用Services Management Tool(SMT)[/b]: Services Management Tool可以允许你锁定Cas,也能让你控制哪些服务能使用Cas。SMT链接:https://localhost:8443/cas/services/
参考:[url=https://wiki.jasig.org/display/CASUM/Services+Management]What is Services Management?[/url], [url=https://wiki.jasig.org/display/CAS/Frequently+Asked+Questions]Why should I use the Services Management Tool? It seems like EFFORT to set up and deploy.[/url]
[b]为什么要用HTTPS(Cas, Cas Client):[/b] 防止中间人攻击。参考:[url=https://wiki.jasig.org/display/CAS/Frequently+Asked+Questions]Why should I require CAS to run over HTTPS, or the client applications to run over HTTPS?[/url]
[b]为什么Cas要使用pgtIou[/b]:[url=http://jasig.275507.n4.nabble.com/What-is-the-pgtIou-used-for-td255725.html]What is the pgtIou used for? [/url]
[b]Cas下用代理的基础步骤[/b]:[url=https://wiki.jasig.org/display/CAS/Proxy+CAS+Walkthrough]Proxy CAS Walkthrough[/url]
[b]开发时,使用虚拟证书(不能用在生产环境)[/b]: 1, 把DummySSLSocketFactory.java和DummyTrustManager.java放到src/edu/yale/its/tp/cas/util 2,把代码((HttpsURLConnection)uc).setSSLSocketFactory(new DummySSLSocketFactory()); 加到SecureURL.java类的URLConnection uc = u.openConnection(); 后面。参考:[url=http://www.jasig.org/cas/server-deployment/faq#7]How do I use a self-signed certificate?[/url]
[b]为什么应该在Cas服务器启用Services Management Tool(SMT)[/b]: Services Management Tool可以允许你锁定Cas,也能让你控制哪些服务能使用Cas。SMT链接:https://localhost:8443/cas/services/
参考:[url=https://wiki.jasig.org/display/CASUM/Services+Management]What is Services Management?[/url], [url=https://wiki.jasig.org/display/CAS/Frequently+Asked+Questions]Why should I use the Services Management Tool? It seems like EFFORT to set up and deploy.[/url]
[b]为什么要用HTTPS(Cas, Cas Client):[/b] 防止中间人攻击。参考:[url=https://wiki.jasig.org/display/CAS/Frequently+Asked+Questions]Why should I require CAS to run over HTTPS, or the client applications to run over HTTPS?[/url]