本次用的SSO是 CAS的官网:http://www.jasig.org/cas
如何搭建SSO server请查看: http://www.micmiu.com/enterprise-app/sso/sso-cas-sample/或自行google
这里只介绍应用如何用已搭建好的SSO。
1. 在pom.xml中加入3.4.1 jasig CAS client,一开始用的3.1.12,但是因为要用到排除一些url不经SSO的功能,所以选择此版本
<!-- cas -->
<dependency>
<groupId>org.jasig.cas.client</groupId>
<artifactId>cas-client-core</artifactId>
<version>3.4.1</version>
</dependency>
2. 在web.xml中加入
<!-- ======================== 单点登录开始 ======================== -->
<!-- 用于单点退出,该过滤器用于实现单点登出功能,可选配置 -->
<listener>
<listener-class>org.jasig.cas.client.session.SingleSignOutHttpSessionListener</listener-class>
</listener>
该过滤器负责用户的认证工作,必须启用它
<filter>
<filter-name>CASFilter</filter-name>
<filter-class>org.jasig.cas.client.authentication.AuthenticationFilter</filter-class>
<init-param>
<param-name>casServerLoginUrl</param-name>
<param-value>http://sso.yourdomain.cn/cas/login</param-value>
<!--这里的SSO server是服务端的IP -->
</init-param>
<init-param>
<param-name>serverName</param-name>
<param-value>http://192.168.11.170:9999</param-value>
</init-param>
<init-param>
<param-name>ignorePattern</param-name>
<param-value>queryTestFormByCondition</param-value>
</init-param>
<init-param>
<!--CONTAINS,REGEX,EXACT-->
<param-name>ignoreUrlPatternType</param-name>
<param-value>CONTAINS</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>CASFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<filter>
<filter-name>CAS Single Sign Out Filter</filter-name>
<filter-class>org.jasig.cas.client.session.SingleSignOutFilter</filter-class>