ssh+spring security+cas搭建（一）

最新推荐文章于 2022-11-01 11:23:21 发布

花间_拾零

最新推荐文章于 2022-11-01 11:23:21 发布

阅读量710

点赞数

本文链接：https://blog.csdn.net/qq_16753749/article/details/46688321

版权

本文介绍了如何使用SSH、Spring Security和CAS搭建服务端认证系统。主要内容包括AuthenticationManagerImpl的配置，通过jdbc进行数据库验证的方式替代默认的用户名密码认证，并详细解释了认证流程：遍历配置的authenticationHandlers、credentialsToPrincipalResolvers和AuthenticationMetaDataPopulator，以及加密规则和签名证书的生成。特别指出，如果账号存在多个密码，认证会失败。

摘要由CSDN通过智能技术生成

cas服务端认证AuthenticationManagerImpl，返回Authentication 。

局提包含三步：

1    <property name="authenticationHandlers">
            <list>
                <!--
                    | This is the authentication handler that authenticates services by means of callback via SSL, thereby validating
                    | a server side SSL certificate.
                    +-->
                <bean class="org.jasig.cas.authentication.handler.support.HttpBasedServiceCredentialsAuthenticationHandler"
                    p:httpClient-ref="httpClient" />
                <!--
                    | This is the authentication handler declaration that every CAS deployer will need to change before deploying CAS
                    | into production.  The default SimpleTestUsernamePasswordAuthenticationHandler authenticates UsernamePasswordCredentials
                    | where the username equals the password.  You will need to replace this with an AuthenticationHandler that implements your
                    | local authentication strategy.  You might accomplish this by coding a new such handler and declaring
                    | edu.