Spring Boot集成CAS单点登录的步骤如下:
1. 配置
CAS服务器
首先需要配置
CAS服务器,包括安装和配置,这里不再赘述。
2. 引入
CAS客户端依赖
在
Spring Boot项目中引入
CAS客户端依赖,例如:
```
<dependency>
<groupId>org.jasig.
cas.client</groupId>
<artifactId>
cas-client-core</artifactId>
<version>3.6.</version>
</dependency>
```
3. 配置
CAS客户端
在
Spring Boot项目中配置
CAS客户端,包括
CAS服务器地址、
CAS客户端地址、
CAS登录地址等,例如:
```
cas.server.url=https://
cas.example.com/
cas
cas.client.host.url=https://example.com
cas.login.url=https://
cas.example.com/
cas/login
```
4. 配置
Spring Security
在
Spring Boot项目中配置
Spring Security,包括登录页面、登录成功后的跳转页面等,例如:
```
@Configuration
@EnableWebSecurity
public class SecurityConfig extends WebSecurityConfigurerAdapter {
@Autowired
private
CasAuthenticationProvider
casAuthenticationProvider;
@Autowired
private
CasAuthenticationEntryPoint
casAuthenticationEntryPoint;
@Autowired
private
CasAuthenticationFilter
casAuthenticationFilter;
@Override
protected void configure(HttpSecurity http) throws Exception {
http
.authorizeRequests()
.antMatchers("/login").permitAll()
.anyRequest().authenticated()
.and()
.exceptionHandling()
.authenticationEntryPoint(
casAuthenticationEntryPoint)
.and()
.addFilter(
casAuthenticationFilter)
.logout()
.logoutUrl("/logout")
.logoutSuccessUrl("/")
.invalidateHttpSession(true)
.deleteCookies("JSESSIONID")
.and()
.csrf().disable();
}
@Override
protected void configure(AuthenticationManagerBuilder auth) throws Exception {
auth.authenticationProvider(
casAuthenticationProvider);
}
}
```
5. 配置
CAS认证提供者
在
Spring Boot项目中配置
CAS认证提供者,例如:
```
@Configuration
public class
CasConfig {
@Value("${
cas.server.url}")
private String
casServerUrl;
@Value("${
cas.client.host.url}")
private String
casClientHostUrl;
@Value("${
cas.login.url}")
private String
casLoginUrl;
@Bean
public
CasAuthenticationEntryPoint
casAuthenticationEntryPoint() {
CasAuthenticationEntryPoint entryPoint = new
CasAuthenticationEntryPoint();
entryPoint.setLoginUrl(
casLoginUrl);
entryPoint.setServiceProperties(serviceProperties());
return entryPoint;
}
@Bean
public ServiceProperties serviceProperties() {
ServiceProperties serviceProperties = new ServiceProperties();
serviceProperties.setService(
casClientHostUrl + "/login/
cas");
serviceProperties.setSendRenew(false);
return serviceProperties;
}
@Bean
public
CasAuthenticationFilter
casAuthenticationFilter() throws Exception {
CasAuthenticationFilter filter = new
CasAuthenticationFilter();
filter.setAuthenticationManager(authenticationManager());
return filter;
}
@Bean
public
CasAuthenticationProvider
casAuthenticationProvider() {
CasAuthenticationProvider provider = new
CasAuthenticationProvider();
provider.setServiceProperties(serviceProperties());
provider.setTicketValidator(new
Cas30ServiceTicketValidator(
casServerUrl));
provider.setUserDetailsService(userDetailsService());
provider.setKey("
casAuthProviderKey");
return provider;
}
@Bean
public UserDetailsService userDetailsService() {
return new InMemoryUserDetailsManager(Collections.emptyList());
}
@Bean
public AuthenticationManager authenticationManager() throws Exception {
return new ProviderManager(Collections.singletonList(
casAuthenticationProvider()));
}
}
```
6. 编写登录页面
在
Spring Boot项目中编写登录页面,例如:
```
<!DOCTYPE html>
<html>
<head>
<meta charset="UTF-8">
<title>Login</title>
</head>
<body>
<form action="/login/
cas" method="post">
<input type="submit" value="Login">
</form>
</body>
</html>
```
7. 运行项目
最后运行
Spring Boot项目,访问登录页面,输入
CAS服务器的用户名和密码,即可
实现CAS单点登录。
扫一扫
998
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
