1.修改WEB-INF/deployerConfigContext.xml
1
2
3
4
|
<
bean
id
=
"proxyAuthenticationHandler"
class
=
"org.jasig.cas.authentication.handler.support.HttpBasedServiceCredentialsAuthenticationHandler"
p:httpClient-ref
=
"supportsTrustStoreSslSocketFactoryHttpClient"
p:requireSecure
=
"false"
/>
|
在p:httpClient-ref="supportsTrustStoreSslSocketFactoryHttpClient"后
增加p:requireSecure="false"
2.修改WEB-INF/spring-configuration/ticketGrantingTicketCookieGenerator.xml
1
2
3
4
5
6
|
<
bean
id
=
"ticketGrantingTicketCookieGenerator"
class
=
"org.jasig.cas.web.support.CookieRetrievingCookieGenerator"
c:casCookieValueManager-ref
=
"cookieValueManager"
p:cookieSecure
=
"false"
p:cookieMaxAge
=
"-1"
p:cookieName
=
"TGC"
p:cookiePath
=
""
/>
|
将p:cookieSecure="true"修改为p:cookieSecure="false"
3.修改WEB-INF/spring-configuration/warnCookieGenerator.xml
1
2
3
4
5
6
|
<
bean
id
=
"warnCookieGenerator"
class
=
"org.jasig.cas.web.support.CookieRetrievingCookieGenerator"
p:cookieHttpOnly
=
"false"
p:cookieSecure
=
"false"
p:cookieMaxAge
=
"-1"
p:cookieName
=
"CASPRIVACY"
p:cookiePath
=
""
/>
|
将p:cookieSecure="true"修改为p:cookieSecure="false"
4.修改注册服务WEB-INF/classes/services/HTTPSandIMAPS-10000001.json
将"serviceId" : "^(https|imaps)://.*"修改为"serviceId" : "^(https|http|imaps)://.*"
5.测试HTTP/HTTPS
http://192.168.10.102:8080/cas/login?service=http://www.a.com
网上很多资料只提示修改前面3个配置,却没有更改注册服务配置,所以就会出现
Application Not Authorized to Use CAS
The application you attempted to authenticate to is not authorized to use CAS.
本文转自 rong341233 51CTO博客,原文链接:http://blog.51cto.com/fengwan/1876603