cas client 更新ticket_org.jasig.cas.client校验

最新推荐文章于 2021-06-15 17:23:35 发布
最新推荐文章于 2021-06-15 17:23:35 发布
阅读量622 收藏
点赞数
文章标签: cas client 更新ticket
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/weixin_39912580/article/details/111812638
版权

AbstractTicketValidationFilter

org.jasig.cas.client.validation.AbstractTicketValidationFilter

public final void doFilter(final ServletRequest servletRequest, final ServletResponse servletResponse,

final FilterChain filterChain) throws IOException, ServletException {

if (!preFilter(servletRequest, servletResponse, filterChain)) {

return;

}

final HttpServletRequest request = (HttpServletRequest) servletRequest;

final HttpServletResponse response = (HttpServletResponse) servletResponse;

final String ticket = retrieveTicketFromRequest(request);

if (CommonUtils.isNotBlank(ticket)) {

logger.debug("Attempting to validate ticket: {}", ticket);

try {

final Assertion assertion = this.ticketValidator.validate(ticket,

constructServiceUrl(request, response));

logger.debug("Successfully authenticated user: {}", assertion.getPrincipal().getName());

request.setAttribute(CONST_CAS_ASSERTION, assertion);

if (this.useSession) {

request.getSession().setAttribute(CONST_CAS_ASSERTION, assertion);

}

onSuccessfulValidation(request, response, assertion);

if (this.redirectAfterValidation) {

logger.debug("Redirecting after successful ticket validation.");

response.sendRedirect(constructServiceUrl(request, response));

return;

}

} catch (final TicketValidationException e) {

logger.debug(e.getMessage(), e);

onFailedValidation(request, response);

if (this.exceptionOnValidationFailure) {

throw new ServletException(e);

}

response.sendError(HttpServletResponse.SC_FORBIDDEN, e.getMessage());

return;

}

}

filterChain.doFilter(request, response);

}

AuthenticationFilter

org.jasig.cas.client.authentication.AuthenticationFilter

public final void doFilter(final ServletRequest servletRequest, final ServletResponse servletResponse,

final FilterChain filterChain) throws IOException, ServletException {

final HttpServletRequest request = (HttpServletRequest) servletRequest;

final HttpServletResponse response = (HttpServletResponse) servletResponse;

if (isRequestUrlExcluded(request)) {

logger.debug("Request is ignored.");

filterChain.doFilter(request, response);

return;

}

final HttpSession session = request.getSession(false);

final Assertion assertion = session != null ? (Assertion) session.getAttribute(CONST_CAS_ASSERTION) : null;

if (assertion != null) {

filterChain.doFilter(request, response);

return;

}

final String serviceUrl = constructServiceUrl(request, response);

final String ticket = retrieveTicketFromRequest(request);

final boolean wasGatewayed = this.gateway && this.gatewayStorage.hasGatewayedAlready(request, serviceUrl);

if (CommonUtils.isNotBlank(ticket) || wasGatewayed) {

filterChain.doFilter(request, response);

return;

}

final String modifiedServiceUrl;

logger.debug("no ticket and no assertion found");

if (this.gateway) {

logger.debug("setting gateway attribute in session");

modifiedServiceUrl = this.gatewayStorage.storeGatewayInformation(request, serviceUrl);

} else {

modifiedServiceUrl = serviceUrl;

}

logger.debug("Constructed service url: {}", modifiedServiceUrl);

final String urlToRedirectTo = CommonUtils.constructRedirectUrl(this.casServerLoginUrl,

getProtocol().getServiceParameterName(), modifiedServiceUrl, this.renew, this.gateway);

logger.debug("redirecting to \"{}\"", urlToRedirectTo);

this.authenticationRedirectStrategy.redirect(request, response, urlToRedirectTo);

}

filter执行顺序

先AbstractTicketValidationFilter后AuthenticationFilter。即先看有没ticket,有的话,去跟cas server验证,验证成功则往下,不成功则跳转到cas/login。如果没有ticket则往下验证有没有session,有的成功,没有则跳转到cas请求service ticket。

doc

weixin_39912580
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
jasig CAS客户端配置
态度决定思路,思路决定出路!!!
04-13 4453
cas客户的配置及出现org.xml.sax.SAXParseException; lineNumber: 64; columnNumber: 23; 元素类型 "label" 必须由匹配的结束标记 "</label>" 终止,错误处理!
CAS单点登录报错 org.jasig.cas.client.util.XmlUtils 必须由匹配的结束标记
sinat_26035241的博客
06-01 8142
今日调试单点登录时遇到下面的错误,查阅网上各种资料没有解决。经过自己的思索,可能是字符乱码导致正好cas服务器返回的信息有不规则的字符,导致解析报错。于是尝试解决。 1、报错信息如下: 2017-06-01 19:15:10,348 ERROR [org.jasig.cas.client.util.XmlUtils] - " 终止。> org.xml.sax.SAXParseEx
org.jasig.cas.client.util.CommonUtils
06-17
org.jasig.cas.client.util.CommonUtils 加入 public static void disableSSLVerification(){ try { // Create a trust manager that does not validate certificate chains TrustManager[] trustAllCerts = new TrustManager[] { new X509TrustManager() { public java.security.cert.X509Certificate[] getAcceptedIssuers() { return null; } public void checkClientTrusted(java.security.cert.X509Certificate[] certs, String authType){} public void checkServerTrusted(java.security.cert.X509Certificate[] certs, String authType){} } }; // Install the all-trusting trust manager SSLContext sc = SSLContext.getInstance("SSL"); sc.init(null, trustAllCerts, new java.security.SecureRandom()); HttpsURLConnection.setDefaultSSLSocketFactory(sc.getSocketFactory()); // Create all-trusting host name verifier HostnameVerifier allHostsValid = new HostnameVerifier() { public boolean verify(String hostname, javax.net.ssl.SSLSession session) { return true; } }; // Install the all-trusting host verifier HttpsURLConnection.setDefaultHostnameVerifier(allHostsValid); } catch (NoSuchAlgorithmException e) { e.printStackTrace(); } catch (KeyManagementException e) { e.printStackTrace(); } } 並於 openConnection() 之前使用 如 disableSSLVerification(); factory.buildHttpURLConnection(constructedUrl.openConnection());
org.jasig.cas.client校验
weixin_33724570的博客
10-26 897
AbstractTicketValidationFilter org.jasig.cas.client.validation.AbstractTicketValidationFilter public final void doFilter(final ServletRequest servletRequest, final Servle...
cas错误:org.jasig.cas.client.validation.TicketValidationException: No principal wa
hao01111的博客
10-13 6850
cas错误:org.jasig.cas.client.validation.TicketValidationException: No principal was found in the response from the CAS server. 很多文章都写到jasig CAS实现单点登录,客户端配置~如新建WEB项目cas-web-client, 并加入依赖包:cas-client-c...
CAS客户端JAR包版本3.3.3
12-13
org.jasig.cas.client.validation.Cas20ProxyReceivingTicketValidationFilter <param-name>casServerUrlPrefix <param-value>http://192.168.156.120:8080/cas</param-value> <param-name>serverName ...
cas client核心jar文件
03-06
<bean id="casFilter" class="org.apache.shiro.cas.CasFilter"> ${adminPath}/login"/> <!-- 安全认证过滤器 --> <bean id="shiroFilter" class="org.apache.shiro.spring.web....
spring boot整合CAS Client实现单点登陆验证的示例
08-28
<filter-class>org.jasig.cas.client.authentication.AuthenticationFilter <param-name>casServerLoginUrl <param-value>http://127.0.0.1/login</param-value> <param-name>serverName <param-value>...
cas-client-core-3.2.1-API文档-中英对照版 (1).zip
07-13
Maven坐标:org.jasig.cas.client:cas-client-core:3.2.1; 标签:jasigclientcas、core、中英对照文档、jar包、java; 使用方法:解压翻译后的API文档,用浏览器打开“index.html”文件,即可纵览文档内容。 ...
CAS部署错误1:Ticket验证异常org.jasig.cas.client.validation.TicketValidationException:
热门推荐
diyagea的博客
02-06 3万+
javax.servlet.ServletException: org.jasig.cas.client.validation.TicketValidationException: 根据Exception的字面意思可知,该异常是在验证TIcket是出错了 查看你client的web.xml配置文件 找到CAS Validation Filter
cas客户端jar包
05-20
这个jar包包含了开发cas客户端所需要的所有文件,直接导入到WEB-INF/lib文件中即可,如果有冲突的话,删掉冲突的文件即可
Jasig cas 单点登录系统Server&Java Client配置
Java之旅
09-12 3万+
Jasig cas(Central Authentication Service)官方站点:http://www.jasig.org/cas,访问这个站点需要翻墙。 我下载的是:3.5.2版本,当前是最新release版本,只能运行在jdk6下,在jdk7下不能运行。 本篇介绍了Jasig cas的单点登录、单点登出的配置和原理,它是一个只负责认证的系统,关于授权,还是要业务系统自己来做。
cas 单点登录出现org.jasig.cas.client.util.CommonUtils.getResponseFromServer - 拒绝连接 Connection refused...
weixin_34100227的博客
11-24 4263
cas 单点登录出现org.jasig.cas.client.util.CommonUtils.getResponseFromServer - 拒绝连接 Connection refused 环境: CentOS Linux release 7.2.1511 (Core) cas-client-core-3.1.12.jar 最近在对cas环境进...
php 接入sso org.jasig.cas,利用CAS实现SSO技术
weixin_42470438的博客
03-26 221
1 安装1.1系统配置以下的软件环境是必需的:1. JDK 1.4.2 or higher2. Tomcat 5.X1.2 Tomcat 配置,启用SSL1. 在要安装CAS的机器上为Tomcat生成用于SSL通讯的密钥:keytool –genkey –alias tomcat –keyalg RSA这时需要输入密钥密码和其他参数(第一个参数CN必须设置为CAS机器名,本机使用localhost...
Ticket验证异常org.jasig.cas.client.validation.TicketValidationException:
qq_38472465的博客
06-15 3485
Ticket验证异常org.jasig.cas.client.validation.TicketValidationException:
cas java client_SSO单点登录教程(九)CAS-搭建CAS Client客户端
weixin_39970823的博客
02-23 499
作者:蓝雄威,叩丁狼教育高级讲师。原创文章,转载请注明出处。一、前言目前为止我们已经搭建好了CAS Server端,我们需要来搭建客户端配合使用,完成单点登录和单点注销的功能.我们将讲两种方式来搭建CAS Client端.一种是普通项目搭建,另一种是基于SpringBoot的项目搭建.二、普通项目搭建CAS Client官方提供了一个简易的模板来搭建CAS Client.Github地址:http...
CAS Client端配置
Sucre
08-15 727
版本:cas4.0 修改web.xml:   org.jasig.cas.client.session.SingleSignOutHttpSessionListener CAS Single Sign Out Filter org.jasig.cas.client.session.SingleSignOutFilter CAS Single Sign Out
解决jasig CAS server端 ticketGrantingTicket超时后的一个bug
weisuochengxuyuan的专栏
10-25 2049
原文:http://castte.iteye.com/blog/1255308 最近研究cas,发现在设置ticketGrantingTicket超时后,打开https://tski.com:8443/cas 仍然显示成功 ticketExpirationPolicies.xml Xml代码     bean id="grantingTicketExpir
jasig cas java示例_CAS Demo
weixin_36301989的博客
03-04 478
#SSL证书CAS服务端进行登陆验证时一般使用HTTPS协议,此时需要提供证书。证书可以使用JDK自带工具生成,其中证书私钥需要存放到CAS服务端,供Tomcat的SSL端口配置使用(获取其他容器);证书公钥则存放到客户端应用程序运行的JDK中。##keytool生成证书JDK自带的keytool工具可以生成证书,示例命令:keytool -genkey -keystore "D:\localho...
org.jasig.cas.client.session.SingleSignOutFilter 从什么版本开始有的Cas20ServiceTicketValidator方法
最新发布
06-08
`Cas20ServiceTicketValidator`类并不是`org.jasig.cas.client.session.SingleSignOutFilter`类中的方法,它是`org.jasig.cas.client.validation.Cas20ServiceTicketValidator`类,用于验证CAS 2.0协议的ST票据。...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值