先将CAS PHP版支持包引入,然后进入下面环节。下载地址http://developer.jasig.org/cas-clients/php/1.3.4/CAS-1.3.4.tgz 1.去除登录输入
upload\template\default\member\login-simple.html
删除8-29行代码,删除31-32行代码
2.去除弹框登录
upload/admin.php-=》界面-》去掉浮动窗口(登录)
3.在CAS文件夹中创建CasClientConfig.php
define ( 'CAS_SERVER_HOSTNAME', '192.168.32.7' );
define ( 'CAS_SERVER_PORT', 8080 );
define ( 'CAS_SERVER_APP_NAME', "cas_server" );
?>
4.在CAS文件中创建CasClient.php
require_once DISCUZ_ROOT.'./CAS/CasClientConfig.php'; // 注意
require_once DISCUZ_ROOT.'./CAS.php'; // 注意
// 初始化
//phpCAS::setDebug ();
// initialize phpCAS
phpCAS::client ( CAS_VERSION_2_0, CAS_SERVER_HOSTNAME, CAS_SERVER_PORT, CAS_SERVER_APP_NAME );
// no SSL validation for the CAS server
phpCAS::setNoCasServerValidation ();
?>
5.source/class/class_core.php第16行加入
require_once DISCUZ_ROOT."Cas/CasClient.php";
6.uc_client/control/user.php
134行注释
//elseif($user['password'] != md5($passwordmd5.$user['salt'])) {
//$status = -2;
//} elseif($checkques && $user['secques'] != $_ENV['user']->quescrypt($questionid, $answer)) {
//$status = -3;
//}
注释 onsynlogin、onsynlogout、onregister方法
7.source/function/member.php加入
// 新加的方法,用以支持CAS 登录
function userloginCas($username, $ip = '') {
$return = array ();
if(!function_exists('uc_user_login')) {
loaducenter();
}
$return['ucresult'] = uc_user_login(addslashes($username), '', 0, 0,'', '', $ip);
$tmp = array ();
$duplicate = '';
list ( $tmp ['uid'], $tmp ['username'], $tmp ['password'], $tmp ['email'], $duplicate ) = $return ['ucresult'];
$return ['ucresult'] = $tmp;
if ($duplicate && $return ['ucresult'] ['uid'] > 0 || $return ['ucresult'] ['uid'] <= 0) {
$return ['status'] = 0;
return $return;
}
$member = getuserbyuid ( $return ['ucresult'] ['uid'], 1 );
if (! $member || empty ( $member ['uid'] )) {
$return ['status'] = - 1;
return $return;
}
$return ['member'] = $member;
$return ['status'] = 1;
if ($member ['_inarchive']) {
C::t ( 'common_member_archive' )->move_to_master ( $member ['uid'] );
}
if ($member ['email'] != $return ['ucresult'] ['email']) {
C::t ( 'common_member' )->update ( $return ['ucresult'] ['uid'], array (
'email' => $return ['ucresult'] ['email']
) );
}
return $return;
}
8.source/class/class_member.php
51行注释并改为
//if(!submitcheck('loginsubmit', 1, $seccodestatus)) {
if (1 == 2) {
92行 $_G['username'] = $_G['member']['username'] = $_G['member']['password'] = '';后加入
phpCAS::setNoClearTicketsFromUrl ();
//这里会检测服务器端的退出的通知,就能实现php和其他语言平台间同步登出了
phpCAS::handleLogoutRequests();
$username='';
if(phpCAS::isAuthenticated()){
$username = phpCAS::getUser ();
} else {
phpCAS::forceAuthentication ();
}
//if(!$_GET['password'] || $_GET['password'] != addslashes($_GET['password'])) {
//showmessage('profile_passwd_illegal');
//}
//$result = userlogin($_GET['username'], $_GET['password'], $_GET['questionid'], $_GET['answer'], $this->setting['autoidselect'] ? 'auto' : $_GET['loginfield'], $_G['clientip']);
$result = userloginCas($username, $_G['clientip']);
347行 on_logout方法
if(defined('IN_MOBILE')) {
showmessage('location_logout_succeed_mobile', dreferer(), array('formhash' => FORMHASH, 'referer' => rawurlencode(dreferer())));
} else {
$service = dreferer () ;
phpCAS::logoutWithRedirectService ( $service );
//showmessage('logout_succeed', dreferer(), array('formhash' => FORMHASH, 'ucsynlogout' => $ucsynlogout, 'referer' => rawurlencode(dreferer())));
}
386行 on_register方法中
if(strpos($url_forward, $this->setting['regname']) !== false) {
$url_forward = 'forum.php';
}
修改掉防止当登录成功时无限跳转
$url_forward = 'forum.php';
去除https CAS\Client.php
$this->_server['base_url'] = 'https://' . $this->_getServerHostname();
改为
$this->_server['base_url'] = 'http://' . $this->_getServerHostname();
关闭gateway CAS\Client.php
$this->redirectToCas(true/* gateway */);
改为
$this->redirectToCas(false/* gateway */);
待续(缺少PHP监听CAS cookie中的账号phpCAS:checkAuthentication() 不存在就清理session完毕)