tomcat8搭建cas的HTTP服务器,并使用MYSQL数据库的用户表

最新推荐文章于 2024-01-19 09:34:59 发布
最新推荐文章于 2024-01-19 09:34:59 发布
阅读量900 收藏 1
点赞数 1
分类专栏: 身份认证 文章标签: java casserver
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/yuquan0405/article/details/113095856
版权

tomcat8搭建cas的HTTP服务器,并使用MYSQL数据库的用户表

1. 环境准备

    JDK: jdk1.8.0_31  (JDK8 都OK)

    TOMCAT:apache-tomcat-8.5.51(TOMCAT8 都OK)

     CAS:5.3.16(CAS  5.* 都OK)

 下载地址:https://mvnrepository.com/artifact/org.apereo.cas/cas-server-webapp-tomcat/5.3.16

2. 环境部署

war 改名为cas.war    

将war 包复制至tomcat的webapps目录中,启动tomcat第一次,tomcat将会解压war,启动完后关闭tomcat。

   

3. 配置修改

3.1 webapps\cas\WEB-INF\classes\application.properties修改

 

a.  增加以下两行配置

cas.tgc.secure=false
cas.serviceRegistry.initFromJson=true

b. 注释以下三行配置

#server.ssl.key-store=file:/etc/cas/thekeystore
#server.ssl.key-store-password=changeit
#server.ssl.key-password=changeit

 

4. MySQL配置

4.1 JDBC支持

https://repo1.maven.org/maven2/org/apereo/cas/

cas-server-support-generic-5.3.1

cas-server-support-jdbc-5.3.1 

cas-server-support-jdbc-authentication-5.3.1

cas-server-support-jdbc-drivers-5.3.1

 

下载jar 复制到 apache-tomcat-8.5.51\webapps\cas\WEB-INF\lib 目录下

4.2 MySQL驱动

https://mvnrepository.com/artifact/mysql/mysql-connector-java/6.0.6

下载jar 复制到 apache-tomcat-8.5.51\webapps\cas\WEB-INF\lib 目录下

4.3 数据准备

CREATE TABLE u_user  (
  id bigint(20) NOT NULL AUTO_INCREMENT,
  nickname varchar(20)  COMMENT '用户昵称',
  email varchar(128)  COMMENT '邮箱|登录帐号',
  pswd varchar(32) COMMENT '密码',
  create_time datetime(0) NULL DEFAULT NULL COMMENT '创建时间',
  last_login_time datetime(0) NULL DEFAULT NULL COMMENT '最后登录时间',
  status bigint(1) NULL DEFAULT 1 COMMENT '1:有效,0:禁止登录',
  PRIMARY KEY (`id`) USING BTREE
);

INSERT INTO u_user(nickname,email,pswd,create_time,last_login_time,status) 
VALUES ( 'admin', 'admin@163.com', '1', '2019-04-27 22:44:44', NULL, 1);

 

4.4 配置文件修改

webapps\cas\WEB-INF\classes\application.properties

注释以下行

#cas.authn.accept.users=casuser::Mellon

增加以下行

cas.authn.jdbc.query[0].url=jdbc:mysql://127.0.0.1:3308/test?serverTimezone=UTC&useSSL=false&allowPublicKeyRetrieval=true     
cas.authn.jdbc.query[0].user=root
cas.authn.jdbc.query[0].password=
cas.authn.jdbc.query[0].sql=select * from u_user where nickname = ?
cas.authn.jdbc.query[0].fieldPassword=pswd
cas.authn.jdbc.query[0].driverClass=com.mysql.jdbc.Driver

以下为扩展配置

#指定过期字段,1为过期,若过期不可用
cas.authn.jdbc.query[0].fieldExpired=expired

#为不可用字段段,1为不可用,需要修改密码
cas.authn.jdbc.query[0].fieldDisabled=disabled

5 MD5加密验证配置

webapps\cas\WEB-INF\classes\application.properties,增加以下行

 

cas.authn.jdbc.query[0].passwordEncoder.type=DEFAULT

cas.authn.jdbc.query[0].passwordEncoder.characterEncoding=UTF-8

cas.authn.jdbc.query[0].passwordEncoder.encodingAlgorithm=MD5

自定义加密方式可以参考https://blog.csdn.net/yelllowcong/article/details/78812744

 

 

路西法01
关注
专栏目录
Tomcat方式启动CAS(附:java环境的切换)
彼岸吖的博客
04-05 5608
目录 一.安装java-1.8 注意 二.安装Tomcat 三.安装CAS 一.安装java-1.8 Java JDK在linux系统有两个版本,一个开源版本Openjdk,还有一个oracle官方版本jdk,oracle JDK既可以通过添加ppa源安装,也可以去官网下载jdk压缩包安装。 Java官网:Java Downloads | Oracle 这里我直接使用命令安装(方便快速) sudo apt-get update sudo apt-get install op...
CAS 5.3 服务的搭建 & MySQL 动态登录
qq_37084673的博客
04-09 752
进入 /target/cas/WEB-INF/classes/ 下,拷贝需要修改的配置文件。改为 "serviceId" : "^(https|imaps|http)://.*",把配置文件里的 root/password 换成自己服务器的 ,以免登录失败。修改 /src/main/resorces 下的配置文件,上一部拷贝过来的。这些字段也是自定义的,想改都可以改,注意和后面的配置文件对应起来即可。相关具体步骤,参考的以下文章,内容比较详细,都是有图版本的。target 里面的文件在下一步会用到。
tomcat配置cas
java的涟漪
06-25 1240
<br />在tomcat中配置cas:<br />启动cmd:进入tomcat目录(进入java_home的/jre/lib/security下最好)<br />1、生成服务端密匙<br />keytool -genkey -alias casserver -keyalg RSA -keypass changeit -storepass changeit -keystore server.keystore<br />2、生成服务端证书<br />keytool -export -alias casserv
Tomcat中部署CAS
wujay
02-24 845
先部署CAS服务端   1.部署CAS服务器的WAR包 将cas-server-3.4.11-release.zip解压缩,把modules文件夹中的cas-server-webapp-3.4.11.war 文件拷贝到&lt;TOMCAT_HOME&gt;/webapps/下,改名为cas(这里的名字只是一种习惯,当然可以改成其他或不改),然后启动服务器,其会自动解压。   2. 修改...
[SSO技术]CAS在tomcat下的部署和定制(下篇)
zoey的专栏
10-26 811
[SSO技术]CAS在tomcat下的部署和定制(下篇)2009-02-19 16:30转自:http://hi.baidu.com/zh_m_zhou/blog/item/a56123071aeae77c02088196.html作者:pocky引言:SSO,即Single sign on/off,单点登录/退出。CAS,全称JA-SIG Central
[sso技术]cas在tomcat下的部署和定制(上篇)
zt843217
04-16 175
转自:http://hi.baidu.com/zh_m_zhou/blog/item/a6236da5765bd6f09052ee8f.html 作者:pocky 引言 SSO,即Single sign on/off,单点登录/退出。 CAS,全称JA-SIG Central Authentication Service,实现SSO的开源项目。 说明 CAS的相...
CAS5.3单点登录(二)连接mysql数据库
热门推荐
zzy730913的博客
07-04 1万+
1
发布服务器搭建使用手册.docx
02-06
发布服务器搭建使用手册 发布服务器是企业内部或外部用于分发、管理和更新应用程序的关键基础设施。本手册将详细讲解如何搭建使用发布服务器,确保您的系统能够高效、安全地进行软件发布。 一、环境搭建 环境...
CRM系统环境搭建部署(nginx、jdk、tomcat、keepalived、mysql、zabbix)
最新发布
lqcbj的博客
01-19 1910
CRM系统环境搭建部署(nginx、jdk、tomcat、keepalived、mysql、zabbix)
cas服务端-连接数据库
09-07
在这个版本中,CAS服务器MySQL数据库相结合,用于存储和验证用户凭证,提供安全的身份验证服务。以下是关于这个主题的详细知识点: 1. **CAS服务端**:CAS 是一个开源项目,由耶鲁大学发起,旨在解决多应用系统的...
使用CAS在Tomcat中实现单点登录参考代码及配置
12-21
使用CAS在Tomcat中实现单点登录参考代码及配置详细文档
tomcat8 + nginx + memcached + cas 实现负载均衡的配置包
03-24
1,tomcat8的配置: 1.1修改tomcat8.x/conf/context.xml的配置如下: <?xml version="1.0" encoding="UTF-8"?> <!-- Licensed to the Apache Software Foundation (ASF) under one or more contributor license agreements. See the NOTICE file distributed with this work for additional information regarding copyright ownership. The ASF licenses this file to You under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0 Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License. --> <!-- The contents of this file will be loaded for each web application --> <Context> <!-- Default set of monitored resources. If one of these changes, the --> <!-- web application will be reloaded. --> <WatchedResource>WEB-INF/web.xml</WatchedResource> <WatchedResource>${catalina.base}/conf/web.xml</WatchedResource> <!-- Uncomment this to disable session persistence across Tomcat restarts --> <!-- <Manager pathname="" /> <Resources cachingAllowed="true" cacheMaxSize="100000" /> <Manager className="de.javakaffee.web.msm.MemcachedBackupSessionManager" memcachedNodes="n1:127.0.0.1:11211" username="root" password="" sticky="false" sessionBackupAsync="false" lockingMode="uriPattern:/path1|/path2" requestUriIgnorePattern=".*\.(ico|png|gif|jpg|css|js)$" transcoderFactoryClass="de.javakaffee.web.msm.serializer.kryo.KryoTranscoderFactory" /> --> <Resources cachingAllowed="true" cacheMaxSize="100000" /> <Manager className="de.javakaffee.web.msm.MemcachedBackupSessionManager" memcachedNodes="n1:127.0.0.1:11211" username="root" password="" sticky="false" sessionBackupAsync="false" lockingMode="uriPattern:/path1|/path2" requestUriIgnorePattern=".*\.(ico|png|gif|jpg|css|js)$" sessionBackupTimeout="18000" transcoderFactoryClass="de.javakaffee.web.msm.serializer.javolution.JavolutionTranscoderFactory" copyCollectionsForSerialization="false" /> </Context> 1.2添加memcached如下依赖的jar包到tomcat8.x/lib/: asm-5.1.jar couchbase-client-1.4.12.jar javolution-5.5.1.jar kryo-4.0.0.jar kryo-serializers-0.38.jar memcached-session-manager-2.0.0.jar memcached-session-manager-tc8-2.0.0.jar minlog-1.3.jar msm-javolution-serializer-2.0.0.jar msm-kryo-serializer-2.0.0.jar msm-xstream-serializer-2.0.0.jar objenesis-2.1.jar reflectasm-1.09.jar spymemcached-2.12.1.jar 2,nginx的配置: #user nobody; worker_processes 1; #error_log logs/error.log; #error_log logs/error.log notice; #error_log logs/error.log info; #pid logs/nginx.pid; events { worker_connections 1024; } http { include mime.types; default_type application/octet-stream; log_format main '$remote_addr - $remote_user [$time_local] "$request" ' '$status $body_bytes_sent "$http_referer" ' '"$http_user_agent" "$http_x_forwarded_for"'; access_log logs/access.log main; client_header_timeout 3m; client_body_timeout 3m; send_timeout 3m; sendfile on; tcp_nopush on; tcp_nodelay on; #keepalive_timeout 0; keepalive_timeout 65; gzip on; #设定负载均衡的服务器 upstream 127.0.0.1 { #设定负载均衡的服务器 #ip_hash; #同一机器在多网情况下,路由切换,ip可能不同 #weigth参数示权值,权值越高被分配到的几率越大 server 127.0.0.1:8085 weight=1 max_fails=20 fail_timeout=600s; server 127.0.0.1:8086 weight=1 max_fails=20 fail_timeout=600s; } map $http_upgrade $connection_upgrade { default upgrade; '' close; } server { listen 80; server_name localhost; charset UTF-8; #设定本虚拟主机的访问日志 access_log logs/host.access.log main; #对 "/" 所有应用启用负载均衡 location / { proxy_pass http://127.0.0.1; #保留用户真实信息 proxy_set_header X-Real-IP $remote_addr; proxy_set_header Host $host; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_http_version 1.1; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection "upgrade"; index index.html index.htm index.aspx; } #对 "/Dossm3RabbitMQConsumer/" 启用负载均衡 location /Dossm3RabbitMQConsumer/ { proxy_pass http://localhost:8086; #保留用户真实信息 proxy_set_header X-Real-IP $remote_addr; proxy_set_header Host $host; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_http_version 1.1; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection "upgrade"; index index.html index.htm index.aspx; } } # another virtual host using mix of IP-, name-, and port-based configuration # #server { # listen 8000; # listen somename:8080; # server_name somename alias another.alias; # location / { # root html; # index index.html index.htm; # } #} # HTTPS server # #server { # listen 443 ssl; # server_name localhost; # ssl_certificate cert.pem; # ssl_certificate_key cert.key; # ssl_session_cache shared:SSL:1m; # ssl_session_timeout 5m; # ssl_ciphers HIGH:!aNULL:!MD5; # ssl_prefer_server_ciphers on; # location / { # root html; # index index.html index.htm; # } #} } 3,cas的配置(): 3.1 修改/CAS/WEB-INF/spring-configuration/ticketRegistry.xml <?xml version="1.0" encoding="UTF-8"?> <!-- Licensed to Jasig under one or more contributor license agreements. See the NOTICE file distributed with this work for additional information regarding copyright ownership. Jasig licenses this file to you under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at the following location: http://www.apache.org/licenses/LICENSE-2.0 Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License. --> <beans xmlns="http://www.springframework.org/schema/beans" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:p="http://www.springframework.org/schema/p" xmlns:util="http://www.springframework.org/schema/util" xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd http://www.springframework.org/schema/util http://www.springframework.org/schema/util/spring-util.xsd"> <description> Configuration for the default TicketRegistry which stores the tickets in-memory and cleans them out as specified intervals. </description> <!-- memcached 配置开始 --> <!-- Ticket Registry --> <bean id="ticketRegistry" class="org.jasig.cas.ticket.registry.MemCacheTicketRegistry"> <constructor-arg index="0"> <bean class="net.spy.memcached.spring.MemcachedClientFactoryBean" p:servers="127.0.0.1:11211" p:protocol="BINARY" p:locatorType="ARRAY_MOD" p:failureMode="Redistribute" p:transcoder-ref="serialTranscoder"> <property name="hashAlg"> <util:constant static-field="net.spy.memcached.DefaultHashAlgorithm.FNV1A_64_HASH" /> </property> </bean> </constructor-arg> <!-- TGT timeout in seconds --> <constructor-arg index="1" value="36000" /> <!-- ST timeout in seconds --> <constructor-arg index="2" value="2" /> </bean> <bean id="serialTranscoder" class="net.spy.memcached.transcoders.SerializingTranscoder" p:compressionThreshold="2048" /> <!-- memcached 配置结束 --> <!--Quartz --> <!-- 默认配置开始 --> <!-- Ticket Registry --> <!-- <bean id="ticketRegistry" class="org.jasig.cas.ticket.registry.DefaultTicketRegistry" />--> <!-- TICKET REGISTRY CLEANER --> <!-- <bean id="ticketRegistryCleaner" class="org.jasig.cas.ticket.registry.support.DefaultTicketRegistryCleaner" p:ticketRegistry-ref="ticketRegistry" p:logoutManager-ref="logoutManager" /> <bean id="jobDetailTicketRegistryCleaner" class="org.springframework.scheduling.quartz.MethodInvokingJobDetailFactoryBean" p:targetObject-ref="ticketRegistryCleaner" p:targetMethod="clean" /> <bean id="triggerJobDetailTicketRegistryCleaner" class="org.springframework.scheduling.quartz.SimpleTriggerBean" p:jobDetail-ref="jobDetailTicketRegistryCleaner" p:startDelay="200000" p:repeatInterval="50000000" /> --> <!-- 默认配置结束 --> </beans> 3.2 添加cas和memcached整合的如下依赖jar包到/CAS/WEB-INF/lib: cas-server-integration-memcached-4.0.0.jar mockito-core-2.1.0-RC.1.jar spymemcached-2.11.2.jar 参考CAS官方配置:https://apereo.github.io/cas/4.2.x/installation/Memcached-Ticket-Registry.html
利用Tomcat9.0.x搭建CAS中央认证服务器【协议采用HTTPS】
追寻上飞的博客
03-02 1336
CAS中央认证服务器搭建软件版本软件配置1、生成key2、Tomcat配置3、CAS打包运行端口问题 软件版本 操作系统 Windows10 jre8 Tomcat 9.0.59 CAS 5.3 Tomcat下载地址,这里采用windows exe安装版本,链接在此, CAS 版本的下载地址在此。 软件配置 1、生成key 进入D:\jdk8\bin\目录,使用Java命令行工具keytool 生成key,按照提示填写字段,如密码、用户姓名等。 keytool -genkeypair -alias "t
Tomcat下配置与使用CAS实现单点登录
Jackia的专栏
08-04 881
  配置Tomcat使用SSL安全认证 因为CAS使用的是https协议,所以要求Tomcat支持该协议。实现步骤如下: 第一步:进入Dos命令行窗口,并进入到目录下 第二步:生成密匙,命令如下: Java代码 keytool -genkey -alias 别名 -keyalg RSA -keypass changeit -storepass changeit -cla
Tomcat 配置 cas 例子
不念书的小子
11-02 166
第一步:(稍后在写)   第二部:配置数据库验证   (1)建:                 create table app_user (username varchar(30), password varchar(45) , primary key (username)); insert into app_user (username,password) values (...
搭建CAS服务(用自己的tomcat启动)
weixin_45732391的博客
02-21 1647
搭建CAS服务 一、环境: 系统:Win10 JDK:8 cas: 5.3 maven: 3.5 (jdk和tomcat已安装) 二:下载CAS5.3 CAS5.3 Server我们下载cas-overlay-template版本 下载地址:https://github.com/apereo/cas-overlay-template 下载的是个zip包。 三:编译 我们将zip包解压到当前目录,进入目录,在当前目录打开cmd,将build.cmd拖入cmd窗口,后面加上空格run,再回车。 (这种方式编
CAS单点实战案例-Tomcat部署cas
Grady的博客
12-15 344
CAS单点实战案例-Tomcat部署cas
cas + tomcat 配置步骤详细笔记(一)
jinrizk的专栏
04-15 6443
首先需要准备资源如下:                 cas-server-4.0.0-release.zip,cas-client-2.0.11.zip,apache-tomcat-6.0.29      下面操作在dos下操作(“开始 -> 运行",输入“cmd”),部署cas服务器端的ssl生成      1、生成服务端库文件(您的名字与姓氏是什么?这里需填写你的计算机名,我的计算机
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包

打赏作者

路西法01

你的鼓励将是我创作的最大动力

¥1 ¥2 ¥4 ¥6 ¥10 ¥20
扫码支付:¥1
获取中
扫码支付

您的余额不足,请更换扫码支付或充值

打赏作者

实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值