CAS单点登陆Word文档格式.docx
《CAS单点登陆Word文档格式.docx》由会员分享,可在线阅读,更多相关《CAS单点登陆Word文档格式.docx(15页珍藏版)》请在冰豆网上搜索。
p:
p:
/>
代理端与被代理端都要进行配置(配置较长,不一一介绍)有需要留下联系地址,我发过去...
7,代理性能问题解决:
如以上问题所述,系统2变成了被代理的系统,代理系统1每次要到被代理服务器去取一次票据之后,传到系统2去,这时系统2也要到服务器去取下验证的代理票据,进行比对,,
这样一来,每次都要与服务器通信两次,,,性能耗费很大,在不考虑安全性的前提下,可以对双方进行保存一个票据,这样一来,不管访问多少次,只在服务器通信了两次.
我对以上的代理与被代理系统进行了扩展,,一样)有需要留下联系地址,我发过去...
8,客户端可以返回更多的用户数据,这个有两处要进行配置
以下提供一个较完整的deployerConfigContext.xml的配置,一般有用到都在这里面
<
xmlversion="
1.0"
encoding="
UTF-8"
>
1.
!
--
|
deployerConfigContext.xml
centralizes
into
one
file
some
of
the
3.
declarative
configuration
that
all
CAS
deployers
will
need
to
modify.
This
declares
the
Spring-managed
JavaBeans
make
up
a
deployment.
The
beans
declared
in
this
are
6.
instantiated
at
context
initialization
time
by
Spring
|
7.
ContextLoaderListener
web.xml.
It
finds
because
8.
is
among
those
parameter
9.
"
contextConfigLocation"
.
By
far
most
common
change
you
will
10.
to
last
bean
declaration
11.
replace
default
SimpleTestUsernamePasswordAuthenticationHandler
12.
with
implementing
your
approach
for
authenticating
usernames
and
13.
passwords.
+
14.
-->
15.
16.<
xmlns="
//www.springframework.org/schema/beans"
17.
xmlns:
xsi="
//www.w3.org/2001/XMLSchema-instance"
p="
//www.springframework.org/schema/p"
18.
xsi:
schemaLocation="
//www.springframework.org/schema/beans
//www.springframework.org/schema/beans/spring-beans-2.0.xsd"
19.
20.
cas数据源。
21.
22.
id="
casDataSource"
mons.dbcp.BasicDataSource"
23.
property
name="
driverClassName"
24.
value>
net.sourceforge.jtds.jdbc.Driver<
/value>
25.
/property>
26.
url"
27.
jdbc:
jtds:
sqlserver:
//192.168.4.22:
3433/db<
28.
29.
username"
30.
****<
31.
32.
password"
33.
34.
35.
/bean>
36.
37.
38.
passwordEncoder"
39.
org.jasig.cas.authentication.handler.DefaultPasswordEncoder"
40.
autowire="
byName"
41.
constructor-arg
value="
MD5"
42.
43.
44.
passwordEncoder2"
45.
org.jasig.cas.authentication.handler.PlainTextPasswordEncoder"
46.
47.
48.
49.
our
AuthenticationManager.
The
50.
CentralAuthenticationService
service
in
51.
applicationContext.xml
picks
AuthenticationManager
by
52.
reference
its
id,
authenticationManager"
Most
be
53.
able
use
implementation
and
so
54.
do
not
class
bean.
We
include
whole
55.
here
userConfigContext.xml
so
you
56.
can
see
things
context.
57.
58.
org.jasig.cas.authentication.AuthenticationManagerImpl"
59.
60.
List
CredentialToPrincipalResolvers
identify
61.
what
Principal
trying
authenticate.
62.
AuthenticationManagerImpl
considers
them
order,
finding
a
63.
CredentialToPrincipalResolver
which
supports
presented
64.
credentials.
uses
these
resolvers
65.
two
purposes.
First,
it
identify
66.
attempting
authenticate
/login
In
67.
configuration,
DefaultCredentialsToPrincipalResolver
that
68.
fills
role.
If
are
using
other
kind
credentials
than
69.
UsernamePasswordCredentials,
70.
71.
CredentialsToPrincipalResolver
72.
using.
Second,
resolvers
73.
requesting
proxy
granting
ticket.
74.
75.
HttpBasedServiceCredentialsToPrincipalResolver
serves
76.
purpose.
You
list
if
identifying
77.
services
something
more
or
than
their
callback
URL.
78.
79.
credentialsToPrincipalResolvers"
80.
list>
81.
82.
83.
UsernamePasswordCredentialsToPrincipalResolver
84.
UsernamePasswordCredentials
we
85.
produces
SimplePrincipal
instances
conveying
username
from
86.
you'
ve
changed
LoginFormAction
use
87.
then
88.
also
(or
add
additional
89.
declarations)
declare
90.
Credentials
91.
92.
93.
org.jasig.cas.authentication.principal.UsernamePasswordCredentialsToPrincipalResolver"
94.
attributeRepository"
95.
ref
local="
96.
97.
98.
99.
supports
100.
HttpBasedCredentials.
2.0
101.
SSL
callback,
extracting
callback
102.
URL
representing
as
SimpleService
103.
identified
representing
104.
an
HTTPS
whereat
they
105.
receive
change
106.
additional
declarations).
107.
108.
109.
org.jasig.cas.authentication.principal.HttpBasedServiceCredentialsToPrincipalResolver"
110.
/list>
111.
112.
113.
114.
Whereas
CredentialsToPrincipalResolvers
who
some
115.
might
authenticate,
AuthenticationHandlers
actually
116.
Here
AuthenticationHandlers
117.
Principals
118.
identified.
try
these
119.
handlers
turn
until
both
120.
presented
succeeds
authenticating.
121.
122.
authenticationHandlers"
123.
124.
--这里面的用户表验证,可以配置多个,由上向下的表验证,只要有一个成功就退出-->
125.
--
support
EAP
database
126.
127.
org.jasig.cas.adaptors.jdbc.QueryDatabaseAuthenticationHandler"
128.
dataSource"
ref="
129.
sql"
130.
va