1,生产密钥和配置hosts文件
1.1keytool -genkey -alias cas-server -keyalg RSA -keypass changeit -storepass changeit -keystore casserver.keystore 国家 CN
1.2
keytool -export -alias cas-server -storepass changeit -file casserver.cer -keystore casserver.keystore
1.3
keytool -import -trustcacerts -alias server -file mycasserver.cer -keystore "C:/Program Files (x86)/Java/jre6/lib/security/cacerts " -storepass changeit1.4
打开系统的hosts文件,定义2个解析
127.0.0.1 casserver
127.0.0.1 server12,配置tomcat 中conf/ server.xml<Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true" maxThreads="150" scheme="https" secure="true" clientAuth="false" sslProtocol="TLS" />
将注释去掉,修改为 <Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true" maxHttpHeaderSize="8192" maxThreads="150" minSpareThreads="25" maxSpareThreads="75" enableLookups="false" disableUploadTimeout="true" acceptCount="100" scheme="https" secure="false" clientAuth="false" sslProtocol="TLS" keystoreFile="C:/Program Files (x86)/Java/jdk/bin/casserver.keystore" keystorePass="password" truststoreFile="C:/Program Files (x86)/Java/jre/lib/security/cacerts" truststorePass="changeit" />
3,下载cas-server-3.4.11,cas-client-3.2.1-release4,访问https://casserver:8443/cas/login 测试部署成功
输入相同的姓名,密码可以正常访问
5,修改deployerConfigContext.xml
注释
<bean class="org.jasig.cas.authentication.handler.support.SimpleTestUsernamePasswordAuthenticationHandler" />
添加 <bean class="org.jasig.cas.adaptors.jdbc.QueryDatabaseAuthenticationHandler">
<property name="sql" value="select password from admin where username=?" />
<property name="dataSource" ref="dataSource" /></bean>
连接mysql数据库 并添加相应的包
<bean id="dataSource" class="org.apache.commons.dbcp.BasicDataSource" destroy-method="close">
<property name="driverClassName"><value>com.mysql.jdbc.Driver</value></property>
<property name="url"><value>jdbc:mysql://localhost:3306/testcas</value></property>
<property name="username"><value>root</value></property>
<property name="password"><value>123</value></property>
</bean>
访问https://casserver:8443/cas/login
输入数据库中的姓名,密码可以正常访问6在myecilpse 新建一个项目web项目 Castest 新建一个servlet HelloWorldServlet
在web.xml配置如下<!-- CAS配置-->
<filter>
<filter-name>CasSingleSignOutFilter</filter-name>
<filter-class>org.jasig.cas.client.session.SingleSignOutFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>CasSingleSignOutFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<listener>
<listener-class>org.jasig.cas.client.session.SingleSignOutHttpSessionListener</listener-class>
</listener>
<filter>
<filter-name>CasAuthenticationFilter</filter-name>
<filter-class>org.jasig.cas.client.authentication.AuthenticationFilter</filter-class>
<init-param>
<param-name>casServerLoginUrl</param-name>
<param-value>https://casserver:8443/cas/</param-value>
</init-param>
<init-param>
<param-name>serverName</param-name>
<param-value>server1:8080</param-value>
</init-param>
<init-param>
<param-name>renew</param-name>
<param-value>false</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>CasAuthenticationFilter</filter-name>
<!-- 过滤器保护的URL,如果能访问这个保护的URL,表示经过CAS验证,可以做获取权限的操作。-->
<url-pattern>/*</url-pattern>
</filter-mapping>
<filter>
<filter-name>CasValidationFilter</filter-name>
<filter-class>org.jasig.cas.client.validation.Cas20ProxyReceivingTicketValidationFilter</filter-class>
<init-param>
<param-name>casServerUrlPrefix</param-name>
<param-value>https://casserver:8443/cas/</param-value>
</init-param>
<init-param>
<param-name>serverName</param-name>
<param-value>server1:8080</param-value>
</init-param>
<init-param>
<param-name>redirectAfterValidation</param-name>
<param-value>true</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>CasValidationFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<filter>
<filter-name>CasHttpServletRequestWrapperFilter</filter-name>
<filter-class>org.jasig.cas.client.util.HttpServletRequestWrapperFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>CasHttpServletRequestWrapperFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<!-- CAS configure End -->
1.1keytool -genkey -alias cas-server -keyalg RSA -keypass changeit -storepass changeit -keystore casserver.keystore 国家 CN
1.2
keytool -export -alias cas-server -storepass changeit -file casserver.cer -keystore casserver.keystore
1.3
keytool -import -trustcacerts -alias server -file mycasserver.cer -keystore "C:/Program Files (x86)/Java/jre6/lib/security/cacerts " -storepass changeit1.4
打开系统的hosts文件,定义2个解析
127.0.0.1 casserver
127.0.0.1 server12,配置tomcat 中conf/ server.xml<Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true" maxThreads="150" scheme="https" secure="true" clientAuth="false" sslProtocol="TLS" />
将注释去掉,修改为 <Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true" maxHttpHeaderSize="8192" maxThreads="150" minSpareThreads="25" maxSpareThreads="75" enableLookups="false" disableUploadTimeout="true" acceptCount="100" scheme="https" secure="false" clientAuth="false" sslProtocol="TLS" keystoreFile="C:/Program Files (x86)/Java/jdk/bin/casserver.keystore" keystorePass="password" truststoreFile="C:/Program Files (x86)/Java/jre/lib/security/cacerts" truststorePass="changeit" />
3,下载cas-server-3.4.11,cas-client-3.2.1-release4,访问https://casserver:8443/cas/login 测试部署成功
输入相同的姓名,密码可以正常访问
5,修改deployerConfigContext.xml
注释
<bean class="org.jasig.cas.authentication.handler.support.SimpleTestUsernamePasswordAuthenticationHandler" />
添加 <bean class="org.jasig.cas.adaptors.jdbc.QueryDatabaseAuthenticationHandler">
<property name="sql" value="select password from admin where username=?" />
<property name="dataSource" ref="dataSource" /></bean>
连接mysql数据库 并添加相应的包
<bean id="dataSource" class="org.apache.commons.dbcp.BasicDataSource" destroy-method="close">
<property name="driverClassName"><value>com.mysql.jdbc.Driver</value></property>
<property name="url"><value>jdbc:mysql://localhost:3306/testcas</value></property>
<property name="username"><value>root</value></property>
<property name="password"><value>123</value></property>
</bean>
访问https://casserver:8443/cas/login
输入数据库中的姓名,密码可以正常访问6在myecilpse 新建一个项目web项目 Castest 新建一个servlet HelloWorldServlet
在web.xml配置如下<!-- CAS配置-->
<filter>
<filter-name>CasSingleSignOutFilter</filter-name>
<filter-class>org.jasig.cas.client.session.SingleSignOutFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>CasSingleSignOutFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<listener>
<listener-class>org.jasig.cas.client.session.SingleSignOutHttpSessionListener</listener-class>
</listener>
<filter>
<filter-name>CasAuthenticationFilter</filter-name>
<filter-class>org.jasig.cas.client.authentication.AuthenticationFilter</filter-class>
<init-param>
<param-name>casServerLoginUrl</param-name>
<param-value>https://casserver:8443/cas/</param-value>
</init-param>
<init-param>
<param-name>serverName</param-name>
<param-value>server1:8080</param-value>
</init-param>
<init-param>
<param-name>renew</param-name>
<param-value>false</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>CasAuthenticationFilter</filter-name>
<!-- 过滤器保护的URL,如果能访问这个保护的URL,表示经过CAS验证,可以做获取权限的操作。-->
<url-pattern>/*</url-pattern>
</filter-mapping>
<filter>
<filter-name>CasValidationFilter</filter-name>
<filter-class>org.jasig.cas.client.validation.Cas20ProxyReceivingTicketValidationFilter</filter-class>
<init-param>
<param-name>casServerUrlPrefix</param-name>
<param-value>https://casserver:8443/cas/</param-value>
</init-param>
<init-param>
<param-name>serverName</param-name>
<param-value>server1:8080</param-value>
</init-param>
<init-param>
<param-name>redirectAfterValidation</param-name>
<param-value>true</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>CasValidationFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<filter>
<filter-name>CasHttpServletRequestWrapperFilter</filter-name>
<filter-class>org.jasig.cas.client.util.HttpServletRequestWrapperFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>CasHttpServletRequestWrapperFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
<!-- CAS configure End -->
解决方案 »
免费领取超大流量手机卡,每月29元包185G流量+100分钟通话, 中国电信官方发货