[導(dǎo)入]CAS 單點(diǎn)登錄安裝筆記3 -- 與acegi集成

網(wǎng)站: JavaEye 作者: jacally 鏈接：http://lib.javaeye.com/blog/165980 發(fā)表時間: 2008年02月28日

聲明：本文系JavaEye網(wǎng)站發(fā)布的原創(chuàng)博客文章，未經(jīng)作者書面許可，嚴(yán)禁任何網(wǎng)站轉(zhuǎn)載本文，否則必將追究法律責(zé)任！

CAS 單點(diǎn)登錄安裝筆記3
-- 與acegi集成

在我的項(xiàng)目中應(yīng)用了acigi安全框架,以下是結(jié)合yale cas單點(diǎn)登錄系統(tǒng)進(jìn)行的相關(guān)配置

<!-- =========  Acegi as a CAS Client的配置============= -->
<bean id="authenticationProcessingFilter"
class="org.acegisecurity.ui.cas.CasProcessingFilter">
<property name="authenticationManager"
ref="authenticationManager" />
<property name="authenticationFailureUrl"
value="/login.do?login_error=1" />
<property name="defaultTargetUrl" value="/main.do" />
<property name="filterProcessesUrl">
<value>/j_acegi_cas_security_check</value>
</property>
<property name="rememberMeServices" ref="rememberMeServices" />
<property name="exceptionMappings">
<value>
org.acegisecurity.AuthenticationServiceException=/login.do?login_error=user_not_found_error
org.acegisecurity.BadCredentialsException=/login.do?login_error=user_psw_error
org.acegisecurity.concurrent.ConcurrentLoginException=/login.do?login_error=too_many_user_error
org.acegisecurity.DisabledException=/login.do?login_error=disabled_user_error
</value>
</property>
</bean>
<bean id="exceptionTranslationFilter" class="org.acegisecurity.ui.ExceptionTranslationFilter">
<property name="authenticationEntryPoint">
<ref local="casProcessingFilterEntryPoint"/>
</property>
<property name="accessDeniedHandler">
<bean
class="org.acegisecurity.ui.AccessDeniedHandlerImpl">
<property name="errorPage"
value="/errors/accessDenied.jsp" />
</bean>
</property>
</bean>
<!-- cas config -->
<bean id="casProcessingFilterEntryPoint" class="org.acegisecurity.ui.cas.CasProcessingFilterEntryPoint">
<property name="loginUrl"><value>https://sso.gzps.net:8443/cas/login</value></property>
<property name="serviceProperties"><ref local="serviceProperties"/></property>
</bean>
<bean id="authenticationManager" class="org.acegisecurity.providers.ProviderManager">
<property name="providers">
<list>
<ref local="casAuthenticationProvider"/>
</list>
</property>
</bean>
<bean id="casAuthenticationProvider" class="org.acegisecurity.providers.cas.CasAuthenticationProvider">
<property name="casAuthoritiesPopulator"><ref bean="casAuthoritiesPopulator"/></property>
<property name="casProxyDecider"><ref local="casProxyDecider"/></property>
<property name="ticketValidator"><ref local="casProxyTicketValidator"/></property>
<property name="statelessTicketCache"><ref local="statelessTicketCache"/></property>
<property name="key"><value>my_password_for_this_auth_provider_only</value></property>
</bean>
<bean id="casProxyTicketValidator" class="org.acegisecurity.providers.cas.ticketvalidator.CasProxyTicketValidator">
<property name="casValidate"><value>https://sso.gzps.net:8443/cas/proxyValidate</value></property>
<property name="serviceProperties"><ref local="serviceProperties"/></property>
</bean>
<!--
<bean id="casProxyDecider" class="org.acegisecurity.providers.cas.proxy.AcceptAnyCasProxy" />
-->
<bean id="casProxyDecider" class="org.acegisecurity.providers.cas.proxy.RejectProxyTickets" />
<bean id="serviceProperties" class="org.acegisecurity.ui.cas.ServiceProperties">
<property name="service">
<value>http://localhost:8080/aio/j_acegi_cas_security_check</value>
</property>
<property name="sendRenew">
<value>false</value>
</property>
</bean>
<bean id="statelessTicketCache" class="org.acegisecurity.providers.cas.cache.EhCacheBasedTicketCache">
<property name="cache">
<bean class="org.springframework.cache.ehcache.EhCacheFactoryBean">
<property name="cacheManager">
<bean class="org.springframework.cache.ehcache.EhCacheManagerFactoryBean"/>
</property>
<property name="cacheName" value="userCache"/>
</bean>
</property>
</bean>
<bean id="casAuthoritiesPopulator" class="org.acegisecurity.providers.cas.populator.DaoCasAuthoritiesPopulator">

<property name="userDetailsService"><ref local="userDetailsService"/></property>

</bean>



<bean id="casProcessingFilter" class="org.acegisecurity.ui.cas.CasProcessingFilter">

<property name="authenticationManager"><ref local="authenticationManager"/></property>

<property name="authenticationFailureUrl"><value>/casfailed.jsp</value></property>

<property name="defaultTargetUrl"><value>/</value></property>

<property name="filterProcessesUrl"><value>/j_acegi_cas_security_check</value></property>

</bean>





<!-- ======================================================= -->

本文的討論也很精彩，瀏覽討論>>

JavaEye推薦
中國領(lǐng)先的電子商務(wù)網(wǎng)站－淘寶網(wǎng)招賢納士，誠聘Java工程師

文章來源:http://lib.javaeye.com/blog/165980

posted on 2008-02-28 23:39 Lib 閱讀(924) 評論(0) 編輯收藏所屬分類: 服務(wù)配置、Java

新用戶注冊刷新評論列表


只有注冊用戶登錄后才能發(fā)表評論。




網(wǎng)站導(dǎo)航: 博客園 IT新聞 Chat2DB C++博客博問管理
相關(guān)文章: [導(dǎo)入]CAS 單點(diǎn)登錄安裝筆記4 -- asp.net client端的設(shè)置 [導(dǎo)入]CAS 單點(diǎn)登錄安裝筆記3 -- 與acegi集成 [導(dǎo)入]CAS 單點(diǎn)登錄安裝筆記2 -- 配置CAS,訪問自己的用戶表 [導(dǎo)入]CAS 單點(diǎn)登錄安裝筆記1 -- 基本設(shè)置與數(shù)字證書的安裝配置Red5詳解(轉(zhuǎn)) subversion & apache 權(quán)限控制 [原] JBoss性能優(yōu)化：內(nèi)存緊張的問題終于解決了