java - CAS 单点注销不起作用

标签 java jakarta-ee single-sign-on servlet-filters cas

我在 Apache Tomcat 上安装了 CAS 服务器 (v3.5.2),在 JBOSS 上安装了 2 个客户端。 除非单点退出,否则一切正常。

我认为我所做的一切都很好,但仍然存在这个问题。

我的配置服务器端: 在 WEB-INF\deployerConfigContext.xml 中:

<bean class="org.jasig.cas.services.RegexRegisteredService">
    <property name="id" value="1" />
    <property name="name" value="HTTP and IMAP on localhost:8080/firstCasClient" />
    <property name="description" value="Allows HTTP(S) and IMAP(S) protocols on localhost:8080/firstCasClient" />
    <property name="serviceId" value="^(https?|imaps?)://([A-Za-z0-9_-]+\.)*localhost:8080/firstCasClient/*" />
    <property name="ssoEnabled" value="true" />
    <property name="enabled" value="true" />
    <property name="evaluationOrder" value="0" />
</bean>

<bean class="org.jasig.cas.services.RegexRegisteredService">
    <property name="id" value="2" />
    <property name="name" value="HTTP and IMAP on localhost:8080/secondCasClient" />
    <property name="description" value="Allows HTTP(S) and IMAP(S) protocols on localhost:8080/secondCasClient" />
    <property name="serviceId" value="^(https?|imaps?)://([A-Za-z0-9_-]+\.)*localhost:8080/secondCasClient/*" />
    <property name="ssoEnabled" value="true" />
    <property name="enabled" value="true" />
    <property name="evaluationOrder" value="1" />
</bean>

客户端中的配置: 在 web.xml 中:

<!-- CAS SINGLE SIGN OUT -->
<filter>
    <filter-name>CAS Single Sign Out Filter</filter-name>
    <filter-class>org.jasig.cas.client.session.SingleSignOutFilter</filter-class>
    <init-param>
    <!-- because of use of Saml11TicketValidationFilter -->
        <param-name>artifactParameterName</param-name>
        <param-value>SAMLart</param-value>
    </init-param>
</filter>
<filter-mapping>
    <filter-name>CAS Single Sign Out Filter</filter-name>
    <url-pattern>/*</url-pattern>
    <dispatcher>REQUEST</dispatcher>
    <dispatcher>FORWARD</dispatcher>
</filter-mapping>
<listener>
    <listener-class>org.jasig.cas.client.session.SingleSignOutHttpSessionListener</listener-class>
</listener>

<!-- other filters -->
<filter>
    <filter-name>CAS Authentication Filter</filter-name>
    <filter-class>org.jasig.cas.client.authentication.AuthenticationFilter</filter-class>
    <init-param>
        <param-name>casServerLoginUrl</param-name>
        <param-value>http://localhost:8888/cas-server-webapp-3.5.2/login</param-value>
    </init-param>
    <init-param>
        <param-name>service</param-name>
        <param-value>http://localhost:8080/firstCasClient</param-value>
    </init-param>
</filter>
<filter>
    <filter-name>CAS Validation Filter</filter-name>
    <filter-class>org.jasig.cas.client.validation.Saml11TicketValidationFilter</filter-class>
    <init-param>
        <param-name>casServerUrlPrefix</param-name>
        <param-value>http://localhost:8888/cas-server-webapp-3.5.2</param-value>
    </init-param>
    <init-param>
        <param-name>service</param-name>
        <param-value>http://localhost:8080/firstCasClient</param-value>
    </init-param>
</filter>
<filter>
    <filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
    <filter-class>org.jasig.cas.client.util.HttpServletRequestWrapperFilter</filter-class>
</filter>
<filter>
    <filter-name>CAS Assertion Thread Local Filter</filter-name>
    <filter-class>org.jasig.cas.client.util.AssertionThreadLocalFilter</filter-class>
</filter>
<filter-mapping>
    <filter-name>CAS Authentication Filter</filter-name>
    <url-pattern>/*</url-pattern>
    <dispatcher>REQUEST</dispatcher>
    <dispatcher>FORWARD</dispatcher>
</filter-mapping>
<filter-mapping>
    <filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
    <url-pattern>/*</url-pattern>
    <dispatcher>REQUEST</dispatcher>
    <dispatcher>FORWARD</dispatcher>
</filter-mapping>
<filter-mapping>
    <filter-name>CAS Validation Filter</filter-name>
    <url-pattern>/*</url-pattern>
    <dispatcher>REQUEST</dispatcher>
    <dispatcher>FORWARD</dispatcher>
</filter-mapping>
<filter-mapping>
    <filter-name>CAS Assertion Thread Local Filter</filter-name>
    <url-pattern>/*</url-pattern>
    <dispatcher>REQUEST</dispatcher>
    <dispatcher>FORWARD</dispatcher>
</filter-mapping>

希望有人能发现问题所在 还是谢谢了

最佳答案

确保在您的 argumentExtractorsConfiguration.xml 文件中,casArgumentExtractor bean 的disableSingleSignOut 属性设置为 false。如果您看到以下内容:

<bean id="casArgumentExtractor"
      class="org.jasig.cas.web.support.CasArgumentExtractor"
      p:httpClient-ref="noRedirectHttpClient"  
      p:disableSingleSignOut="${slo.callbacks.disabled:false}" />

查看 cas.properties 并确保 slo.callbacks.disabled 未设置为 true。 ${slo.callbacks.disabled:false} 表示查找该属性,如果未找到则默认为 false。

关于java - CAS 单点注销不起作用,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/17837239/

上一篇:java - 为什么我的对账单没有发送到客户端?

下一篇:java - 从代码页 1252 的 FileItem 读取包括欧元符号的内容

相关文章:

java - 为什么这个简单的 JSON 编码示例在 Apache Camel 中不起作用?

Java EE,如何正确实现更新?

java - 带有显示标签的 struts 1.3 磁贴

authentication - 以编程方式登录 Microsoft Online

.net - 使用 OpenID 的 SSO

ios5 中的 Facebook SSO

java - 在 Java 中创建嵌套的 Fluent API

java - 平台间API代理的最佳实践

java - 带有可滚动对象的 JDialog

java - 如何在 Java EE 环境中拦截和验证 HTTP 请求

©2024 IT工具网  联系我们