├── .travis.yml ├── pic ├── 1.png ├── 流程.vsdx └── config │ ├── application.yml │ └── application.properties ├── src ├── main │ ├── resources │ │ └── META-INF │ │ │ └── spring.factories │ └── java │ │ └── top │ │ └── itning │ │ └── cas │ │ ├── config │ │ ├── INeedSetMap2SessionConfig.java │ │ ├── IAnalysisResponseBody.java │ │ └── ICheckIsLoginConfig.java │ │ ├── callback │ │ ├── login │ │ │ ├── ILoginNeverCallBack.java │ │ │ ├── ILoginFailureCallBack.java │ │ │ └── ILoginSuccessCallBack.java │ │ └── option │ │ │ └── IOptionsHttpMethodCallBack.java │ │ ├── RestModel.java │ │ ├── CasProperties.java │ │ ├── CasAutoConfigure.java │ │ └── CasFilter.java └── test │ └── java │ └── top │ └── itning │ └── cas │ ├── ConfigImpl.java │ └── CallBackImpl.java ├── .gitignore ├── pom.xml ├── README.md └── LICENSE /.travis.yml: -------------------------------------------------------------------------------- 1 | language: java -------------------------------------------------------------------------------- /pic/1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/itning/cas-spring-boot-starter/master/pic/1.png -------------------------------------------------------------------------------- /pic/流程.vsdx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/itning/cas-spring-boot-starter/master/pic/流程.vsdx -------------------------------------------------------------------------------- /src/main/resources/META-INF/spring.factories: -------------------------------------------------------------------------------- 1 | org.springframework.boot.autoconfigure.EnableAutoConfiguration=top.itning.cas.CasAutoConfigure -------------------------------------------------------------------------------- /pic/config/application.yml: -------------------------------------------------------------------------------- 1 | cas: 2 | debug: true 3 | server-url: http://login.greathiit.com 4 | login-url: http://login.greathiit.com/login 5 | logout-url: http://login.greathiit.com/logout 6 | login-success-url: http://localhost:8090 7 | local-server-url: http://localhost:8080 -------------------------------------------------------------------------------- /src/main/java/top/itning/cas/config/INeedSetMap2SessionConfig.java: -------------------------------------------------------------------------------- 1 | package top.itning.cas.config; 2 | 3 | /** 4 | * 是否需要将属性放到Session中 5 | * 6 | * @author itning 7 | * @date 2019/4/14 22:42 8 | */ 9 | @FunctionalInterface 10 | public interface INeedSetMap2SessionConfig { 11 | /** 12 | * 是否需要将属性放到Session中 13 | * 14 | * @return 需要返回true 15 | */ 16 | boolean needSetMapSession(); 17 | } 18 | -------------------------------------------------------------------------------- /src/main/java/top/itning/cas/config/IAnalysisResponseBody.java: -------------------------------------------------------------------------------- 1 | package top.itning.cas.config; 2 | 3 | import java.util.Map; 4 | 5 | /** 6 | * 解析响应体 7 | * 8 | * @author itning 9 | * @date 2019/4/14 22:31 10 | */ 11 | @FunctionalInterface 12 | public interface IAnalysisResponseBody { 13 | /** 14 | * 解析响应体到Map 15 | * 16 | * @param body 响应体 17 | * @return Map 18 | */ 19 | Map analysisBody2Map(String body); 20 | } 21 | -------------------------------------------------------------------------------- /pic/config/application.properties: -------------------------------------------------------------------------------- 1 | cas.allow-cors=true 2 | cas.debug=true 3 | cas.client-login-path=/login 4 | cas.client-logout-path=/logout 5 | cas.session-attribute-name=_cas_attributes_ 6 | cas.request-connect-timeout=15000 7 | cas.request-read-timeout=5000 8 | cas.local-server-url=http://localhost:8080 9 | cas.login-success-url=http://localhost:8090 10 | cas.login-url=http://login.greathiit.com/login 11 | cas.logout-url=http://login.greathiit.com/logout 12 | cas.server-url=http://login.greathiit.com -------------------------------------------------------------------------------- /src/main/java/top/itning/cas/config/ICheckIsLoginConfig.java: -------------------------------------------------------------------------------- 1 | package top.itning.cas.config; 2 | 3 | import javax.servlet.http.HttpServletRequest; 4 | import javax.servlet.http.HttpServletResponse; 5 | 6 | /** 7 | * 是否登陆判断配置 8 | * 9 | * @author itning 10 | * @date 2019/4/14 22:41 11 | */ 12 | @FunctionalInterface 13 | public interface ICheckIsLoginConfig { 14 | /** 15 | * 是否登陆判断 16 | * 17 | * @param resp {@link HttpServletResponse} 18 | * @param req {@link HttpServletRequest} 19 | * @return 已经登陆返回true 20 | */ 21 | boolean isLogin(HttpServletResponse resp, HttpServletRequest req); 22 | } 23 | -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- 1 | # Created by .ignore support plugin (hsz.mobi) 2 | ### Maven template 3 | target/ 4 | pom.xml.tag 5 | pom.xml.releaseBackup 6 | pom.xml.versionsBackup 7 | pom.xml.next 8 | release.properties 9 | dependency-reduced-pom.xml 10 | buildNumber.properties 11 | .mvn/timing.properties 12 | .mvn/wrapper/maven-wrapper.jar 13 | ### Java template 14 | # Compiled class file 15 | *.class 16 | 17 | # Log file 18 | *.log 19 | 20 | # BlueJ files 21 | *.ctxt 22 | 23 | # Mobile Tools for Java (J2ME) 24 | .mtj.tmp/ 25 | 26 | # Package Files # 27 | *.jar 28 | *.war 29 | *.nar 30 | *.ear 31 | *.zip 32 | *.tar.gz 33 | *.rar 34 | 35 | # virtual machine crash logs, see http://www.java.com/en/download/help/error_hotspot.xml 36 | hs_err_pid* 37 | 38 | /CasSpringBootStarter.iml 39 | -------------------------------------------------------------------------------- /src/main/java/top/itning/cas/callback/login/ILoginNeverCallBack.java: -------------------------------------------------------------------------------- 1 | package top.itning.cas.callback.login; 2 | 3 | import javax.servlet.ServletException; 4 | import javax.servlet.http.HttpServletRequest; 5 | import javax.servlet.http.HttpServletResponse; 6 | import java.io.IOException; 7 | 8 | /** 9 | * 当用户没有登陆时回调 10 | * 11 | * @author itning 12 | * @date 2019/4/14 22:38 13 | */ 14 | @FunctionalInterface 15 | public interface ILoginNeverCallBack { 16 | /** 17 | * 当用户没有登陆时 18 | * 19 | * @param resp {@link HttpServletResponse} 20 | * @param req {@link HttpServletRequest} 21 | * @throws IOException 可能抛出的异常 22 | * @throws ServletException 可能抛出的异常 23 | */ 24 | void onNeverLogin(HttpServletResponse resp, HttpServletRequest req) throws IOException, ServletException; 25 | } 26 | -------------------------------------------------------------------------------- /src/main/java/top/itning/cas/callback/login/ILoginFailureCallBack.java: -------------------------------------------------------------------------------- 1 | package top.itning.cas.callback.login; 2 | 3 | import javax.servlet.ServletException; 4 | import javax.servlet.http.HttpServletRequest; 5 | import javax.servlet.http.HttpServletResponse; 6 | import java.io.IOException; 7 | 8 | /** 9 | * 当登陆失败时回调 10 | * 11 | * @author itning 12 | * @date 2019/4/14 22:37 13 | */ 14 | @FunctionalInterface 15 | public interface ILoginFailureCallBack { 16 | /** 17 | * 当登陆失败时 18 | * 19 | * @param resp {@link HttpServletResponse} 20 | * @param req {@link HttpServletRequest} 21 | * @param e 登陆失败时抛出的异常 22 | * @throws IOException 可能抛出的异常 23 | * @throws ServletException 可能抛出的异常 24 | */ 25 | void onLoginFailure(HttpServletResponse resp, HttpServletRequest req, Exception e) throws IOException, ServletException; 26 | } 27 | -------------------------------------------------------------------------------- /src/test/java/top/itning/cas/ConfigImpl.java: -------------------------------------------------------------------------------- 1 | package top.itning.cas; 2 | 3 | import top.itning.cas.config.IAnalysisResponseBody; 4 | import top.itning.cas.config.ICheckIsLoginConfig; 5 | import top.itning.cas.config.INeedSetMap2SessionConfig; 6 | 7 | import javax.servlet.http.HttpServletRequest; 8 | import javax.servlet.http.HttpServletResponse; 9 | import java.util.Map; 10 | 11 | /** 12 | * @author itning 13 | * @date 2019/6/23 10:27 14 | */ 15 | public class ConfigImpl implements IAnalysisResponseBody, ICheckIsLoginConfig, INeedSetMap2SessionConfig { 16 | @Override 17 | public Map analysisBody2Map(String body) { 18 | return null; 19 | } 20 | 21 | @Override 22 | public boolean isLogin(HttpServletResponse resp, HttpServletRequest req) { 23 | return false; 24 | } 25 | 26 | @Override 27 | public boolean needSetMapSession() { 28 | return false; 29 | } 30 | } 31 | -------------------------------------------------------------------------------- /src/main/java/top/itning/cas/callback/login/ILoginSuccessCallBack.java: -------------------------------------------------------------------------------- 1 | package top.itning.cas.callback.login; 2 | 3 | import javax.servlet.ServletException; 4 | import javax.servlet.http.HttpServletRequest; 5 | import javax.servlet.http.HttpServletResponse; 6 | import java.io.IOException; 7 | import java.util.Map; 8 | 9 | /** 10 | * 当登陆成功时回调 11 | * 12 | * @author itning 13 | * @date 2019/4/14 22:36 14 | */ 15 | @FunctionalInterface 16 | public interface ILoginSuccessCallBack { 17 | /** 18 | * 当登陆成功时 19 | * 20 | * @param resp {@link HttpServletResponse} 21 | * @param req {@link HttpServletRequest} 22 | * @param attributesMap 登陆成功时CAS服务器返回的属性信息 23 | * @throws IOException 可能抛出的异常 24 | * @throws ServletException 可能抛出的异常 25 | */ 26 | void onLoginSuccess(HttpServletResponse resp, HttpServletRequest req, Map attributesMap) throws IOException, ServletException; 27 | } 28 | -------------------------------------------------------------------------------- /src/main/java/top/itning/cas/callback/option/IOptionsHttpMethodCallBack.java: -------------------------------------------------------------------------------- 1 | package top.itning.cas.callback.option; 2 | 3 | import javax.servlet.ServletException; 4 | import javax.servlet.http.HttpServletRequest; 5 | import javax.servlet.http.HttpServletResponse; 6 | import java.io.IOException; 7 | 8 | /** 9 | *

当出现OPTIONS请求时

10 | *

一般来说OPTION请求为浏览器检测是否支持跨域

11 | * 12 | * @author itning 13 | * @date 2019/4/14 22:24 14 | */ 15 | @FunctionalInterface 16 | public interface IOptionsHttpMethodCallBack { 17 | /** 18 | *

当出现OPTIONS请求时

19 | *

一般来说OPTION请求为浏览器检测是否支持跨域

20 | * 21 | * @param resp {@link HttpServletResponse} 22 | * @param req {@link HttpServletRequest} 23 | * @throws IOException 可能抛出的异常 24 | * @throws ServletException 可能抛出的异常 25 | */ 26 | void onOptionsHttpMethodRequest(HttpServletResponse resp, HttpServletRequest req) throws IOException, ServletException; 27 | } 28 | -------------------------------------------------------------------------------- /src/main/java/top/itning/cas/RestModel.java: -------------------------------------------------------------------------------- 1 | package top.itning.cas; 2 | 3 | import org.springframework.http.HttpStatus; 4 | 5 | import java.io.Serializable; 6 | 7 | /** 8 | * Rest 返回消息 9 | * 10 | * @author itning 11 | */ 12 | @SuppressWarnings({"WeakerAccess", "unused"}) 13 | public class RestModel implements Serializable { 14 | private int code; 15 | private String msg; 16 | private T data; 17 | 18 | public RestModel() { 19 | } 20 | 21 | public RestModel(int code, String msg, T data) { 22 | this.code = code; 23 | this.msg = msg; 24 | this.data = data; 25 | } 26 | 27 | public RestModel(T data) { 28 | this(HttpStatus.OK.value(), "查询成功", data); 29 | } 30 | 31 | public int getCode() { 32 | return code; 33 | } 34 | 35 | public void setCode(int code) { 36 | this.code = code; 37 | } 38 | 39 | public String getMsg() { 40 | return msg; 41 | } 42 | 43 | public void setMsg(String msg) { 44 | this.msg = msg; 45 | } 46 | 47 | public T getData() { 48 | return data; 49 | } 50 | 51 | public void setData(T data) { 52 | this.data = data; 53 | } 54 | } 55 | -------------------------------------------------------------------------------- /src/test/java/top/itning/cas/CallBackImpl.java: -------------------------------------------------------------------------------- 1 | package top.itning.cas; 2 | 3 | import top.itning.cas.callback.login.ILoginFailureCallBack; 4 | import top.itning.cas.callback.login.ILoginNeverCallBack; 5 | import top.itning.cas.callback.login.ILoginSuccessCallBack; 6 | import top.itning.cas.callback.option.IOptionsHttpMethodCallBack; 7 | 8 | import javax.servlet.ServletException; 9 | import javax.servlet.http.HttpServletRequest; 10 | import javax.servlet.http.HttpServletResponse; 11 | import java.io.IOException; 12 | import java.util.Map; 13 | 14 | /** 15 | * @author itning 16 | * @date 2019/6/23 10:26 17 | */ 18 | public class CallBackImpl implements ILoginFailureCallBack, ILoginNeverCallBack, ILoginSuccessCallBack, IOptionsHttpMethodCallBack { 19 | @Override 20 | public void onLoginFailure(HttpServletResponse resp, HttpServletRequest req, Exception e) throws IOException, ServletException { 21 | 22 | } 23 | 24 | @Override 25 | public void onNeverLogin(HttpServletResponse resp, HttpServletRequest req) throws IOException, ServletException { 26 | 27 | } 28 | 29 | @Override 30 | public void onLoginSuccess(HttpServletResponse resp, HttpServletRequest req, Map attributesMap) throws IOException, ServletException { 31 | 32 | } 33 | 34 | @Override 35 | public void onOptionsHttpMethodRequest(HttpServletResponse resp, HttpServletRequest req) throws IOException, ServletException { 36 | 37 | } 38 | } 39 | -------------------------------------------------------------------------------- /src/main/java/top/itning/cas/CasProperties.java: -------------------------------------------------------------------------------- 1 | package top.itning.cas; 2 | 3 | import org.springframework.boot.context.properties.ConfigurationProperties; 4 | 5 | import java.net.URI; 6 | import java.util.List; 7 | 8 | /** 9 | * CAS 配置 10 | * 11 | * @author itning 12 | */ 13 | @ConfigurationProperties(prefix = "cas") 14 | public class CasProperties { 15 | /** 16 | * 启用 17 | */ 18 | private boolean enabled = true; 19 | /** 20 | * CAS服务端地址 21 | */ 22 | private URI serverUrl; 23 | /** 24 | * 登陆地址(CAS服务端地址) 25 | */ 26 | private URI loginUrl; 27 | /** 28 | * 登出网址(CAS服务端地址) 29 | */ 30 | private URI logoutUrl; 31 | 32 | /** 33 | * 登陆成功后跳转的网址 34 | */ 35 | private URI loginSuccessUrl; 36 | 37 | /** 38 | * 本地服务端地址(该项目地址) 39 | */ 40 | private URI localServerUrl; 41 | /** 42 | * 登陆地址(访问该地址会跳转到loginUrl) 43 | */ 44 | private String clientLoginPath = "/login"; 45 | /** 46 | * 登出地址(访问该地址会跳转到登出地址) 47 | */ 48 | private String clientLogoutPath = "/logout"; 49 | /** 50 | * 存储获取到的Attributes的Session Name 51 | */ 52 | private String sessionAttributeName = "_cas_attributes_"; 53 | /** 54 | * 请求读超时(ms) 55 | */ 56 | private int requestReadTimeout = 5000; 57 | /** 58 | * 请求连接超时(ms) 59 | */ 60 | private int requestConnectTimeout = 15000; 61 | /** 62 | * 开启调试 63 | */ 64 | private boolean debug = false; 65 | /** 66 | * 允许跨域 67 | */ 68 | private boolean allowCors = true; 69 | /** 70 | * 排除过滤 71 | */ 72 | private List exclude; 73 | 74 | public boolean isEnabled() { 75 | return enabled; 76 | } 77 | 78 | public void setEnabled(boolean enabled) { 79 | this.enabled = enabled; 80 | } 81 | 82 | public URI getServerUrl() { 83 | return serverUrl; 84 | } 85 | 86 | public void setServerUrl(URI serverUrl) { 87 | this.serverUrl = serverUrl; 88 | } 89 | 90 | public URI getLoginUrl() { 91 | return loginUrl; 92 | } 93 | 94 | public void setLoginUrl(URI loginUrl) { 95 | this.loginUrl = loginUrl; 96 | } 97 | 98 | public URI getLogoutUrl() { 99 | return logoutUrl; 100 | } 101 | 102 | public void setLogoutUrl(URI logoutUrl) { 103 | this.logoutUrl = logoutUrl; 104 | } 105 | 106 | public URI getLoginSuccessUrl() { 107 | return loginSuccessUrl; 108 | } 109 | 110 | public void setLoginSuccessUrl(URI loginSuccessUrl) { 111 | this.loginSuccessUrl = loginSuccessUrl; 112 | } 113 | 114 | public URI getLocalServerUrl() { 115 | return localServerUrl; 116 | } 117 | 118 | public void setLocalServerUrl(URI localServerUrl) { 119 | this.localServerUrl = localServerUrl; 120 | } 121 | 122 | public String getClientLoginPath() { 123 | return clientLoginPath; 124 | } 125 | 126 | public void setClientLoginPath(String clientLoginPath) { 127 | this.clientLoginPath = clientLoginPath; 128 | } 129 | 130 | public String getClientLogoutPath() { 131 | return clientLogoutPath; 132 | } 133 | 134 | public void setClientLogoutPath(String clientLogoutPath) { 135 | this.clientLogoutPath = clientLogoutPath; 136 | } 137 | 138 | public String getSessionAttributeName() { 139 | return sessionAttributeName; 140 | } 141 | 142 | public void setSessionAttributeName(String sessionAttributeName) { 143 | this.sessionAttributeName = sessionAttributeName; 144 | } 145 | 146 | public int getRequestReadTimeout() { 147 | return requestReadTimeout; 148 | } 149 | 150 | public void setRequestReadTimeout(int requestReadTimeout) { 151 | this.requestReadTimeout = requestReadTimeout; 152 | } 153 | 154 | public int getRequestConnectTimeout() { 155 | return requestConnectTimeout; 156 | } 157 | 158 | public void setRequestConnectTimeout(int requestConnectTimeout) { 159 | this.requestConnectTimeout = requestConnectTimeout; 160 | } 161 | 162 | public boolean isDebug() { 163 | return debug; 164 | } 165 | 166 | public void setDebug(boolean debug) { 167 | this.debug = debug; 168 | } 169 | 170 | public boolean isAllowCors() { 171 | return allowCors; 172 | } 173 | 174 | public void setAllowCors(boolean allowCors) { 175 | this.allowCors = allowCors; 176 | } 177 | 178 | public List getExclude() { 179 | return exclude; 180 | } 181 | 182 | public void setExclude(List exclude) { 183 | this.exclude = exclude; 184 | } 185 | 186 | @Override 187 | public String toString() { 188 | return "CasProperties{" + 189 | "enabled=" + enabled + 190 | ", serverUrl=" + serverUrl + 191 | ", loginUrl=" + loginUrl + 192 | ", logoutUrl=" + logoutUrl + 193 | ", loginSuccessUrl=" + loginSuccessUrl + 194 | ", localServerUrl=" + localServerUrl + 195 | ", clientLoginPath='" + clientLoginPath + '\'' + 196 | ", clientLogoutPath='" + clientLogoutPath + '\'' + 197 | ", sessionAttributeName='" + sessionAttributeName + '\'' + 198 | ", requestReadTimeout=" + requestReadTimeout + 199 | ", requestConnectTimeout=" + requestConnectTimeout + 200 | ", debug=" + debug + 201 | ", allowCors=" + allowCors + 202 | ", exclude=" + exclude + 203 | '}'; 204 | } 205 | } 206 | -------------------------------------------------------------------------------- /pom.xml: -------------------------------------------------------------------------------- 1 | 2 | 5 | 4.0.0 6 | 7 | top.itning 8 | cas-spring-boot-starter 9 | 1.2.0-RELEASE 10 | 11 | https://github.com/itning/cas-spring-boot-starter 12 | 13 | 14 | Apache License 2.0 15 | https://github.com/itning/cas-spring-boot-starter/blob/master/LICENSE 16 | 17 | 18 | 19 | UTF-8 20 | 21 | 2.1.1.RELEASE 22 | 1.8 23 | 24 | 3.7.0 25 | 2.20.1 26 | 3.0.1 27 | 3.0.0 28 | 29 | 30 | 31 | org.springframework.boot 32 | spring-boot-autoconfigure 33 | 34 | 35 | org.springframework.boot 36 | spring-boot-configuration-processor 37 | 38 | 39 | org.springframework.boot 40 | spring-boot-starter-web 41 | true 42 | 43 | 44 | javax.servlet 45 | servlet-api 46 | 2.5 47 | true 48 | 49 | 50 | 51 | dom4j 52 | dom4j 53 | 54 | 55 | 56 | jaxen 57 | jaxen 58 | 59 | 60 | 61 | 62 | 63 | 64 | 65 | org.springframework.boot 66 | spring-boot-dependencies 67 | ${spring-boot.version} 68 | pom 69 | import 70 | 71 | 72 | 73 | 74 | 75 | 76 | 77 | org.apache.maven.plugins 78 | maven-compiler-plugin 79 | ${maven-compiler-plugin.version} 80 | 81 | ${java.version} 82 | ${java.version} 83 | ${project.build.sourceEncoding} 84 | 85 | 86 | 87 | org.apache.maven.plugins 88 | maven-surefire-plugin 89 | ${maven-surefire-plugin.version} 90 | 91 | 92 | **/testcase/**/*.java 93 | 94 | 95 | 96 | 97 | org.apache.maven.plugins 98 | maven-source-plugin 99 | ${maven-source-plugin.version} 100 | 101 | 102 | attach-sources 103 | 104 | jar-no-fork 105 | 106 | 107 | 108 | 109 | true 110 | 111 | 112 | 113 | org.apache.maven.plugins 114 | maven-javadoc-plugin 115 | ${maven-javadoc-plugin.version} 116 | 117 | 118 | attach-javadocs 119 | 120 | jar 121 | 122 | 123 | 124 | 125 | false 126 | public 127 | none 128 | ${project.build.sourceEncoding} 129 | ${project.build.sourceEncoding} 130 | ${project.build.sourceEncoding} 131 | 132 | http://docs.oracle.com/javase/8/docs/api/ 133 | 134 | 135 | 136 | 137 | 138 | -------------------------------------------------------------------------------- /src/main/java/top/itning/cas/CasAutoConfigure.java: -------------------------------------------------------------------------------- 1 | package top.itning.cas; 2 | 3 | import com.fasterxml.jackson.databind.ObjectMapper; 4 | import org.dom4j.Document; 5 | import org.dom4j.DocumentHelper; 6 | import org.dom4j.Node; 7 | import org.slf4j.Logger; 8 | import org.slf4j.LoggerFactory; 9 | import org.springframework.boot.autoconfigure.condition.ConditionalOnMissingBean; 10 | import org.springframework.boot.context.properties.EnableConfigurationProperties; 11 | import org.springframework.boot.web.servlet.FilterRegistrationBean; 12 | import org.springframework.context.annotation.Bean; 13 | import org.springframework.context.annotation.Configuration; 14 | import org.springframework.core.Ordered; 15 | import org.springframework.http.HttpStatus; 16 | import org.springframework.http.MediaType; 17 | import top.itning.cas.callback.login.ILoginFailureCallBack; 18 | import top.itning.cas.callback.login.ILoginNeverCallBack; 19 | import top.itning.cas.callback.login.ILoginSuccessCallBack; 20 | import top.itning.cas.callback.option.IOptionsHttpMethodCallBack; 21 | import top.itning.cas.config.IAnalysisResponseBody; 22 | import top.itning.cas.config.ICheckIsLoginConfig; 23 | import top.itning.cas.config.INeedSetMap2SessionConfig; 24 | 25 | import javax.servlet.http.HttpServletRequest; 26 | import javax.servlet.http.HttpServletResponse; 27 | import java.io.IOException; 28 | import java.io.PrintWriter; 29 | import java.util.Arrays; 30 | import java.util.HashMap; 31 | import java.util.List; 32 | import java.util.Map; 33 | 34 | import static org.springframework.http.HttpHeaders.*; 35 | 36 | /** 37 | * @author itning 38 | */ 39 | @Configuration 40 | @EnableConfigurationProperties(CasProperties.class) 41 | public class CasAutoConfigure { 42 | private static final Logger logger = LoggerFactory.getLogger(CasAutoConfigure.class); 43 | 44 | protected static final ObjectMapper MAPPER = new ObjectMapper(); 45 | 46 | private final CasProperties casProperties; 47 | 48 | private static String[] up = {"*"}; 49 | 50 | public CasAutoConfigure(CasProperties casProperties) { 51 | this.casProperties = casProperties; 52 | } 53 | 54 | @Bean 55 | public FilterRegistrationBean topItningCasFilterRegistration(CasProperties casProperties) { 56 | debug("urlPatterns:" + Arrays.toString(up)); 57 | FilterRegistrationBean registration = new FilterRegistrationBean<>(); 58 | registration.setEnabled(casProperties.isEnabled()); 59 | registration.setFilter(new CasFilter()); 60 | registration.addUrlPatterns(up); 61 | registration.setName("top.itning.cas.filter"); 62 | registration.setOrder(Ordered.HIGHEST_PRECEDENCE); 63 | return registration; 64 | } 65 | 66 | @Bean 67 | @ConditionalOnMissingBean 68 | public ILoginFailureCallBack iLoginFailureCallBack() { 69 | return (resp, req, e) -> { 70 | allowCors(resp, req); 71 | resp.setHeader(RETRY_AFTER, "10"); 72 | resp.setContentType(MediaType.APPLICATION_JSON_UTF8_VALUE); 73 | resp.setStatus(HttpStatus.INTERNAL_SERVER_ERROR.value()); 74 | RestModel restModel = new RestModel<>(); 75 | restModel.setCode(HttpStatus.INTERNAL_SERVER_ERROR.value()); 76 | restModel.setMsg("认证失败,请重试"); 77 | writeRestModel2Response(resp, restModel); 78 | }; 79 | } 80 | 81 | @Bean 82 | @ConditionalOnMissingBean 83 | public ILoginNeverCallBack iLoginNeverCallBack() { 84 | return (resp, req) -> { 85 | allowCors(resp, req); 86 | resp.setContentType(MediaType.APPLICATION_JSON_UTF8_VALUE); 87 | resp.setStatus(HttpStatus.UNAUTHORIZED.value()); 88 | RestModel restModel = new RestModel<>(); 89 | restModel.setCode(HttpStatus.UNAUTHORIZED.value()); 90 | restModel.setMsg("请先登陆"); 91 | writeRestModel2Response(resp, restModel); 92 | }; 93 | } 94 | 95 | @Bean 96 | @ConditionalOnMissingBean 97 | public ILoginSuccessCallBack iLoginSuccessCallBack() { 98 | return (resp, req, attributesMap) -> { 99 | debug("Now send redirect to " + casProperties.getLoginSuccessUrl().toString()); 100 | resp.sendRedirect(casProperties.getLoginSuccessUrl().toString()); 101 | }; 102 | } 103 | 104 | @Bean 105 | @ConditionalOnMissingBean 106 | public IOptionsHttpMethodCallBack iOptionsHttpMethodCallBack() { 107 | return this::allowCors; 108 | } 109 | 110 | @Bean 111 | @ConditionalOnMissingBean 112 | public IAnalysisResponseBody iAnalysisResponseBody() { 113 | return body -> { 114 | Map map = new HashMap<>(16); 115 | try { 116 | Document doc = DocumentHelper.parseText(body); 117 | Node successNode = doc.selectSingleNode("//cas:authenticationSuccess"); 118 | if (successNode != null) { 119 | @SuppressWarnings("unchecked") 120 | List attributesNode = doc.selectNodes("//cas:attributes/*"); 121 | attributesNode.forEach(defaultElement -> map.put(defaultElement.getName(), defaultElement.getText())); 122 | if (casProperties.isDebug()) { 123 | logger.debug("Get Map: " + map); 124 | } 125 | } else { 126 | //认证失败 127 | logger.error("AUTHENTICATION failed : cas:authenticationSuccess Not Found"); 128 | } 129 | } catch (Exception e) { 130 | logger.error("AUTHENTICATION failed and Catch Exception: ", e); 131 | } 132 | return map; 133 | }; 134 | } 135 | 136 | @Bean 137 | @ConditionalOnMissingBean 138 | public ICheckIsLoginConfig iCheckIsLoginConfig() { 139 | return (resp, req) -> req.getSession().getAttribute(casProperties.getSessionAttributeName()) != null; 140 | } 141 | 142 | @Bean 143 | @ConditionalOnMissingBean 144 | public INeedSetMap2SessionConfig iNeedSetMap2SessionConfig() { 145 | return () -> true; 146 | } 147 | 148 | /** 149 | * 允许跨域(不管客户端地址是什么,全部允许) 150 | * 151 | * @param resp {@link HttpServletResponse} 152 | * @param req {@link HttpServletRequest} 153 | */ 154 | protected void allowCors(HttpServletResponse resp, HttpServletRequest req) { 155 | String origin = req.getHeader(ORIGIN); 156 | resp.setHeader(ACCESS_CONTROL_ALLOW_CREDENTIALS, "true"); 157 | resp.setHeader(ACCESS_CONTROL_ALLOW_ORIGIN, origin); 158 | resp.setHeader(ACCESS_CONTROL_ALLOW_METHODS, "POST,GET,OPTIONS,DELETE,PUT,PATCH"); 159 | resp.setHeader(ACCESS_CONTROL_ALLOW_HEADERS, req.getHeader(ACCESS_CONTROL_REQUEST_HEADERS)); 160 | resp.setIntHeader(ACCESS_CONTROL_MAX_AGE, 2592000); 161 | } 162 | 163 | /** 164 | * 将RestModel写入Response 165 | * 166 | * @param resp {@link HttpServletResponse} 167 | * @param restModel {@link RestModel} 168 | * @throws IOException see {@link HttpServletResponse#getWriter()} 169 | */ 170 | private void writeRestModel2Response(HttpServletResponse resp, RestModel restModel) throws IOException { 171 | String json = MAPPER.writeValueAsString(restModel); 172 | PrintWriter writer = resp.getWriter(); 173 | writer.write(json); 174 | writer.flush(); 175 | writer.close(); 176 | } 177 | 178 | /** 179 | * DEBUG 日志输出 180 | * 181 | * @param msg 日志消息 182 | */ 183 | private void debug(String msg) { 184 | if (casProperties.isDebug()) { 185 | logger.debug(msg); 186 | } 187 | } 188 | 189 | /** 190 | * 设置拦截路径 191 | * 192 | * @param urlPatterns 路径 193 | */ 194 | public static void setUrlPatterns(String... urlPatterns) { 195 | up = urlPatterns; 196 | } 197 | } 198 | -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 |

CAS 单点登陆 spring boot starter

2 |
3 | 4 | [![GitHub stars](https://img.shields.io/github/stars/itning/cas-spring-boot-starter.svg?style=social&label=Stars)](https://github.com/itning/cas-spring-boot-starter/stargazers) 5 | [![GitHub forks](https://img.shields.io/github/forks/itning/cas-spring-boot-starter.svg?style=social&label=Fork)](https://github.com/itning/cas-spring-boot-starter/network/members) 6 | [![GitHub watchers](https://img.shields.io/github/watchers/itning/cas-spring-boot-starter.svg?style=social&label=Watch)](https://github.com/itning/cas-spring-boot-starter/watchers) 7 | [![GitHub followers](https://img.shields.io/github/followers/itning.svg?style=social&label=Follow)](https://github.com/itning?tab=followers) 8 | 9 |
10 | 11 |
12 | 13 | [![GitHub issues](https://img.shields.io/github/issues/itning/cas-spring-boot-starter.svg)](https://github.com/itning/cas-spring-boot-starter/issues) 14 | [![GitHub license](https://img.shields.io/github/license/itning/cas-spring-boot-starter.svg)](https://github.com/itning/cas-spring-boot-starter/blob/master/LICENSE) 15 | [![GitHub last commit](https://img.shields.io/github/last-commit/itning/cas-spring-boot-starter.svg)](https://github.com/itning/cas-spring-boot-starter/commits) 16 | [![GitHub release](https://img.shields.io/github/release/itning/cas-spring-boot-starter.svg)](https://github.com/itning/cas-spring-boot-starter/releases) 17 | [![GitHub repo size in bytes](https://img.shields.io/github/repo-size/itning/cas-spring-boot-starter.svg)](https://github.com/itning/cas-spring-boot-starter) 18 | [![HitCount](http://hits.dwyl.io/itning/cas-spring-boot-starter.svg)](http://hits.dwyl.io/itning/cas-spring-boot-starter) 19 | [![language](https://img.shields.io/badge/language-JAVA-green.svg)](https://github.com/itning/cas-spring-boot-starter) 20 | [![](https://jitpack.io/v/itning/cas-spring-boot-starter.svg)](https://jitpack.io/#itning/cas-spring-boot-starter) 21 | [![Build Status](https://travis-ci.org/itning/cas-spring-boot-starter.svg?branch=master)](https://travis-ci.org/itning/cas-spring-boot-starter) 22 | 23 |
24 | 25 | --- 26 | 27 | ## 安装 28 | 29 | [![](https://jitpack.io/v/itning/cas-spring-boot-starter.svg)](https://jitpack.io/#itning/cas-spring-boot-starter) 30 | 31 | ## maven 32 | 33 | 1.添加JitPack仓库到pom.xml 34 | 35 | ```xml 36 | 37 | 38 | jitpack.io 39 | https://jitpack.io 40 | 41 | 42 | ``` 43 | 44 | 2.添加依赖 45 | 46 | ```xml 47 | 48 | com.github.itning 49 | cas-spring-boot-starter 50 | 1.2.0-RELEASE 51 | 52 | ``` 53 | 54 | ## gradle 55 | 56 | 1.Add it in your root build.gradle at the end of repositories: 57 | 58 | ```groovy 59 | allprojects { 60 | repositories { 61 | ... 62 | maven { url 'https://jitpack.io' } 63 | } 64 | } 65 | ``` 66 | 67 | 2.Add the dependency 68 | 69 | ```groovy 70 | dependencies { 71 | implementation 'com.github.itning:cas-spring-boot-starter:1.2.0-RELEASE' 72 | } 73 | ``` 74 | 75 | ## 使用 76 | 77 | ### 配置 78 | 79 | #### 在yml或properties中配置 80 | 81 | [哈尔滨信息工程学院的同学点我](https://github.com/itning/cas-spring-boot-starter/tree/master/pic/config) 82 | 83 | | 属性 | 说明 | 默认 | 84 | | :-------------------------: | :----------------------------------: | :----------------: | 85 | | cas.allow-cors | 是否允许跨域 | true | 86 | | cas.debug | 调试模式 | false | 87 | | cas.client-login-path | 登陆地址(访问该地址会跳转到loginUrl) | /login | 88 | | cas.client-logout-path | 登出地址(访问该地址会跳转到登出地址) | /logout | 89 | | cas.session-attribute-name | 存储获取到的Attributes的Session Name | \_cas_attributes_ | 90 | | cas.request-connect-timeout | 请求连接超时(ms) | 15000 | 91 | | cas.request-read-timeout | 请求读超时(ms) | 5000 | 92 | | cas.local-server-url | 本地服务端地址(该项目地址) | null | 93 | | cas.login-success-url | 登陆成功后跳转的网址 | null | 94 | | cas.login-url | 登陆地址(CAS服务端地址) | null | 95 | | cas.logout-url | 登出网址(CAS服务端地址) | null | 96 | | cas.server-url | CAS服务端地址 | null | 97 | | cas.exclude | 排除过滤地址(会排除以其开头的请求) | | 98 | | cas.enabled | 是否开启 | true | 99 | 100 | **注意:默认为null的必须配置** 101 | 102 | #### 实现登陆状态回调 103 | 104 | **回调有默认实现类: [CasAutoConfigure](https://github.com/itning/cas-spring-boot-starter/blob/master/src/main/java/top/itning/cas/CasAutoConfigure.java)**,即**如果你不自己实现接口则会使用默认的实现** 105 | 106 | 各个接口的作用请看接口注释。 107 | 108 | 写两个类实现 [callback和config](https://github.com/itning/cas-spring-boot-starter/tree/master/src/main/java/top/itning/cas) 包下的接口 109 | 110 | ```java 111 | import top.itning.cas.callback.login.ILoginFailureCallBack; 112 | import top.itning.cas.callback.login.ILoginNeverCallBack; 113 | import top.itning.cas.callback.login.ILoginSuccessCallBack; 114 | import top.itning.cas.callback.option.IOptionsHttpMethodCallBack; 115 | 116 | import javax.servlet.ServletException; 117 | import javax.servlet.http.HttpServletRequest; 118 | import javax.servlet.http.HttpServletResponse; 119 | import java.io.IOException; 120 | import java.util.Map; 121 | 122 | /** 123 | * @author itning 124 | * @date 2019/6/23 10:26 125 | */ 126 | public class CallBackImpl implements ILoginFailureCallBack, ILoginNeverCallBack, ILoginSuccessCallBack, IOptionsHttpMethodCallBack { 127 | @Override 128 | public void onLoginFailure(HttpServletResponse resp, HttpServletRequest req, Exception e) throws IOException, ServletException { 129 | 130 | } 131 | 132 | @Override 133 | public void onNeverLogin(HttpServletResponse resp, HttpServletRequest req) throws IOException, ServletException { 134 | 135 | } 136 | 137 | @Override 138 | public void onLoginSuccess(HttpServletResponse resp, HttpServletRequest req, Map attributesMap) throws IOException, ServletException { 139 | 140 | } 141 | 142 | @Override 143 | public void onOptionsHttpMethodRequest(HttpServletResponse resp, HttpServletRequest req) throws IOException, ServletException { 144 | 145 | } 146 | } 147 | 148 | ``` 149 | ```java 150 | import top.itning.cas.config.IAnalysisResponseBody; 151 | import top.itning.cas.config.ICheckIsLoginConfig; 152 | import top.itning.cas.config.INeedSetMap2SessionConfig; 153 | 154 | import javax.servlet.http.HttpServletRequest; 155 | import javax.servlet.http.HttpServletResponse; 156 | import java.util.Map; 157 | 158 | /** 159 | * @author itning 160 | * @date 2019/6/23 10:27 161 | */ 162 | public class ConfigImpl implements IAnalysisResponseBody, ICheckIsLoginConfig, INeedSetMap2SessionConfig { 163 | @Override 164 | public Map analysisBody2Map(String body) { 165 | return null; 166 | } 167 | 168 | @Override 169 | public boolean isLogin(HttpServletResponse resp, HttpServletRequest req) { 170 | return false; 171 | } 172 | 173 | @Override 174 | public boolean needSetMapSession() { 175 | return false; 176 | } 177 | } 178 | 179 | ``` 180 | 181 | ## 如何 182 | 183 | 1. 如何获取CAS服务器登陆后传过来的属性? 184 | 185 | 我们将它放在session中了,你可以使用 ```HttpSession#getAttribute``` 方法来获取,参数默认为```_cas_attributes_```,当然你可以在配置中更改```cas.session-attribute-name```的值 186 | 187 | 2. 如何配置只过滤某些URL路径? 188 | 189 | 只需在**过滤器初始化之前**调用该静态方法: 190 | 191 | ```java 192 | top.itning.cas.CasAutoConfigure.setUrlPatterns(String... urlPatterns); 193 | ``` 194 | 195 | 源码: 196 | 197 | ```java 198 | /** 199 | * 设置拦截路径 200 | * 201 | * @param urlPatterns 路径 202 | */ 203 | public static void setUrlPatterns(String... urlPatterns) { 204 | up = urlPatterns; 205 | } 206 | ``` 207 | 208 | ## 流程 209 | 210 | ![流程图](https://raw.githubusercontent.com/itning/cas-spring-boot-starter/master/pic/1.png) 211 | -------------------------------------------------------------------------------- /src/main/java/top/itning/cas/CasFilter.java: -------------------------------------------------------------------------------- 1 | package top.itning.cas; 2 | 3 | import org.slf4j.Logger; 4 | import org.slf4j.LoggerFactory; 5 | import org.springframework.context.ApplicationContext; 6 | import org.springframework.http.HttpMethod; 7 | import org.springframework.http.ResponseEntity; 8 | import org.springframework.http.client.SimpleClientHttpRequestFactory; 9 | import org.springframework.web.client.RestTemplate; 10 | import org.springframework.web.context.support.WebApplicationContextUtils; 11 | import top.itning.cas.callback.option.IOptionsHttpMethodCallBack; 12 | import top.itning.cas.callback.login.ILoginFailureCallBack; 13 | import top.itning.cas.callback.login.ILoginNeverCallBack; 14 | import top.itning.cas.callback.login.ILoginSuccessCallBack; 15 | import top.itning.cas.config.IAnalysisResponseBody; 16 | import top.itning.cas.config.ICheckIsLoginConfig; 17 | import top.itning.cas.config.INeedSetMap2SessionConfig; 18 | 19 | import javax.servlet.*; 20 | import javax.servlet.http.HttpServletRequest; 21 | import javax.servlet.http.HttpServletResponse; 22 | import javax.servlet.http.HttpSession; 23 | import java.io.IOException; 24 | import java.io.UnsupportedEncodingException; 25 | import java.net.URLEncoder; 26 | import java.util.Map; 27 | import java.util.Optional; 28 | 29 | 30 | /** 31 | * Cas Filter 32 | * 33 | * @author itning 34 | */ 35 | public class CasFilter implements Filter { 36 | private static final Logger logger = LoggerFactory.getLogger(CasFilter.class); 37 | private RestTemplate restTemplate; 38 | private CasProperties casProperties; 39 | private ILoginFailureCallBack loginFailureCallBack; 40 | private ILoginNeverCallBack loginNeverCallBack; 41 | private ILoginSuccessCallBack loginSuccessCallBack; 42 | private IOptionsHttpMethodCallBack optionsHttpMethodCallBack; 43 | private IAnalysisResponseBody analysisResponseBody; 44 | private ICheckIsLoginConfig checkIsLoginConfig; 45 | private INeedSetMap2SessionConfig needSetMap2SessionConfig; 46 | 47 | @Override 48 | public void init(FilterConfig filterConfig) { 49 | logger.info("Cas filter init..."); 50 | ApplicationContext ctx = WebApplicationContextUtils 51 | .getRequiredWebApplicationContext(filterConfig.getServletContext()); 52 | casProperties = ctx.getBean(CasProperties.class); 53 | loginFailureCallBack = ctx.getBean(ILoginFailureCallBack.class); 54 | loginNeverCallBack = ctx.getBean(ILoginNeverCallBack.class); 55 | loginSuccessCallBack = ctx.getBean(ILoginSuccessCallBack.class); 56 | optionsHttpMethodCallBack = ctx.getBean(IOptionsHttpMethodCallBack.class); 57 | analysisResponseBody = ctx.getBean(IAnalysisResponseBody.class); 58 | checkIsLoginConfig = ctx.getBean(ICheckIsLoginConfig.class); 59 | needSetMap2SessionConfig = ctx.getBean(INeedSetMap2SessionConfig.class); 60 | logger.info("Use login path: {}", casProperties.getClientLoginPath()); 61 | logger.info("Use logout path: {}", casProperties.getClientLogoutPath()); 62 | logger.info("Use ILoginFailureCallBack Implements: {}", loginFailureCallBack.getClass().getName()); 63 | logger.info("Use ILoginNeverCallBack Implements: {}", loginNeverCallBack.getClass().getName()); 64 | logger.info("Use ILoginSuccessCallBack Implements: {}", loginSuccessCallBack.getClass().getName()); 65 | logger.info("Use IOptionsHttpMethodCallBack Implements: {}", optionsHttpMethodCallBack.getClass().getName()); 66 | logger.info("Use IAnalysisResponseBody Implements: {}", analysisResponseBody.getClass().getName()); 67 | logger.info("Use ICheckIsLoginConfig Implements: {}", checkIsLoginConfig.getClass().getName()); 68 | logger.info("Use INeedSetMap2SessionConfig Implements: {}", needSetMap2SessionConfig.getClass().getName()); 69 | debug(casProperties.toString()); 70 | 71 | SimpleClientHttpRequestFactory factory = new SimpleClientHttpRequestFactory(); 72 | //ms 73 | factory.setReadTimeout(casProperties.getRequestReadTimeout()); 74 | //ms 75 | factory.setConnectTimeout(casProperties.getRequestConnectTimeout()); 76 | restTemplate = new RestTemplate(factory); 77 | } 78 | 79 | @Override 80 | public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException { 81 | HttpServletResponse resp = (HttpServletResponse) response; 82 | HttpServletRequest req = (HttpServletRequest) request; 83 | debug("Get Servlet Path: " + req.getServletPath()); 84 | if (isExcludePath(req, resp, chain)) { 85 | return; 86 | } 87 | if (casProperties.isAllowCors() && HttpMethod.OPTIONS.matches(req.getMethod())) { 88 | optionsHttpMethodCallBack.onOptionsHttpMethodRequest(resp, req); 89 | return; 90 | } 91 | //登陆登出 92 | if (HttpMethod.GET.matches(req.getMethod())) { 93 | //login 94 | if (casProperties.getClientLoginPath().equals(req.getServletPath())) { 95 | //重定向到登陆地址 96 | doRedirectLoginPath(resp); 97 | return; 98 | } 99 | //logout 100 | if (casProperties.getClientLogoutPath().equals(req.getServletPath())) { 101 | removeCurrentLoginUserSessionAttribute(req.getSession()); 102 | //重定向到登出地址 103 | doRedirectLogoutPath(resp); 104 | return; 105 | } 106 | } 107 | //CAS Start 108 | String ticket = req.getParameter("ticket"); 109 | if (ticket != null) { 110 | doLoginWithTicket(resp, req, ticket); 111 | return; 112 | } 113 | if (checkIsLoginConfig.isLogin(resp, req)) { 114 | chain.doFilter(request, response); 115 | return; 116 | } 117 | loginNeverCallBack.onNeverLogin(resp, req); 118 | } 119 | 120 | @Override 121 | public void destroy() { 122 | 123 | } 124 | 125 | private void doRedirectLoginPath(HttpServletResponse resp) throws IOException { 126 | String location = getRedirectLocation(); 127 | debug("Match login path..."); 128 | debug("Now send redirect to " + location); 129 | resp.sendRedirect(location); 130 | } 131 | 132 | private void doRedirectLogoutPath(HttpServletResponse resp) throws IOException { 133 | String location = casProperties.getLogoutUrl().toString(); 134 | debug("Match logout path..."); 135 | debug("Now send redirect to " + location); 136 | resp.sendRedirect(location); 137 | } 138 | 139 | private void doLoginWithTicket(HttpServletResponse resp, HttpServletRequest req, String ticket) throws IOException, ServletException { 140 | debug("Get Ticket: " + ticket); 141 | try { 142 | Optional bodyOptional = sendRequestAndGetResponseBody(ticket); 143 | if (bodyOptional.isPresent()) { 144 | String body = bodyOptional.get(); 145 | debug("Get response body: "); 146 | debug(body); 147 | Map map = analysisResponseBody.analysisBody2Map(body); 148 | //解析成功,用户成功登陆 149 | setMap2Session(req.getSession(), map); 150 | loginSuccessCallBack.onLoginSuccess(resp, req, map); 151 | } else { 152 | logger.error("AUTHENTICATION failed : Body is Null"); 153 | loginFailureCallBack.onLoginFailure(resp, req, new RuntimeException("AUTHENTICATION failed : Body is Null")); 154 | } 155 | } catch (Exception e) { 156 | debug(e.getMessage()); 157 | loginFailureCallBack.onLoginFailure(resp, req, e); 158 | } 159 | } 160 | 161 | private String getRedirectLocation() throws UnsupportedEncodingException { 162 | return casProperties.getLoginUrl() + "?service=" + URLEncoder.encode(casProperties.getLocalServerUrl().toString(), "UTF-8"); 163 | } 164 | 165 | 166 | private void setMap2Session(HttpSession session, Map map) { 167 | if (needSetMap2SessionConfig.needSetMapSession()) { 168 | session.setAttribute(casProperties.getSessionAttributeName(), map); 169 | debug("Set attribute " + casProperties.getSessionAttributeName() + " success"); 170 | } 171 | } 172 | 173 | private Optional sendRequestAndGetResponseBody(String ticket) { 174 | debug("Send request to " + casProperties.getServerUrl() + "/serviceValidate?ticket=" + ticket + "&service=" + casProperties.getLocalServerUrl()); 175 | ResponseEntity responseEntity = restTemplate.getForEntity(casProperties.getServerUrl() + "/serviceValidate?ticket={ticket}&service={local_server_url}", String.class, ticket, casProperties.getLocalServerUrl()); 176 | debug("Get response status code: " + responseEntity.getStatusCode().value()); 177 | return Optional.ofNullable(responseEntity.getBody()); 178 | } 179 | 180 | private void removeCurrentLoginUserSessionAttribute(HttpSession session) { 181 | if (needSetMap2SessionConfig.needSetMapSession()) { 182 | session.removeAttribute(casProperties.getSessionAttributeName()); 183 | session.invalidate(); 184 | } 185 | } 186 | 187 | private boolean isExcludePath(HttpServletRequest req, HttpServletResponse resp, FilterChain chain) throws IOException, ServletException { 188 | if (casProperties.getExclude() != null) { 189 | for (String path : casProperties.getExclude()) { 190 | if (req.getServletPath().startsWith(path)) { 191 | chain.doFilter(req, resp); 192 | return true; 193 | } 194 | } 195 | } 196 | return false; 197 | } 198 | 199 | /** 200 | * DEBUG 日志输出 201 | * 202 | * @param msg 日志消息 203 | */ 204 | private void debug(String msg) { 205 | if (casProperties.isDebug()) { 206 | logger.debug(msg); 207 | } 208 | } 209 | } 210 | -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- 1 | Apache License 2 | Version 2.0, January 2004 3 | http://www.apache.org/licenses/ 4 | 5 | TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION 6 | 7 | 1. Definitions. 8 | 9 | "License" shall mean the terms and conditions for use, reproduction, 10 | and distribution as defined by Sections 1 through 9 of this document. 11 | 12 | "Licensor" shall mean the copyright owner or entity authorized by 13 | the copyright owner that is granting the License. 14 | 15 | "Legal Entity" shall mean the union of the acting entity and all 16 | other entities that control, are controlled by, or are under common 17 | control with that entity. For the purposes of this definition, 18 | "control" means (i) the power, direct or indirect, to cause the 19 | direction or management of such entity, whether by contract or 20 | otherwise, or (ii) ownership of fifty percent (50%) or more of the 21 | outstanding shares, or (iii) beneficial ownership of such entity. 22 | 23 | "You" (or "Your") shall mean an individual or Legal Entity 24 | exercising permissions granted by this License. 25 | 26 | "Source" form shall mean the preferred form for making modifications, 27 | including but not limited to software source code, documentation 28 | source, and configuration files. 29 | 30 | "Object" form shall mean any form resulting from mechanical 31 | transformation or translation of a Source form, including but 32 | not limited to compiled object code, generated documentation, 33 | and conversions to other media types. 34 | 35 | "Work" shall mean the work of authorship, whether in Source or 36 | Object form, made available under the License, as indicated by a 37 | copyright notice that is included in or attached to the work 38 | (an example is provided in the Appendix below). 39 | 40 | "Derivative Works" shall mean any work, whether in Source or Object 41 | form, that is based on (or derived from) the Work and for which the 42 | editorial revisions, annotations, elaborations, or other modifications 43 | represent, as a whole, an original work of authorship. For the purposes 44 | of this License, Derivative Works shall not include works that remain 45 | separable from, or merely link (or bind by name) to the interfaces of, 46 | the Work and Derivative Works thereof. 47 | 48 | "Contribution" shall mean any work of authorship, including 49 | the original version of the Work and any modifications or additions 50 | to that Work or Derivative Works thereof, that is intentionally 51 | submitted to Licensor for inclusion in the Work by the copyright owner 52 | or by an individual or Legal Entity authorized to submit on behalf of 53 | the copyright owner. For the purposes of this definition, "submitted" 54 | means any form of electronic, verbal, or written communication sent 55 | to the Licensor or its representatives, including but not limited to 56 | communication on electronic mailing lists, source code control systems, 57 | and issue tracking systems that are managed by, or on behalf of, the 58 | Licensor for the purpose of discussing and improving the Work, but 59 | excluding communication that is conspicuously marked or otherwise 60 | designated in writing by the copyright owner as "Not a Contribution." 61 | 62 | "Contributor" shall mean Licensor and any individual or Legal Entity 63 | on behalf of whom a Contribution has been received by Licensor and 64 | subsequently incorporated within the Work. 65 | 66 | 2. Grant of Copyright License. Subject to the terms and conditions of 67 | this License, each Contributor hereby grants to You a perpetual, 68 | worldwide, non-exclusive, no-charge, royalty-free, irrevocable 69 | copyright license to reproduce, prepare Derivative Works of, 70 | publicly display, publicly perform, sublicense, and distribute the 71 | Work and such Derivative Works in Source or Object form. 72 | 73 | 3. Grant of Patent License. Subject to the terms and conditions of 74 | this License, each Contributor hereby grants to You a perpetual, 75 | worldwide, non-exclusive, no-charge, royalty-free, irrevocable 76 | (except as stated in this section) patent license to make, have made, 77 | use, offer to sell, sell, import, and otherwise transfer the Work, 78 | where such license applies only to those patent claims licensable 79 | by such Contributor that are necessarily infringed by their 80 | Contribution(s) alone or by combination of their Contribution(s) 81 | with the Work to which such Contribution(s) was submitted. If You 82 | institute patent litigation against any entity (including a 83 | cross-claim or counterclaim in a lawsuit) alleging that the Work 84 | or a Contribution incorporated within the Work constitutes direct 85 | or contributory patent infringement, then any patent licenses 86 | granted to You under this License for that Work shall terminate 87 | as of the date such litigation is filed. 88 | 89 | 4. Redistribution. You may reproduce and distribute copies of the 90 | Work or Derivative Works thereof in any medium, with or without 91 | modifications, and in Source or Object form, provided that You 92 | meet the following conditions: 93 | 94 | (a) You must give any other recipients of the Work or 95 | Derivative Works a copy of this License; and 96 | 97 | (b) You must cause any modified files to carry prominent notices 98 | stating that You changed the files; and 99 | 100 | (c) You must retain, in the Source form of any Derivative Works 101 | that You distribute, all copyright, patent, trademark, and 102 | attribution notices from the Source form of the Work, 103 | excluding those notices that do not pertain to any part of 104 | the Derivative Works; and 105 | 106 | (d) If the Work includes a "NOTICE" text file as part of its 107 | distribution, then any Derivative Works that You distribute must 108 | include a readable copy of the attribution notices contained 109 | within such NOTICE file, excluding those notices that do not 110 | pertain to any part of the Derivative Works, in at least one 111 | of the following places: within a NOTICE text file distributed 112 | as part of the Derivative Works; within the Source form or 113 | documentation, if provided along with the Derivative Works; or, 114 | within a display generated by the Derivative Works, if and 115 | wherever such third-party notices normally appear. The contents 116 | of the NOTICE file are for informational purposes only and 117 | do not modify the License. You may add Your own attribution 118 | notices within Derivative Works that You distribute, alongside 119 | or as an addendum to the NOTICE text from the Work, provided 120 | that such additional attribution notices cannot be construed 121 | as modifying the License. 122 | 123 | You may add Your own copyright statement to Your modifications and 124 | may provide additional or different license terms and conditions 125 | for use, reproduction, or distribution of Your modifications, or 126 | for any such Derivative Works as a whole, provided Your use, 127 | reproduction, and distribution of the Work otherwise complies with 128 | the conditions stated in this License. 129 | 130 | 5. Submission of Contributions. Unless You explicitly state otherwise, 131 | any Contribution intentionally submitted for inclusion in the Work 132 | by You to the Licensor shall be under the terms and conditions of 133 | this License, without any additional terms or conditions. 134 | Notwithstanding the above, nothing herein shall supersede or modify 135 | the terms of any separate license agreement you may have executed 136 | with Licensor regarding such Contributions. 137 | 138 | 6. Trademarks. This License does not grant permission to use the trade 139 | names, trademarks, service marks, or product names of the Licensor, 140 | except as required for reasonable and customary use in describing the 141 | origin of the Work and reproducing the content of the NOTICE file. 142 | 143 | 7. Disclaimer of Warranty. Unless required by applicable law or 144 | agreed to in writing, Licensor provides the Work (and each 145 | Contributor provides its Contributions) on an "AS IS" BASIS, 146 | WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or 147 | implied, including, without limitation, any warranties or conditions 148 | of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A 149 | PARTICULAR PURPOSE. You are solely responsible for determining the 150 | appropriateness of using or redistributing the Work and assume any 151 | risks associated with Your exercise of permissions under this License. 152 | 153 | 8. Limitation of Liability. In no event and under no legal theory, 154 | whether in tort (including negligence), contract, or otherwise, 155 | unless required by applicable law (such as deliberate and grossly 156 | negligent acts) or agreed to in writing, shall any Contributor be 157 | liable to You for damages, including any direct, indirect, special, 158 | incidental, or consequential damages of any character arising as a 159 | result of this License or out of the use or inability to use the 160 | Work (including but not limited to damages for loss of goodwill, 161 | work stoppage, computer failure or malfunction, or any and all 162 | other commercial damages or losses), even if such Contributor 163 | has been advised of the possibility of such damages. 164 | 165 | 9. Accepting Warranty or Additional Liability. While redistributing 166 | the Work or Derivative Works thereof, You may choose to offer, 167 | and charge a fee for, acceptance of support, warranty, indemnity, 168 | or other liability obligations and/or rights consistent with this 169 | License. However, in accepting such obligations, You may act only 170 | on Your own behalf and on Your sole responsibility, not on behalf 171 | of any other Contributor, and only if You agree to indemnify, 172 | defend, and hold each Contributor harmless for any liability 173 | incurred by, or claims asserted against, such Contributor by reason 174 | of your accepting any such warranty or additional liability. 175 | 176 | END OF TERMS AND CONDITIONS 177 | 178 | APPENDIX: How to apply the Apache License to your work. 179 | 180 | To apply the Apache License to your work, attach the following 181 | boilerplate notice, with the fields enclosed by brackets "{}" 182 | replaced with your own identifying information. (Don't include 183 | the brackets!) The text should be enclosed in the appropriate 184 | comment syntax for the file format. We also recommend that a 185 | file or class name and description of purpose be included on the 186 | same "printed page" as the copyright notice for easier 187 | identification within third-party archives. 188 | 189 | Copyright 2019 itning 190 | 191 | Licensed under the Apache License, Version 2.0 (the "License"); 192 | you may not use this file except in compliance with the License. 193 | You may obtain a copy of the License at 194 | 195 | http://www.apache.org/licenses/LICENSE-2.0 196 | 197 | Unless required by applicable law or agreed to in writing, software 198 | distributed under the License is distributed on an "AS IS" BASIS, 199 | WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 200 | See the License for the specific language governing permissions and 201 | limitations under the License. 202 | --------------------------------------------------------------------------------