自定义Caslogout
<?xml version="1.0" encoding="UTF-8"?>
<beans
xmlns="http://www.springframework.org/schema/beans"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xmlns:context="http://www.springframework.org/schema/context"
xmlns:p="http://www.springframework.org/schema/p"
xsi:schemaLocation="http://www.springframework.org/schema/beans
http://www.springframework.org/schema/beans/spring-beans-2.5.xsd
http://www.springframework.org/schema/context
http://www.springframework.org/schema/context/spring-context-2.5.xsd">
<context:annotation-config/>
<bean id="root" class="org.restlet.ext.spring.SpringRouter">
<property name="attachments">
<map>
<entry key="/tickets">
<bean class="org.restlet.ext.spring.SpringFinder">
<lookup-method name="createResource" bean="ticketResource" />
</bean>
</entry>
<entry key="/tickets/{ticketGrantingTicketId}">
<bean class="org.restlet.ext.spring.SpringFinder">
<lookup-method name="createResource" bean="ticketGrantingTicketResource" />
</bean>
</entry>
<entry key="/tickets/remove/{ticketGrantingTicketId}">
<bean class="org.restlet.ext.spring.SpringFinder">
<lookup-method name="createResource" bean="RemoveTicketGranting" />
</bean>
</entry>
</map>
</property>
</bean>
<bean id="ticketResource" class="org.jasig.cas.integration.restlet.TicketResource" scope="prototype" />
<bean id="ticketGrantingTicketResource" class="org.jasig.cas.integration.restlet.TicketGrantingTicketResource" scope="prototype"
p:httpClient-ref="httpClient"/>
<bean id="RemoveTicketGranting" class="org.jasig.cas.integration.restlet.RemoveTicketGranting" scope="prototype"
p:httpClient-ref="httpClient"/>
</beans>
package org.jasig.cas.integration.restlet;
import javax.servlet.http.HttpServletResponse;
import javax.validation.constraints.NotNull;
import org.apache.commons.logging.Log;
import org.apache.commons.logging.LogFactory;
import org.jasig.cas.CentralAuthenticationService;
import org.jasig.cas.authentication.principal.SimpleWebApplicationServiceImpl;
import org.jasig.cas.ticket.InvalidTicketException;
import org.jasig.cas.util.HttpClient;
import org.jasig.cas.web.support.CookieRetrievingCookieGenerator;
import org.restlet.Context;
import org.restlet.data.Form;
import org.restlet.data.MediaType;
import org.restlet.data.Request;
import org.restlet.data.Response;
import org.restlet.data.Status;
import org.restlet.resource.Representation;
import org.restlet.resource.Resource;
import org.restlet.resource.ResourceException;
import org.restlet.resource.Variant;
import org.springframework.beans.factory.annotation.Autowired;
public class RemoveTicketGranting extends Resource{
private final static Log log = LogFactory.getLog(RemoveTicketGranting.class);
@Autowired
private CentralAuthenticationService centralAuthenticationService;
/** CookieGenerator for TGT Cookie */
@Autowired
private CookieRetrievingCookieGenerator ticketGrantingTicketCookieGenerator;
/** CookieGenerator for Warn Cookie */
@Autowired
private CookieRetrievingCookieGenerator warnCookieGenerator;
private String ticketGrantingTicketId;
@Autowired
@NotNull
private HttpClient httpClient;
public void init(final Context context, final Request request, final Response response) {
super.init(context, request, response);
this.ticketGrantingTicketId = (String) request.getAttributes().get("ticketGrantingTicketId");
// this.centralAuthenticationService
// .destroyTicketGrantingTicket(ticketGrantingTicketId);
//
// this.ticketGrantingTicketCookieGenerator.removeCookie((HttpServletResponse) response);
// this.warnCookieGenerator.removeCookie((HttpServletResponse) response);
this.getVariants().add(new Variant(MediaType.APPLICATION_WWW_FORM));
}
public boolean allowDelete() {
return true;
}
public boolean allowPost() {
return true;
}
public void setHttpClient(final HttpClient httpClient) {
this.httpClient = httpClient;
}
public void removeRepresentations() throws ResourceException {
this.centralAuthenticationService.destroyTicketGrantingTicket(this.ticketGrantingTicketId);
getResponse().setStatus(Status.SUCCESS_OK);
}
public void acceptRepresentation(final Representation entity)
throws ResourceException {
this.centralAuthenticationService.destroyTicketGrantingTicket(this.ticketGrantingTicketId);
getResponse().setStatus(Status.SUCCESS_OK);
getResponse().setEntity("REMOVE_OK", MediaType.TEXT_PLAIN);
}
}
package org.jasig.cas.util;
import org.jasig.cas.Exception.LDCAuthenticationException;
import org.jasig.cas.authentication.handler.support.AbstractUsernamePasswordAuthenticationHandler;
import org.jasig.cas.authentication.principal.UsernamePasswordCredentials;
import org.springframework.util.StringUtils;
public class LDCUserAuthenticationHandler extends AbstractUsernamePasswordAuthenticationHandler{
@Override
protected boolean authenticateUsernamePasswordInternal(UsernamePasswordCredentials credentials)
throws LDCAuthenticationException {
final String username = credentials.getUsername();
final String password = credentials.getPassword();
if (StringUtils.hasText(username) && StringUtils.hasText(password)
&& username.equals(getPasswordEncoder().encode(password))) {
log
.debug("User [" + username
+ "] was successfully authenticated.");
return true;
}
log.debug("User [" + username + "] failed authentication");
return false;
}
}
package com.wolf.eureka.client;
import java.io.BufferedReader;
import java.io.IOException;
import java.io.InputStream;
import java.io.InputStreamReader;
import java.io.OutputStream;
import java.io.UnsupportedEncodingException;
import java.net.HttpURLConnection;
import java.net.URL;
import java.net.URLEncoder;
import java.security.KeyManagementException;
import java.security.NoSuchAlgorithmException;
import java.security.NoSuchProviderException;
import java.security.cert.CertificateException;
import java.security.cert.X509Certificate;
import java.util.Map;
import java.util.Map.Entry;
import javax.net.ssl.HostnameVerifier;
import javax.net.ssl.HttpsURLConnection;
import javax.net.ssl.SSLContext;
import javax.net.ssl.SSLSession;
import javax.net.ssl.SSLSocketFactory;
import javax.net.ssl.TrustManager;
import javax.net.ssl.X509TrustManager;
/**
* https 请求 微信为https的请求
*
*/
public class HttpKit {
private static final String DEFAULT_CHARSET = "UTF-8"; // 默认字符集
private static final String _GET = "GET"; // GET
private static final String _POST = "POST";// POST
private static final String _DELETE = "Delete ";// DELETE Delete
/**
* 初始化http请求参数
*
* @param url
* @param method
* @param headers
* @return
* @throws IOException
*/
private static HttpURLConnection initHttp(String url, String method, Map<String, String> headers)
throws IOException {
URL _url = new URL(url);
HttpURLConnection http = (HttpURLConnection) _url.openConnection();
// 连接超时
http.setConnectTimeout(25000);
// 读取超时 --服务器响应比较慢,增大时间
http.setReadTimeout(25000);
http.setRequestMethod(method);
http.setRequestProperty("Content-Type", "application/x-www-form-urlencoded");
http.setRequestProperty("User-Agent",
"Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/33.0.1750.146 Safari/537.36");
if (null != headers && !headers.isEmpty()) {
for (Entry<String, String> entry : headers.entrySet()) {
http.setRequestProperty(entry.getKey(), entry.getValue());
}
}
http.setDoOutput(true);
http.setDoInput(true);
http.connect();
return http;
}
/**
* 初始化http请求参数
*
* @param url
* @param method
* @return
* @throws IOException
* @throws NoSuchAlgorithmException
* @throws NoSuchProviderException
* @throws KeyManagementException
*/
private static HttpsURLConnection initHttps(String url, String method, Map<String, String> headers)
throws IOException, NoSuchAlgorithmException, NoSuchProviderException, KeyManagementException {
TrustManager[] tm = { new MyX509TrustManager() };
SSLContext sslContext = SSLContext.getInstance("SSL", "SunJSSE");
sslContext.init(null, tm, new java.security.SecureRandom());
// 从上述SSLContext对象中得到SSLSocketFactory对象
SSLSocketFactory ssf = sslContext.getSocketFactory();
URL _url = new URL(url);
HttpsURLConnection http = (HttpsURLConnection) _url.openConnection();
// 设置域名校验
http.setHostnameVerifier(new HttpKit().new TrustAnyHostnameVerifier());
// 连接超时
http.setConnectTimeout(25000);
// 读取超时 --服务器响应比较慢,增大时间
http.setReadTimeout(25000);
http.setDoOutput(true);
http.setRequestMethod(method);
http.setRequestProperty("Content-Type", "application/x-www-form-urlencoded");
http.setRequestProperty("User-Agent",
"Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/33.0.1750.146 Safari/537.36");
if (null != headers && !headers.isEmpty()) {
for (Entry<String, String> entry : headers.entrySet()) {
http.setRequestProperty(entry.getKey(), entry.getValue());
}
}
http.setSSLSocketFactory(ssf);
http.setDoOutput(true);
http.setDoInput(true);
http.connect();
return http;
}
/**
*
* @description 功能描述: get 请求
* @return 返回类型:
*/
public static String get(String url, Map<String, String> params, Map<String, String> headers) {
StringBuffer bufferRes = null;
try {
HttpURLConnection http = null;
if (isHttps(url)) {
http = initHttps(initParams(url, params), _GET, headers);
} else {
http = initHttp(initParams(url, params), _GET, headers);
}
InputStream in = http.getInputStream();
BufferedReader read = new BufferedReader(new InputStreamReader(in, DEFAULT_CHARSET));
String valueString = null;
bufferRes = new StringBuffer();
while ((valueString = read.readLine()) != null) {
bufferRes.append(valueString);
}
read.close();
in.close();
if (http != null) {
http.disconnect();// 关闭连接
}
return bufferRes.toString();
} catch (Exception e) {
e.printStackTrace();
return null;
}
}
/**
*
* @description 功能描述: get 请求
* @return 返回类型:
*/
public static String get(String url) {
return get(url, null);
}
/**
*
* @description 功能描述: get 请求
* @return 返回类型:
* @throws UnsupportedEncodingException
*/
public static String get(String url, Map<String, String> params) {
return get(url, params, null);
}
/**
*
* @description 功能描述: POST 请求
* @return 返回类型:
*/
public static String post(String url, String params, Map<String, String> headers) {
StringBuffer bufferRes = null;
try {
HttpURLConnection http = null;
if (isHttps(url)) {
http = initHttps(url, _POST, headers);
} else {
http = initHttp(url, _POST, headers);
}
OutputStream out = http.getOutputStream();
out.write(params.getBytes(DEFAULT_CHARSET));
out.flush();
out.close();
String tgt = http.getHeaderField("location");
InputStream in = http.getInputStream();
BufferedReader read = new BufferedReader(new InputStreamReader(in, DEFAULT_CHARSET));
String valueString = null;
bufferRes = new StringBuffer();
while ((valueString = read.readLine()) != null) {
bufferRes.append(valueString);
}
read.close();
in.close();
if (http != null) {
http.disconnect();// 关闭连接
}
if(StrUtils.isEmpty(tgt))
{
return bufferRes.toString();
}else
{
return tgt;
}
//
//
} catch (Exception e) {
e.printStackTrace();
return null;
}
}
private static String prepareParam(Map<String,Object> paramMap){
StringBuffer sb = new StringBuffer();
if(null==paramMap||paramMap.isEmpty()){
return "" ;
}else{
for(String key: paramMap.keySet()){
String value = (String)paramMap.get(key);
if(sb.length()<1){
sb.append(key).append("=").append(value);
}else{
sb.append("&").append(key).append("=").append(value);
}
}
return sb.toString();
}
}
/**
*
* @description 功能描述: POST 请求
* @return 返回类型:
*/
public static void doDelete(String urlStr,Map<String,Object> paramMap) throws Exception{
String paramStr = prepareParam(paramMap);
if(paramStr == null || paramStr.trim().length()<1){
}else{
urlStr +="?"+paramStr;
}
System.out.println(urlStr);
URL url = new URL(urlStr);
HttpURLConnection conn = (HttpURLConnection)url.openConnection();
conn.setDoOutput(true);
conn.setRequestMethod(_DELETE);
//屏蔽掉的代码是错误的,java.net.ProtocolException: HTTP method DELETE doesn't support output
/* OutputStream os = conn.getOutputStream();
os.write(paramStr.toString().getBytes("utf-8"));
os.close(); */
if(conn.getResponseCode() ==200){
System.out.println("成功");
}else{
System.out.println(conn.getResponseCode());
}
}
/**
* post map 请求
*
* @param url
* @param params
* @return
* @throws UnsupportedEncodingException
*/
public static String post(String url, Map<String, String> params) throws UnsupportedEncodingException {
return post(url, map2Url(params), null);
}
/**
* post map 请求,headers请求头
*
* @param url
* @param params
* @return
* @throws UnsupportedEncodingException
*/
public static String post(String url, Map<String, String> params, Map<String, String> headers)
throws UnsupportedEncodingException {
return post(url, map2Url(params), headers);
}
/**
*
* @description 功能描述: 构造请求参数
* @return 返回类型:
* @throws UnsupportedEncodingException
*/
public static String initParams(String url, Map<String, String> params) throws UnsupportedEncodingException {
if (null == params || params.isEmpty()) {
return url;
}
StringBuilder sb = new StringBuilder(url);
if (url.indexOf("?") == -1) {
sb.append("?");
}
sb.append(map2Url(params));
return sb.toString();
}
/**
* map构造url
*
* @description 功能描述:
* @return 返回类型:
* @throws UnsupportedEncodingException
*/
public static String map2Url(Map<String, String> paramToMap) throws UnsupportedEncodingException {
if (null == paramToMap || paramToMap.isEmpty()) {
return null;
}
StringBuffer url = new StringBuffer();
boolean isfist = true;
for (Entry<String, String> entry : paramToMap.entrySet()) {
if (isfist) {
isfist = false;
} else {
url.append("&");
}
url.append(entry.getKey()).append("=");
String value = entry.getValue();
if (StrUtils.isNotEmpty(value)) {
url.append(URLEncoder.encode(value, DEFAULT_CHARSET));
}
}
return url.toString();
}
/**
* 检测是否https
*
* @param url
*/
private static boolean isHttps(String url) {
return url.startsWith("https");
}
/**
* https 域名校验
*
* @param url
* @param params
* @return
*/
public class TrustAnyHostnameVerifier implements HostnameVerifier {
public boolean verify(String hostname, SSLSession session) {
return true;// 直接返回true
}
}
}
// 证书管理
class MyX509TrustManager implements X509TrustManager {
public X509Certificate[] getAcceptedIssuers() {
return null;
}
public void checkClientTrusted(X509Certificate[] chain, String authType) throws CertificateException {
}
public void checkServerTrusted(X509Certificate[] chain, String authType) throws CertificateException {
}
}
package com.wolf.eureka.client;
import java.io.UnsupportedEncodingException;
import java.util.HashMap;
import java.util.Map;
public class Test {
public static void main(String[] args) throws UnsupportedEncodingException {
String url = "http://localhost:8080/cas/v1/tickets";
Map<String, String> params = new HashMap<String, String>();
params.put("username", "1");
params.put("password", "1");
params.put("service", "http://www.google.com");
//获取TGT
String resoult = HttpKit.post(url, params);
System.out.println(resoult);
String tgt= resoult.substring(resoult.lastIndexOf("/") + 1);
System.out.println("Tgt is : " + tgt);
String urlST = url+"/"+tgt;
params.clear();
params.put("service", "http://www.google.com");
resoult = HttpKit.post(urlST,params);
//获取 ST
System.out.println("st is : " + resoult);
try {
resoult = HttpKit.post(url+"/remove/"+tgt,params);
} catch (Exception e) {
// TODO Auto-generated catch block
e.printStackTrace();
}
System.out.println("remove : " + resoult);
}
}
