Changes for page CAS Java klient

Last modified by Petr Abrahamczik on 16.04.2024 10:22

From 6.1 to 5.1 From 13.2 to 13.1

From version 13.1

edited by Petr Abrahamczik
on 07.02.2019 13:43

Change comment: There is no comment for this version

To version 6.1

edited by Petr Abrahamczik
on 07.02.2019 10:50

Change comment: There is no comment for this version

Raw
Rendered

Summary

Page properties (1 modified, 0 added, 0 removed)

Details

Page properties

Content

@@ -1,177 +1,104 @@
--V ukázkovém příkladu je popsán základní způsob konfigurace webové aplikace v Javě pomocí [[Java Apereo CAS Client>>https://github.com/apereo/java-cas-client]]. Aplikace je schopna získat přihlášeného uživatele pomocí CAS v3 protokolu.
++V ukázkovém příkladu je popsán způsob konfigurace webové aplikace v Javě pomocí [[Java Apereo CAS Client>>https://github.com/apereo/java-cas-client]].
 . Do aplikace je potřeba přidat knihovny klienta https://mvnrepository.com/artifact/org.jasig.cas.client/cas-client-core buď přímo a nebo pomocí nějakého buildovacího nástroje např. Maven.(((
--{{code language="xml"}}
++{{code}}
  <dependency>
--  <groupId>org.jasig.cas.client</groupId>
--  <artifactId>cas-client-core</artifactId>
--  <version>3.5.1</version>
++    <groupId>org.jasig.cas.client</groupId>
++    <artifactId>cas-client-core</artifactId>
++    <version>3.5.1</version>
  </dependency>
  {{/code}}
  )))
--1. Nakonfigurovat ##web.xml##. V uvedené konfiguraci je nutné nahradit adresu klienta https://klient.vsb.cz s URL našeho serveru. V mapování filtru ##CAS Authentication Filter## je možné uvést místo ##/*## kontext do chráněné zóny aplikace např.(((
--/private/*
--
--{{code language="xml"}}
--<filter>
--  <filter-name>CAS Single Sign Out Filter</filter-name>
--  <filter-class>org.jasig.cas.client.session.SingleSignOutFilter</filter-class>
--  <init-param>
--    <param-name>casServerUrlPrefix</param-name>
--    <param-value>https://www.sso.vsb.cz</param-value>
--  </init-param>
--</filter>
--
--<filter>
--  <filter-name>CAS Authentication Filter</filter-name>
--  <filter-class>org.jasig.cas.client.authentication.AuthenticationFilter</filter-class>
--  <init-param>
--    <param-name>casServerUrlPrefix</param-name>
--    <param-value>https://www.sso.vsb.cz</param-value>
--  </init-param>
--  <init-param>
--    <param-name>serverName</param-name>
--    <param-value>https://klient.vsb.cz</param-value>
--  </init-param>
--</filter>
++1. Nakonfigurovat web.xml. V uvedené konfiguraci je nutné nahradit adresu klienta https://klient.vsb.cz s URL našeho serveru.(((
++{{code}}
++	<filter>
++   		<filter-name>CAS Single Sign Out Filter</filter-name>
++   		<filter-class>org.jasig.cas.client.session.SingleSignOutFilter</filter-class>
++		<init-param>
++			<param-name>casServerUrlPrefix</param-name>
++			<param-value>https://www.sso.vsb.cz</param-value>
++		</init-param>
++    </filter>
++
++    <filter>
++        <filter-name>CAS Authentication Filter</filter-name>
++        <filter-class>org.jasig.cas.client.authentication.AuthenticationFilter</filter-class>
++        <init-param>
++			<param-name>casServerUrlPrefix</param-name>
++			<param-value>https://www.sso.vsb.cz</param-value>
++        </init-param>
++        <init-param>
++            <param-name>serverName</param-name>
++            <param-value>https://klient.vsb.cz</param-value>
++        </init-param>
++    </filter>
--<filter>
--  <filter-name>CAS Validation Filter</filter-name>
--  <filter-class>org.jasig.cas.client.validation.Cas30ProxyReceivingTicketValidationFilter</filter-class>
--  <init-param>
--    <param-name>casServerUrlPrefix</param-name>
--    <param-value>https://www.sso.vsb.cz</param-value>
--  </init-param>
--  <init-param>
--    <param-name>serverName</param-name>
--    <param-value>https://klient.vsb.cz</param-value>
--  </init-param>
--</filter>
++	<filter>
++		<filter-name>CAS Validation Filter</filter-name>
++		<filter-class>org.jasig.cas.client.validation.Cas30ProxyReceivingTicketValidationFilter</filter-class>
++		<init-param>
++			<param-name>casServerUrlPrefix</param-name>
++			<param-value>https://www.sso.vsb.cz</param-value>
++		</init-param>
++		<init-param>
++			<param-name>serverName</param-name>
++			<param-value>https://klient.vsb.cz</param-value>
++		</init-param>
++	</filter>
--<filter>
--  <filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
--  <filter-class>org.jasig.cas.client.util.HttpServletRequestWrapperFilter</filter-class>
--</filter>
--
--<filter>
--  <filter-name>CAS Assertion Thread Local Filter</filter-name>
--  <filter-class>org.jasig.cas.client.util.AssertionThreadLocalFilter</filter-class>
--</filter>
++    <filter>
++        <filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
++        <filter-class>org.jasig.cas.client.util.HttpServletRequestWrapperFilter</filter-class>
++    </filter>
++
++    <filter>
++		<filter-name>CAS Assertion Thread Local Filter</filter-name>
++		<filter-class>org.jasig.cas.client.util.AssertionThreadLocalFilter</filter-class>
++	</filter>
--<filter-mapping>
--  <filter-name>CAS Single Sign Out Filter</filter-name>
--  <url-pattern>/*</url-pattern>
--</filter-mapping>
++	<filter-mapping>
++   		<filter-name>CAS Single Sign Out Filter</filter-name>
++   		<url-pattern>/*</url-pattern>
++	</filter-mapping>
--<filter-mapping>
--  <filter-name>CAS Authentication Filter</filter-name>
--  <url-pattern>/*</url-pattern>
--</filter-mapping>
++    <filter-mapping>
++        <filter-name>CAS Authentication Filter</filter-name>
++        <url-pattern>/*</url-pattern>
++    </filter-mapping>
--<filter-mapping>
--  <filter-name>CAS Validation Filter</filter-name>
--  <url-pattern>/*</url-pattern>
--</filter-mapping>
++    <filter-mapping>
++        <filter-name>CAS Validation Filter</filter-name>
++        <url-pattern>/*</url-pattern>
++    </filter-mapping>
--<filter-mapping>
--  <filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
--  <url-pattern>/*</url-pattern>
--</filter-mapping>
++    <filter-mapping>
++        <filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
++        <url-pattern>/*</url-pattern>
++    </filter-mapping>
--<filter-mapping>
--  <filter-name>CAS Assertion Thread Local Filter</filter-name>
--  <url-pattern>/*</url-pattern>
--</filter-mapping>
++	<filter-mapping>
++		<filter-name>CAS Assertion Thread Local Filter</filter-name>
++		<url-pattern>/*</url-pattern>
++	</filter-mapping>
--<listener>
--  <listener-class>org.jasig.cas.client.session.SingleSignOutHttpSessionListener</listener-class>
--</listener>
++	<listener>
++		<listener-class>org.jasig.cas.client.session.SingleSignOutHttpSessionListener</listener-class>
++	</listener>
  {{/code}}
--
--(% class="box" %)
--(((
--(% class="code" %)
--(((
--(% style="color:#008000; font-weight:bold" %)##**<filter>**##(%%)##
-- (% style="color:#008000; font-weight:bold" %)**<filter-name>**(%%)CAS Single Sign Out Filter(% style="color:#008000; font-weight:bold" %)**</filter-name>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**<filter-class>**(%%)org.jasig.cas.client.session.SingleSignOutFilter(% style="color:#008000; font-weight:bold" %)**</filter-class>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**<init-param>**(%%)
--   (% style="color:#008000; font-weight:bold" %)**<param-name>**(%%)casServerUrlPrefix(% style="color:#008000; font-weight:bold" %)**</param-name>**(%%)
--   (% style="color:#008000; font-weight:bold" %)**<param-value>**(%%)https:~/~/www.sso.vsb.cz(% style="color:#008000; font-weight:bold" %)**</param-value>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**</init-param>**(%%)
--(% style="color:#008000; font-weight:bold" %)**</filter>**(%%)
--\\(% style="color:#008000; font-weight:bold" %)**<filter>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**<filter-name>**(%%)CAS Authentication Filter(% style="color:#008000; font-weight:bold" %)**</filter-name>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**<filter-class>**(%%)org.jasig.cas.client.authentication.AuthenticationFilter(% style="color:#008000; font-weight:bold" %)**</filter-class>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**<init-param>**(%%)
--   (% style="color:#008000; font-weight:bold" %)**<param-name>**(%%)casServerUrlPrefix(% style="color:#008000; font-weight:bold" %)**</param-name>**(%%)
--   (% style="color:#008000; font-weight:bold" %)**<param-value>**(%%)https:~/~/www.sso.vsb.cz(% style="color:#008000; font-weight:bold" %)**</param-value>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**</init-param>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**<init-param>**(%%)
--   (% style="color:#008000; font-weight:bold" %)**<param-name>**(%%)serverName(% style="color:#008000; font-weight:bold" %)**</param-name>**(%%)
--   (% style="color:#008000; font-weight:bold" %)**<param-value>**(%%)https:~/~/klient.vsb.cz(% style="color:#008000; font-weight:bold" %)**</param-value>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**</init-param>**(%%)
--(% style="color:#008000; font-weight:bold" %)**</filter>**(%%)
--
--(% style="color:#008000; font-weight:bold" %)**<filter>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**<filter-name>**(%%)CAS Validation Filter(% style="color:#008000; font-weight:bold" %)**</filter-name>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**<filter-class>**(%%)org.jasig.cas.client.validation.Cas30ProxyReceivingTicketValidationFilter(% style="color:#008000; font-weight:bold" %)**</filter-class>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**<init-param>**(%%)
--   (% style="color:#008000; font-weight:bold" %)**<param-name>**(%%)casServerUrlPrefix(% style="color:#008000; font-weight:bold" %)**</param-name>**(%%)
--   (% style="color:#008000; font-weight:bold" %)**<param-value>**(%%)https:~/~/www.sso.vsb.cz(% style="color:#008000; font-weight:bold" %)**</param-value>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**</init-param>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**<init-param>**(%%)
--   (% style="color:#008000; font-weight:bold" %)**<param-name>**(%%)serverName(% style="color:#008000; font-weight:bold" %)**</param-name>**(%%)
--   (% style="color:#008000; font-weight:bold" %)**<param-value>**(%%)https:~/~/klient.vsb.cz(% style="color:#008000; font-weight:bold" %)**</param-value>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**</init-param>**(%%)
--(% style="color:#008000; font-weight:bold" %)**</filter>**(%%)
--\\(% style="color:#008000; font-weight:bold" %)**<filter>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**<filter-name>**(%%)CAS HttpServletRequest Wrapper Filter(% style="color:#008000; font-weight:bold" %)**</filter-name>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**<filter-class>**(%%)org.jasig.cas.client.util.HttpServletRequestWrapperFilter(% style="color:#008000; font-weight:bold" %)**</filter-class>**(%%)
--(% style="color:#008000; font-weight:bold" %)**</filter>**(%%)
--\\(% style="color:#008000; font-weight:bold" %)**<filter>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**<filter-name>**(%%)CAS Assertion Thread Local Filter(% style="color:#008000; font-weight:bold" %)**</filter-name>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**<filter-class>**(%%)org.jasig.cas.client.util.AssertionThreadLocalFilter(% style="color:#008000; font-weight:bold" %)**</filter-class>**(%%)
--(% style="color:#008000; font-weight:bold" %)**</filter>**(%%)
--\\(% style="color:#008000; font-weight:bold" %)**<filter-mapping>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**<filter-name>**(%%)CAS Single Sign Out Filter(% style="color:#008000; font-weight:bold" %)**</filter-name>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**<url-pattern>**(%%)/*(% style="color:#008000; font-weight:bold" %)**</url-pattern>**(%%)
--(% style="color:#008000; font-weight:bold" %)**</filter-mapping>**(%%)
--\\(% style="color:#008000; font-weight:bold" %)**<filter-mapping>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**<filter-name>**(%%)CAS Authentication Filter(% style="color:#008000; font-weight:bold" %)**</filter-name>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**<url-pattern>**(%%)/*(% style="color:#008000; font-weight:bold" %)**</url-pattern>**(%%)
--(% style="color:#008000; font-weight:bold" %)**</filter-mapping>**(%%)
--
--(% style="color:#008000; font-weight:bold" %)**<filter-mapping>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**<filter-name>**(%%)CAS Validation Filter(% style="color:#008000; font-weight:bold" %)**</filter-name>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**<url-pattern>**(%%)/*(% style="color:#008000; font-weight:bold" %)**</url-pattern>**(%%)
--(% style="color:#008000; font-weight:bold" %)**</filter-mapping>**(%%)
--
--(% style="color:#008000; font-weight:bold" %)**<filter-mapping>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**<filter-name>**(%%)CAS HttpServletRequest Wrapper Filter(% style="color:#008000; font-weight:bold" %)**</filter-name>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**<url-pattern>**(%%)/*(% style="color:#008000; font-weight:bold" %)**</url-pattern>**(%%)
--(% style="color:#008000; font-weight:bold" %)**</filter-mapping>**(%%)
--\\(% style="color:#008000; font-weight:bold" %)**<filter-mapping>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**<filter-name>**(%%)CAS Assertion Thread Local Filter(% style="color:#008000; font-weight:bold" %)**</filter-name>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**<url-pattern>**(%%)/*(% style="color:#008000; font-weight:bold" %)**</url-pattern>**(%%)
--(% style="color:#008000; font-weight:bold" %)**</filter-mapping>**(%%)
--\\(% style="color:#008000; font-weight:bold" %)**<listener>**(%%)
-- (% style="color:#008000; font-weight:bold" %)**<listener-class>**(%%)org.jasig.cas.client.session.SingleSignOutHttpSessionListener(% style="color:#008000; font-weight:bold" %)**</listener-class>**(%%)
--(% style="color:#008000; font-weight:bold" %)**</listener>**(%%)##
  )))
--)))
--)))
--1. Pro odhlášení uživatele z CAS je potřeba přistoupit na url ##https:~/~/www.sso.vsb.cz/logout##.(((
++1. CAS server musí důvěřovat certifikátu klienta (může se stát, že bude potřeba přidat certifikát na CAS server) a zároveň
++ klient musí důvěřovat certifikátu serveru.
++1. Pro odhlášení uživatele z CAS je potřeba přistoupit na url https://www.sso.vsb.cz/logout. (((
     Před odhlášením z CAS je vhodné zrušit session v aplikaci klienta (zaleží to však na konkrétním klientu).
     Pokud po odhlášení z CAS nechceme aby uživatel zůstal na odhlašovací stránce CASu, můžeme k odhlašovací url přidat parametr 'service', který
     obsahuje url (nejlépe zakódovanou pomocí URL kódování) na kterou se má po odhlášení přesměrovat. Url musí obsahovat adresu, která je pro službu povolena.
--   např. ##https:~/~/www.sso.vsb.cz/logout?service=https%3A%2F%2Fklient.vsb.cz##
++   např. https://www.sso.vsb.cz/logout?service=https%3A%2F%2Fklient.vsb.cz
  )))
 . Přihlášenou osobu v aplikaci lze pak jednoduše zjistit pomoci(((
--{{code language="java"}}
--request.getRemoteUser();
++{{code}}
++	request.getRemoteUser();
  {{/code}}
  )))

Changes for page CAS Java klient

Summary

Details

Navštivte také:

Helpdesk

Rychlé odkazy