堆栈内存溢出
  简体   繁体   English

cas不重定向到登录页面

[英]cas not redirect to login-page

 原文  2012-03-20 11:01:51       java/ spring-security/ cas

问题描述

i have a problem just as title, and the http-status is "302 Moved Temporarily". 我有一个标题问题,并且http状态为“ 302临时移动”。 my security-app.xml is: 我的security-app.xml是: 

    <?xml version="1.0" encoding="UTF-8"?>
<beans xmlns="http://www.springframework.org/schema/beans" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
    xmlns:sec="http://www.springframework.org/schema/security" xmlns:p="http://www.springframework.org/schema/p"
    xmlns:jee="http://www.springframework.org/schema/jee" xmlns:context="http://www.springframework.org/schema/context"
    xsi:schemaLocation="http://www.springframework.org/schema/jee http://www.springframework.org/schema/jee/spring-jee-3.0.xsd
        http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
        http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd
        http://www.springframework.org/schema/context http://www.springframework.org/schema/context/spring-context-3.0.xsd">

    <!-- Load parameters from context.xml -->
    <bean id="propertyConfigurer" class="org.springframework.web.context.support.ServletContextPropertyPlaceholderConfigurer"/>
    <sec:http entry-point-ref="casEntryPoint" auto-config="true">   
        <sec:intercept-url pattern="/**" access="ROLE_USER" />      
        <sec:logout invalidate-session="true" logout-url="/logout" logout-success-url="/loggedOut.html"/>
        <sec:custom-filter position="CAS_FILTER" ref="casFilter" />
    </sec:http>

    <sec:authentication-manager alias="authenticationManager">
        <sec:authentication-provider ref="casAuthenticationProvider" />
    </sec:authentication-manager>

    <bean id="serviceProperties" class="org.springframework.security.cas.ServiceProperties">
        <property name="service" value="http://localhost:8080/test/j_spring_cas_security_check" />
        <property name="sendRenew" value="false" />
    </bean>

    <bean id="casFilter" class="org.springframework.security.cas.web.CasAuthenticationFilter">
        <property name="authenticationManager" ref="authenticationManager" />
    </bean>

    <bean id="casEntryPoint" class="org.springframework.security.cas.web.CasAuthenticationEntryPoint">
        <property name="loginUrl" value="https://localhost:7443/cas/login" />
        <property name="serviceProperties" ref="serviceProperties" />
    </bean>

    <bean id="casAuthenticationProvider" class="org.springframework.security.cas.authentication.CasAuthenticationProvider">
        <property name="authenticationUserDetailsService" ref="myUserService" />
        <property name="serviceProperties" ref="serviceProperties" />
        <property name="ticketValidator">
            <bean class="org.jasig.cas.client.validation.Cas20ServiceTicketValidator">
                <constructor-arg index="0" value="https://localhost:7443/cas" />
            </bean>
        </property>
        <property name="key" value="an_id_for_this_auth_provider_only" />
    </bean>

    <bean id="myUserService" class="com.security.myUserDetailService">
        <property name="dataSource" ref="myDatasource"/>
    </bean>

    <jee:jndi-lookup  id="optaDatasource" jndi-name="jdbc/mydb"/>
</beans>

and the web.xml ( cas listener & some filters ): 和web.xml(cas侦听器和一些过滤器): 

<?xml version="1.0" encoding="UTF-8"?>
<web-app version="2.4" xmlns="http://java.sun.com/xml/ns/j2ee" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
    xsi:schemaLocation="http://java.sun.com/xml/ns/j2ee 
         http://java.sun.com/xml/ns/j2ee/web-app_2_4.xsd">
...
    <servlet>
        <servlet-name>mytest</servlet-name>
        <servlet-class>org.springframework.web.servlet.DispatcherServlet</servlet-class>
        <load-on-startup>2</load-on-startup>
    </servlet>

    <!-- Listener für Spring -->
    <listener>
        <listener-class>org.springframework.web.context.ContextLoaderListener</listener-class>
    </listener>

    <!-- Listener for CAS -->
    <listener>
        <listener-class>org.jasig.cas.client.session.SingleSignOutHttpSessionListener</listener-class>
    </listener>
...
    <!-- CAS Single Sign Out -->
    <filter>
        <filter-name>CAS Single Sign Out Filter</filter-name>
        <filter-class>org.jasig.cas.client.session.SingleSignOutFilter</filter-class>
    </filter>

    <!-- Spring security -->
    <filter>
        <filter-name>springSecurityFilterChain</filter-name>
        <filter-class>org.springframework.web.filter.DelegatingFilterProxy</filter-class>
    </filter>


    <!-- UTF-8 Encoding Filter -->
    <filter>
        <filter-name>CEF</filter-name>
        <filter-class>org.springframework.web.filter.CharacterEncodingFilter</filter-class>
        <init-param>
            <param-name>encoding</param-name>
            <param-value>UTF-8</param-value>
        </init-param>
        <init-param>
            <param-name>forceEncoding</param-name>
            <param-value>true</param-value>
        </init-param>
    </filter>

    <filter-mapping>
        <filter-name>springSecurityFilterChain</filter-name>
        <url-pattern>/*</url-pattern>
    </filter-mapping>

    <filter-mapping>
        <filter-name>CAS Single Sign Out Filter</filter-name>
        <url-pattern>/*</url-pattern>
    </filter-mapping>

    <filter-mapping>
        <filter-name>CEF</filter-name>
        <servlet-name>mytest</servlet-name>
    </filter-mapping>
... 
</web-app>

server.xml in Tomcat (define connector to https://cas ): Tomcat中的server.xml(将连接器定义为https:// cas ): 

    ...
<Connector port="7443" protocol="org.apache.coyote.http11.Http11NioProtocol" SSLEnabled="true" maxThreads="150" scheme="https" secure="true"
    clientAuth="false" sslProtocol="TLS" keyAlias="caslocalhost" keystoreFile="C:\Program Files\Java\jdk1.6.0_25\bin\caskslocalhost.jks" keystorePass="changeit"/>

Am I missing something? 我想念什么吗? I would really appreciate any tip 我真的很感谢任何提示

ps: Info of response header: ps:响应头信息: 

Content-Length  0
Date    Tue, 20 Mar 2012 14:12:23 GMT
Location    https://localhost:7443/cas/login?service=http%3A%2F%2Flocalhost%3A8080%2Ftest%2Fj_spring_cas_security_check
Server  Apache-Coyote/1.1
Set-Cookie  JSESSIONID=A69FD95FB79B21810B2988A02CCFD78C; Path=/test

1 个解决方案

解决方案1
 0 已采纳  2012-03-27 07:40:16

the settings are correct. 设置正确。 and the reason is found : ajax request. 并找到原因:ajax请求。 I must modify the code of js-site. 我必须修改js-site的代码。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 Spring + CAS注销后重定向到登录页面 - Spring + CAS Redirect to login page after logout 用户已登录时从CAS登录页面重定向 - redirect from CAS login page when user is already logged in 成功登录后将CAS重定向到URL - CAS redirect to URL on succesfull login Spring Security:如何从 <sec:form-login> 标签 - Spring Security: How to get the login-page from the <sec:form-login> Tag 通过自定义登录页面使用CAS - using CAS with with custom login page CAS -Apereo Jasig:成功登录后如何重定向到自定义网页? - CAS -Apereo Jasig: How to redirect to a custom web page after a successful login? Liferay登录页面重定向 - Liferay Login page redirect 将用户重定向到登录页面 - redirect user to login page 如果用户未登录,则将他们重定向到登录页面 - Redirect users to login page if they are not login CAS:如果登录页面空闲,则凭据不会得到验证 - CAS: credentials don't get validated if the login page is idle
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM