shiro-cas-spring-boot-starter
说明
基于开源项目 java-cas-client 实现的Shiro 与 Cas 单点登录 Spring Boot Starter 实现
- Apache Shiro是一个强大且易用的Java安全框架,执行身份验证、授权、密码学和会话管理。使用Shiro的易于理解的API,您可以快速、轻松地获得任何应用程序,从最小的移动应用程序到最大的网络和企业应用程序。
- shiro-cas-spring-boot-starter 是在引用 shiro-spring-boot-starter、shiro-spring-boot-web-starter、shiro-biz-spring-boot-starter 的基础上整合 java-cas-client 的 Spring Boot 整合;
- 整合 cas-client 实现与 Cas 认证的对接
Maven
<dependency>
<groupId>${project.groupId}</groupId>
<artifactId>shiro-cas-spring-boot-starter</artifactId>
<version>${project.version}</version>
</dependency>
Sample :
https://github.com/vindell/spring-boot-starter-samples/tree/master/shiro-cas-spring-boot-starter
配置参考
application.yml
################################################################################################################
###Shiro 权限控制基本配置:
################################################################################################################
shiro:
annotations:
enabled: true
proxy-target-class: true
authentication-caching-enabled: false
authentication-cache-name: SHIRO-AUTHC
authorization-caching-enabled: false
authorization-cache-name: SHIRO-AUTHZ
caching-enabled: false
cache:
type: ehcache
enabled: true
kaptcha:
enabled: true
retry-times-when-access-denied: 3
failure-url: /error
http:
header:
access-control-allow-methods: PUT,POST,GET,DELETE,OPTIONS
login-url: /authz/login/slogin
redirect-url: /authz/login/index
success-url: /index
session-creation-enabled: false
session-validation-scheduler-enabled: false
session-validation-interval: 20000
session-stateless: true
session-storage-enabled: false
session-timeout: 1800000
unauthorized-url: /error
user-native-session-manager: false
web:
enabled: true
filter-chain-definition-map:
'[/]' : anon
'[/**/favicon.ico]' : anon
'[/webjars/**]' : anon
'[/assets/**]' : anon
'[/error*]' : anon
'[/logo/**]' : anon
'[/swagger-ui.html**]' : anon
'[/swagger-resources/**]' : anon
'[/v2/**]' : anon
'[/kaptcha*]' : anon
'[/admin]' : anon
'[/admin/assets/**]' : anon
'[/admin/applications]' : anon
'[/admin/applications/**]' : anon
'[/admin/notifications]' : anon
'[/admin/notifications/**]' : anon
'[/admin/instances]' : anon
'[/admin/instances/**]' : anon
'[/sockets/**]' : anon
'[/expiry]' : cros,withinExpiry
'[/authz/login/slogin]' : cros,authc
'[/logout]' : logout
'[/**]' : cros,authc
cas:
accept-any-proxy: true
cas-server-login-url: http://127.0.0.1:10000/cas/login
cas-server-logout-url: http://127.0.0.1:10000/cas/logout
cas-server-url-prefix: http://127.0.0.1:10000/cas
enabled: true
encoding: UTF-8
server-callback-url: /callback
server-name: http://127.0.0.1:8080
ignore-pattern: /webjars/;/assets/;/authz/login;/logout;/callback
ignore-url-pattern-type: org.apache.shiro.spring.boot.cas.ContainsPatternsUrlPatternMatcherStrategy
参考资料
http://shiro.apache.org/documentation.html
http://jinnianshilongnian.iteye.com/blog/2018398
https://wiki.jasig.org/display/CASC/Home
作者:Jeebiz 创建时间:2023-03-21 00:32
最后编辑:Jeebiz 更新时间:2024-10-05 00:01
最后编辑:Jeebiz 更新时间:2024-10-05 00:01