最近做webide項目,需要用到單點登錄和單點登出,經推薦選擇了CAS。相關的文章比較多,這裏主要整理了下:
CAS架構:
http://jasig.github.io/cas/4.1.x/planning/Architecture.html
CAS認證原理(SSO):
https://idms.rutgers.edu/cas/how_does_it_work.shtml
主要是需要配置一個AuthenticationFilter判斷是否認證並跳轉到CAS頁面認證和TicketValidationFilter來從CAS服務器獲取用戶信息並創建Session
CAS登出原理(SLO):
http://jasig.github.io/cas/development/installation/Logout-Single-Signout.html
http://www.blogjava.net/conans/articles/214078.html
需要配置SingleSignOutFilter和SingleSignOutHttpSessionListener處理CAS發來的消息,銷燬Session
CAS使用與配置:
http://www.kafeitu.me/sso/2010/11/05/sso-cas-full-course.html
https://wiki.jasig.org/display/casc/cas+client+for+java+3.1
CAS客戶端代碼(裏面有相關fliter參數的配置介紹):
https://github.com/Jasig/java-cas-client
