SSO單點登錄一（Spring+SpringMVC+固定密碼）實現的簡單的同域SSOdemo

本文爲作者原創  轉載請註明出處

首先導入spring+springMVC的核心jar文件 

編寫web.xml文件

<?xml version="1.0" encoding="UTF-8"?>
<web-app xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://java.sun.com/xml/ns/javaee" xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_3_0.xsd" id="WebApp_ID" version="3.0">
  <display-name>SSO-First-同域</display-name>
  <context-param>
  	<param-name>contextConfigLocation</param-name>
  	<param-value>/WEB-INF/classes/applicationContext.xml</param-value>
  </context-param>
  
  <listener>
  	<listener-class>org.springframework.web.context.ContextLoaderListener</listener-class>
  </listener>
  
  <servlet>
  	<servlet-name>springmvc</servlet-name>
  	<servlet-class>org.springframework.web.servlet.DispatcherServlet</servlet-class>
  	<init-param>
  		<param-name>contextConfigLocation</param-name>
  		<param-value>/WEB-INF/classes/springmvc-servlet.xml</param-value>
  	</init-param>
  	<load-on-startup>1</load-on-startup>
  </servlet>
  <servlet-mapping>
  	<servlet-name>springmvc</servlet-name>
  	<url-pattern>/</url-pattern>
  </servlet-mapping>
</web-app>

編寫spring和springmvc的配置文件

<?xml version="1.0" encoding="UTF-8"?>
<beans xmlns="http://www.springframework.org/schema/beans"
	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:aop="http://www.springframework.org/schema/aop"
	xmlns:context="http://www.springframework.org/schema/context" xmlns:tx="http://www.springframework.org/schema/tx"
	xmlns:mvc="http://www.springframework.org/schema/mvc"
	xsi:schemaLocation="http://www.springframework.org/schema/beans 
        http://www.springframework.org/schema/beans/spring-beans.xsd
        http://www.springframework.org/schema/aop
        http://www.springframework.org/schema/aop/spring-aop.xsd
        http://www.springframework.org/schema/context
        http://www.springframework.org/schema/context/spring-context.xsd
        http://www.springframework.org/schema/tx 
        http://www.springframework.org/schema/tx/spring-tx.xsd
        http://www.springframework.org/schema/mvc 
        http://www.springframework.org/schema/mvc/spring-mvc.xsd">

	<mvc:annotation-driven />
	<context:component-scan base-package="com.lcl" />
	<bean
		class="org.springframework.web.servlet.view.InternalResourceViewResolver">
		<property name="viewClass"
			value="org.springframework.web.servlet.view.JstlView" />
		<property name="suffix" value=".jsp"></property>
	</bean>
	<mvc:interceptors>
		<mvc:interceptor>
		 <!-- 匹配的是url路徑， 如果不配置或/**,將攔截所有的Controller -->  
			<mvc:mapping path="/index/**"/>
			<bean class="com.lcl.interceptor.MyInteceptor"></bean>
		</mvc:interceptor>
	</mvc:interceptors>
</beans>

配置攔截器

package com.lcl.interceptor;

import javax.servlet.http.Cookie;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

import org.springframework.web.servlet.handler.HandlerInterceptorAdapter;

import com.lcl.utils.CheckLogin;

public class MyInteceptor extends HandlerInterceptorAdapter{

	@Override
	public synchronized boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler)
			throws Exception {
		Cookie[] cookies = request.getCookies();
//System.out.println("進入Interceptor");
		String path = request.getContextPath();
		String basePath = request.getScheme()+"://"+request.getServerName()+":"+request.getServerPort()+path+"/";
		String currPath = basePath.substring(0, basePath.length()-1) + request.getServletPath();
//System.out.println(currPath);
		if(null != cookies){
			for(Cookie cookie : cookies){
				if("Login".equals(cookie.getName())){
					String value = cookie.getValue();
					String[] split = value.split("_");
					if(CheckLogin.login(split[0],split[1]))
							return true;
				}
			}
		}
		
		String username = request.getParameter("username");
		String password = request.getParameter("password");
		
		if(null != username && null != password){
			if(CheckLogin.login(username, password)){
				Cookie ck = new Cookie("Login",username+"_"+password);
				ck.setPath("/");//設置到共有的根路徑下
				ck.setMaxAge(60);
				response.addCookie(ck);
				return true;
			}
		}
		request.getRequestDispatcher("/login.jsp?gotoUrl="+currPath).forward(request, response);
		return false;
	}

}

主要通過cookie來實現的單點登錄  同域下只要將cookie放入根目錄下即可 這是最容易實現的方式  以後將補充剩餘兩種  分別是同父域SSO和完全不完全域SSO

編寫登錄方法  這裏簡單登錄未通過數據庫

package com.lcl.utils;

public class CheckLogin {
	private static final String USERNAME="admin"; 
	private static final String PASSWORD="admin"; 
	public static boolean login(String username, String password) {
		if(USERNAME.equals(username) 
				&& PASSWORD.equals(password)) 
			return true;
		return false;
	}

}

使用Controller完成路徑的跳轉  這裏只有兩個測試用的

package com.lcl.controller;

import org.springframework.stereotype.Component;
import org.springframework.web.bind.annotation.RequestMapping;

@Component("mycontroller")
@RequestMapping("/index")
public class MyController {
	
	@RequestMapping("index1")
	public String index(){
//System.out.println("進入MyController");
		return "/index";
	}

	@RequestMapping("index2")
	public String index2(){
		return "/index2";
	}
}

同域下的SSO登錄的核心思想就是在請求資源主頁面的時候通過攔截器攔截請求並驗證Cookie的合法性 若cookie爲空或者不合法則跳轉登錄界面

若cookie合法則通過攔截器完成請求 同域下SSO相對簡單  重點就是將cookie放在跟目錄下保證多個資源頁面能夠共享這個cookie完成登錄

<%@ page language="java" import="java.util.*" pageEncoding="UTF-8"%>
<%
String path = request.getContextPath();
String basePath = request.getScheme()+"://"+request.getServerName()+":"+request.getServerPort()+path+"/";
%>

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
  <head>
    <base href="<%=basePath%>">
    
    <title>SSO單點登錄頁面一</title>
	<meta http-equiv="pragma" content="no-cache">
	<meta http-equiv="cache-control" content="no-cache">
	<meta http-equiv="expires" content="0">    
	<meta http-equiv="keywords" content="keyword1,keyword2,keyword3">
	<meta http-equiv="description" content="This is my page">
	<!--
	<link rel="stylesheet" type="text/css" href="styles.css">
	-->
  </head>
  
  <body>
    SSO單點登錄頁面一<br/>
  </body>
</html>

<%@ page language="java" import="java.util.*" pageEncoding="UTF-8"%>
<%
String path = request.getContextPath();
String basePath = request.getScheme()+"://"+request.getServerName()+":"+request.getServerPort()+path+"/";
%>

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
  <head>
    <base href="<%=basePath%>">
    
    <title>SSO單點登錄頁面二</title>
	<meta http-equiv="pragma" content="no-cache">
	<meta http-equiv="cache-control" content="no-cache">
	<meta http-equiv="expires" content="0">    
	<meta http-equiv="keywords" content="keyword1,keyword2,keyword3">
	<meta http-equiv="description" content="This is my page">
	<!--
	<link rel="stylesheet" type="text/css" href="styles.css">
	-->
  </head>
  
  <body>
    SSO單點登錄頁面二<br>
  </body>
</html>

<%@ page language="java" import="java.util.*" pageEncoding="UTF-8"%>
<%
String path = request.getContextPath();
String basePath = request.getScheme()+"://"+request.getServerName()+":"+request.getServerPort()+path+"/";
%>

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
  <head>
    <base href="<%=basePath%>">
    
    <title>登錄</title>
	<meta http-equiv="pragma" content="no-cache">
	<meta http-equiv="cache-control" content="no-cache">
	<meta http-equiv="expires" content="0">    
	<meta http-equiv="keywords" content="keyword1,keyword2,keyword3">
	<meta http-equiv="description" content="This is my page">
	<!--
	<link rel="stylesheet" type="text/css" href="styles.css">
	-->
  </head>
  
  <body>
  <form action="${gotoUrl}" method="get">
    <span>用戶名：</span><input type="text" name="username"/>
    <span>密碼：</span><input type="password" name="password"/>
    <input type="submit" value="登錄">
    <input type="hidden" value="${gotoUrl}">
  </form>
  </body>
</html>

頁面：