認證方式:默認的用戶名密碼寫死在配置文件中
<bean id="primaryAuthenticationHandler"
class="org.jasig.cas.authentication.AcceptUsersAuthenticationHandler">
<property name="users">
<map>
<entry key="casuser" value="Mellon"/>
</map>
</property>
</bean>
修改爲JDBC方式:用戶名密碼保存在數據庫中,cas提供了QueryDatabaseAuthenticationHandler,這裏修改爲自定義的DoubleMd5AuthenticationHandler,使用兩次md5加密處理
<bean id="primaryAuthenticationHandler"
class="org.ittenyear.cas.authentication.DoubleMd5AuthenticationHandler">
<property name="dataSource" ref="dataSource" />
<property name="sql" value="select password,salt from user where lower(username) = lower(?))" />
<property name="passwordEncoder" ref="md5PasswordEncoder"/>
</bean>
<!--連接池使用的c3p0,因此要把c3p0的jar包依賴導進來-->
<!--連接池使用的c3p0,因此要把c3p0的jar包依賴導進來-->
<bean id="dataSource"
class="com.mchange.v2.c3p0.ComboPooledDataSource"
destroy-method="close">
<property name="driverClass">
<value>com.mysql.jdbc.Driver</value>
</property>
<property name="jdbcUrl">
<value>jdbc:mysql://localhost:3306/ittenyear?useUnicode=true&characterEncoding=UTF-8</value>
</property>
<property name="user">
<value>ittenyear</value>
</property>
<property name="password">
<value>123456</value>
</property>
<property name="minPoolSize">
<value>5</value>
</property>
<property name="maxPoolSize">
<value>30</value>
</property>
<property name="initialPoolSize">
<value>10</value>
</property>
<property name="maxIdleTime">
<value>60</value>
</property>
<property name="acquireIncrement">
<value>5</value>
</property>
<property name="idleConnectionTestPeriod">
<value>30</value>
</property>
<property name="acquireRetryAttempts">
<value>30</value>
</property>
<property name="breakAfterAcquireFailure">
<value>false</value>
</property>
</bean>
在數據庫表user中插入測試數據即可測試登錄
在數據庫表user中插入測試數據即可測試登錄
