1、先從網上把cas serve,cas client 包下載下來,我是從官網下載的,比較費盡用翻牆下來的
2、tomcat 6 下載新的
3、開始搭建cas server
1) 解壓cas server 3.5.2 model 下有個cas-server-webapp-3.5.2.war 包,改cas.war(不改也可以)
2)解壓 tomcat6 ,把cas.war 拷貝到webapp 下把它解壓出來(確定啓動成功)
3)用jdk 工具keytool 打包自己的認證:
keytool -genkey -alias wsria -keyalg RSA -keystore d:/keys/wsriakey
導出證書 D:\keys>keytool -export -file d:/keys/wsria.crt -alias wsria -keystore d:/keys/wsriakey
爲客戶端的JVM導入證書 keytool -import -keystore "C:\Program Files\Java\jdk1.6.0_10\jre\lib\security\cacerts" -file "D:/keys/wsria.crt" -alias wsria
至此證書就倒入成功了
打開tomcat 配置文件夾conf/server.xml 打開8443端口 <Connector port="8443" protocol="org.apache.coyote.http11.Http11Protocol" SSLEnabled="true" maxHttpHeaderSize="8192" enableLookups="false" disableUploadTimeout="true" maxThreads="150" scheme="https" secure="true" clientAuth="false" sslProtocol="TLS" keystoreFile="D:/keys/wsriakey" keystorePass="111111"/>
重新啓動tomcat https://localhost:8443/ 看到貓,恭喜你cas server 基本成功
爲了能訪問數據庫還得做如下配置:WEB-INFO/deployerConfigContext.xml
註釋 <bean class="org.jasig.cas.authentication.handler.support.SimpleTestUsernamePasswordAuthenticationHandler" />
加入 <bean class="org.jasig.cas.adaptors.jdbc.QueryDatabaseAuthenticationHandler"> <property name="dataSource" ref="dataSource"></property> <property name="sql" value="select password from users where userName=?"></property> <!--<property name="passwordEncoder" ref="MD5PasswordEncoder"></property>--> </bean>
在最下面加入:
<bean id="dataSource" class="org.springframework.jdbc.datasource.DriverManagerDataSource"> <property name="driverClassName"><value>com.mysql.jdbc.Driver</value></property> <property name="url"><value>jdbc:mysql:///test1</value></property> <property name="username"><value>root</value></property> <property name="password"><value>123456</value></property> </bean> <bean id="MD5PasswordEncoder" class="org.jasig.cas.authentication.handler.DefaultPasswordEncoder"> <constructor-arg index="0"> <value>MD5</value> </constructor-arg> </bean>
注:數據庫確定有test1表,id, userName,password
輸入https://localhost:8443/cas 會看到cas 自帶的登錄界面 admin/dadmin 可以看到效果