an class="bar"> 0   oa-app/src/main/java/com/css/oa/exam/admin/controller/a.txt
  • 56 0
      oa-app/src/main/java/com/css/oa/exam/admin/controller/b.json
  • 53 0
      oa-app/src/main/java/com/css/oa/exam/admin/controller/b.txt
  • 115 0
      oa-app/src/main/java/com/css/oa/exam/admin/controller/login.json
  • 2 0
      oa-app/src/main/resources/application-dev.yml
  • 11 1
      oa-app/src/main/resources/slw-config.properties

    • + 9 - 1
    README.md
    查看文件 

    @ -2,4 +2,12 @@
    2 2
    3 3 
    后台管理系统Java代码
    4 4
    5 
    1.接口运行地址:http://localhost:8081/zhbg/place/query
    5 
    1.接口运行地址:http://localhost:8081/zhbg/place/query
    6
    7 
    2,
    8 
    http://10.1.76.181:8081/zhbg/static/core/oa/TitleExamination/index.html
    9
    10 
    3,
    11 
    http://10.1.76.181:8081/zhbg/swagger-ui.html?urls.primaryName=oa#/abort-appliction-controller
    12
    13

    + 235 - 0
    oa-app/src/main/java/com/css/oa/exam/admin/controller/AA.java
    查看文件 

    @ -0,0 +1,235 @@
    1 
    package com.css.oa.exam.admin.controller;
    2
    3 
    import com.fasterxml.jackson.annotation.JsonProperty;
    4 
    import lombok.Data;
    5 
    import lombok.NoArgsConstructor;
    6
    7 
    import java.util.List;
    8
    9 
    @NoArgsConstructor
    10 
    @Data
    11 
    public class AA {
    12
    13 
        /*{
    14 
            "id": "fc80fa44f4ab4c389cddb17837074a34",
    15 
                "persCode": "140622198906200032",
    16 
                "userName": "zangtie",
    17 
                "persName": "臧铁",
    18 
                "orgCode": "100000002",
    19 
                "orgName": "其他",
    20 
                "orgJurd": "",
    21 
                "jurdAreaType": "",
    22 
                "adminOrgCode": "",
    23 
                "depCode": "8be30b2208ff4b899be59c51465d34fe",
    24 
                "depName": "临时部门",
    25 
                "userState": "1",
    26 
                "caCertification": "",
    27 
                "ordernum": "95656",
    28 
                "creater": "",
    29 
                "modifier": "",
    30 
                "roleInfoList": [
    31 
            {
    32 
                "id": "9b0e3d32582d48a5be2af92a89cadc56",
    33 
                    "roleCode": "kfz",
    34 
                    "roleName": "开发者",
    35 
                    "roleDesc": "",
    36 
                    "roleType": "1",
    37 
                    "orgId": "",
    38 
                    "orgCode": "",
    39 
                    "orgName": "",
    40 
                    "orgJurd": "",
    41 
                    "jurdAreaType": "",
    42 
                    "sysId": "",
    43 
                    "sysCode": "2222",
    44 
                    "status": "1",
    45 
                    "creater": "",
    46 
                    "modifier": "",
    47 
                    "ordernum": "",
    48 
                    "note": ""
    49 
            },
    50 
            {
    51 
                "id": "6b303bd8624e4c308401dfa1d3f2ac99",
    52 
                    "roleCode": "cdglxt",
    53 
                    "roleName": "菜单管理系统",
    54 
                    "roleDesc": "管理业务系统管理员的菜单",
    55 
                    "roleType": "1",
    56 
                    "orgId": "",
    57 
                    "orgCode": "",
    58 
                    "orgName": "",
    59 
                    "orgJurd": "",
    60 
                    "jurdAreaType": "",
    61 
                    "sysId": "",
    62 
                    "sysCode": "1001",
    63 
                    "status": "1",
    64 
                    "creater": "",
    65 
                    "modifier": "",
    66 
                    "ordernum": "",
    67 
                    "note": "管理业务系统管理员的菜单"
    68 
            },
    69 
            {
    70 
                "id": "0577191f23b241b8b7d86176f5c2346a",
    71 
                    "roleCode": "131452021-xtgly-01",
    72 
                    "roleName": "系统管理员",
    73 
                    "roleDesc": "",
    74 
                    "roleType": "01",
    75 
                    "orgId": "",
    76 
                    "orgCode": "",
    77 
                    "orgName": "",
    78 
                    "orgJurd": "",
    79 
                    "jurdAreaType": "",
    80 
                    "sysId": "",
    81 
                    "sysCode": "131452021",
    82 
                    "status": "1",
    83 
                    "creater": "",
    84 
                    "modifier": "",
    85 
                    "ordernum": "",
    86 
                    "note": ""
    87 
            },
    88 
            {
    89 
                "id": "93f35c1d5b0f44c29b33599865a2aeb1",
    90 
                    "roleCode": "cdglaq",
    91 
                    "roleName": "菜单管理安全",
    92 
                    "roleDesc": "管理安全管理员菜单",
    93 
                    "roleType": "1",
    94 
                    "orgId": "",
    95 
                    "orgCode": "",
    96 
                    "orgName": "",
    97 
                    "orgJurd": "",
    98 
                    "jurdAreaType": "",
    99 
                    "sysId": "",
    100 
                    "sysCode": "1001",
    101 
                    "status": "1",
    102 
                    "creater": "",
    103 
                    "modifier": "",
    104 
                    "ordernum": "",
    105 
                    "note": "管理安全管理员菜单"
    106 
            },
    107 
            {
    108 
                "id": "fee152c213c845a28521d16b873fa4ad",
    109 
                    "roleCode": "131452021-aqgly-02",
    110 
                    "roleName": "安全管理员",
    111 
                    "roleDesc": "",
    112 
                    "roleType": "02",
    113 
                    "orgId": "",
    114 
                    "orgCode": "",
    115 
                    "orgName": "",
    116 
                    "orgJurd": "",
    117 
                    "jurdAreaType": "",
    118 
                    "sysId": "",
    119 
                    "sysCode": "131452021",
    120 
                    "status": "1",
    121 
                    "creater": "",
    122 
                    "modifier": "",
    123 
                    "ordernum": "",
    124 
                    "note": ""
    125 
            }
    126 
      ]
    127 
        }
    128 
    */
    129
    130 
        @JsonProperty("id")
    131 
        private String id;
    132
    133 
        @JsonProperty("身份证号")
    134 
        private String persCode;
    135
    136 
        @JsonProperty("姓名-拼音")
    137 
        private String userName;
    138
    139 
        @JsonProperty("姓名-汉语")
    140 
        private String persName;
    141
    142 
        @JsonProperty("组织机构编码")
    143 
        private String orgCode;
    144
    145 
        @JsonProperty("组织机构-汉语")
    146 
        private String orgName;
    147
    148 
        @JsonProperty("组织机构的管辖范围")
    149 
        private String orgJurd;
    150
    151 
        @JsonProperty("区域类型")
    152 
        private String jurdAreaType;
    153
    154 
        @JsonProperty("管理员组织结构编码")
    155 
        private String adminOrgCode;
    156
    157 
        @JsonProperty("部门编码")
    158 
        private String depCode;
    159
    160 
        @JsonProperty("部门名称")
    161 
        private String depName;
    162
    163 
        @JsonProperty("用户激活状态(已创建、呆激活、已激活)")
    164 
        private String userState;
    165
    166 
        @JsonProperty("caCertification")
    167 
        private String caCertification;
    168
    169 
        @JsonProperty("序号")
    170 
        private String ordernum;
    171
    172 
        @JsonProperty("创建人")
    173 
        private String creater;
    174
    175 
        @JsonProperty("修改人")
    176 
        private String modifier;
    177
    178 
        @JsonProperty("角色列表")
    179 
        private List<RoleInfoListDTO> roleInfoList;
    180
    181 
        @NoArgsConstructor
    182 
        @Data
    183 
        public static class RoleInfoListDTO {
    184 
            @JsonProperty("id")
    185 
            private String id;
    186
    187 
            @JsonProperty("角色编码")
    188 
            private String roleCode;
    189
    190 
            @JsonProperty("角色名称")
    191 
            private String roleName;
    192
    193 
            @JsonProperty("角色描述")
    194 
            private String roleDesc;
    195
    196 
            @JsonProperty("角色类型2、3、4等等")
    197 
            private String roleType;
    198
    199 
            @JsonProperty("组织机构id")
    200 
            private String orgId;
    201
    202 
            @JsonProperty("机构编码")
    203 
            private String orgCode;
    204
    205 
            @JsonProperty("机构名称")
    206 
            private String orgName;
    207
    208 
            @JsonProperty("机构管辖范围")
    209 
            private String orgJurd;
    210
    211 
            @JsonProperty("管辖范围类型")
    212 
            private String jurdAreaType;
    213
    214 
            @JsonProperty("所属系统")
    215 
            private String sysId;
    216
    217 
            @JsonProperty("系统编码")
    218 
            private String sysCode;
    219
    220 
            @JsonProperty("状态标志 1 启用 8 停用 9 禁用-")
    221 
            private String status;
    222
    223 
            @JsonProperty("创建人")
    224 
            private String creater;
    225
    226 
            @JsonProperty("修改人")
    227 
            private String modifier;
    228
    229 
            @JsonProperty("序号")
    230 
            private String ordernum;
    231
    232 
            @JsonProperty("note")
    233 
            private String note;
    234 
        }
    235 
    }

    + 57 - 0
    oa-app/src/main/java/com/css/oa/exam/admin/controller/a.txt
    查看文件 

    @ -0,0 +1,57 @@
    1 
    # Copyright (c) 1993-2009 Microsoft Corp.
    2 
    #
    3 
    # This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
    4 
    #
    5 
    # This file contains the mappings of IP addresses to host names. Each
    6 
    # entry should be kept on an individual line. The IP address should
    7 
    # be placed in the first column followed by the corresponding host name.
    8 
    # The IP address and the host name should be separated by at least one
    9 
    # space.
    10 
    #
    11 
    # Additionally, comments (such as these) may be inserted on individual
    12 
    # lines or following the machine name denoted by a '#' symbol.
    13 
    #
    14 
    # For example:
    15 
    #
    16 
    #      102.54.94.97     rhino.acme.com          # source server
    17 
    #       38.25.63.10     x.acme.com              # x client host
    18
    19 
    # localhost name resolution is handled within DNS itself.
    20 
    #	127.0.0.1       localhost
    21 
    #	::1             localhost
    22
    23
    24 
    127.0.0.1 genuine.microsoft.com
    25 
    127.0.0.1 mpa.one.microsoft.com
    26 
    127.0.0.1 sls.microsoft.com
    27
    28 
    10.1.12.253 slyun.mwr.cn
    29 
    10.1.12.253 grafana.slyun.mwr.cn
    30 
    10.1.12.253 registry-tcnp.slyun.mwr.cn
    31 
    10.1.12.253 rbac-access.slyun.mwr.cn
    32 
    10.1.12.253 rbac-account.slyun.mwr.cn
    33 
    10.1.12.253 rbac-sso.slyun.mwr.cn
    34 
    10.1.12.253 rbac-web.slyun.mwr.cn
    35 
    10.1.12.253 service-manager.slyun.mwr.cn
    36 
    10.1.12.253 sora.slyun.mwr.cn
    37 
    10.1.12.253 release-manager.slyun.mwr.cn
    38 
    10.1.12.252 gatewayproxy.mwr.cn
    39 
    10.1.12.252 msgcenter.mwr.cn
    40 
    10.1.12.252 springpro.mwr.cn
    41 
    10.1.12.252 springproweb.mwr.cn
    42 
    10.1.12.252 gkgl.mwr.cn
    43 
    10.1.12.252 nwservice.mwr.cn
    44 
    10.1.12.252 nwbase.mwr.cn
    45
    46 
    10.1.12.252 sso.mwr.cn
    47 
    10.1.12.252 slbbase.mwr.cn
    48 
    10.1.12.252 gateway.mwr.cn
    49 
    10.1.12.252 gatewayproxy.mwr.cn
    50 
    10.1.12.252 openplatclient.mwr.cn
    51 
    10.1.12.252 openplatserver.mwr.cn
    52 
    10.1.12.252 msgcenter.mwr.cn
    53 
    10.1.12.252 portal.mwr.cn
    54 
    10.1.12.252 basewebservice.mwr.cn
    55
    56
    57

    + 56 - 0
    oa-app/src/main/java/com/css/oa/exam/admin/controller/b.json
    查看文件 

    @ -0,0 +1,56 @@
    1 
    {
    2 
      "uuid": "fc80fa44f4ab4c389cddb17837074a34",
    3 
      "realName": "臧铁",
    4 
      "loginName": "zangtie",
    5 
      "password": "6b969f6063118c405dd445d4633ed36766af502d0bc27139c29298907ef7b648",
    6 
      "sex": 1,
    7 
      "mobile": "18782920244",
    8 
      "email": null,
    9 
      "userType": "1",
    10 
      "delFlag": "2",
    11 
      "openFlag": "1",
    12 
      "issueDate": "Apr 27, 2021 3:22:43 PM",
    13 
      "editDate": "Apr 27, 2021 3:36:48 PM",
    14 
      "remark": "",
    15 
      "lastLoginTime": null,
    16 
      "totalLoginCount": 1,
    17 
      "failedLoginCount": 0,
    18 
      "failLockTime": null,
    19 
      "orgId": "9e106cb9ee7a4acbbc08f761cdd03c5b",
    20 
      "editPwdTime": "Apr 27, 2021 3:23:14 PM",
    21 
      "activeStatus": "3",
    22 
      "activeDeadLine": "Apr 28, 2021 3:23:14 PM",
    23 
      "provinceId": null,
    24 
      "cityId": null,
    25 
      "pcStatus": null,
    26 
      "appStatus": null,
    27 
      "pwdExprityTime": null,
    28 
      "orderNum": 95656,
    29 
      "creatorId": null,
    30 
      "updateUserId": null,
    31 
      "countyId": null,
    32 
      "salt": null,
    33 
      "sysId": null,
    34 
      "oldUserId": null,
    35 
      "certKey": null,
    36 
      "staffOrg": null,
    37 
      "staffRegion": null,
    38 
      "certType": null,
    39 
      "certNo": "140622198906200032",
    40 
      "gbFlag": null,
    41 
      "gbPushFlag": "2",
    42 
      "datasCaCode": null,
    43 
      "personId": "19064bc4ecbc4f2aa79adec9d59ec8df",
    44 
      "exname": null,
    45 
      "functions": [],
    46 
      "funcActions": [],
    47 
      "syss": [],
    48 
      "depts": [],
    49 
      "roles": [],
    50 
      "posts": [],
    51 
      "userPosts": [],
    52 
      "userDepts": [],
    53 
      "orgs": [],
    54 
      "funcs": [],
    55 
      "actions": []
    56 
    }

    + 53 - 0
    oa-app/src/main/java/com/css/oa/exam/admin/controller/b.txt
    查看文件 

    @ -0,0 +1,53 @@
    1 
    # Copyright (c) 1993-2009 Microsoft Corp.
    2 
    #
    3 
    # This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
    4 
    #
    5 
    # This file contains the mappings of IP addresses to host names. Each
    6 
    # entry should be kept on an individual line. The IP address should
    7 
    # be placed in the first column followed by the corresponding host name.
    8 
    # The IP address and the host name should be separated by at least one
    9 
    # space.
    10 
    #
    11 
    # Additionally, comments (such as these) may be inserted on individual
    12 
    # lines or following the machine name denoted by a '#' symbol.
    13 
    #
    14 
    # For example:
    15 
    #
    16 
    #      102.54.94.97     rhino.acme.com          # source server
    17 
    #       38.25.63.10     x.acme.com              # x client host
    18
    19 
    # localhost name resolution is handled within DNS itself.
    20 
    #	127.0.0.1       localhost
    21 
    #	::1             localhost
    22
    23
    24 
    127.0.0.1 genuine.microsoft.com
    25 
    127.0.0.1 mpa.one.microsoft.com
    26 
    127.0.0.1 sls.microsoft.com
    27
    28
    29 
    10.1.12.253 slyun.mwr.cn
    30 
    10.1.12.253 grafana.slyun.mwr.cn
    31 
    10.1.12.253 registry-tcnp.slyun.mwr.cn
    32 
    10.1.12.253 rbac-access.slyun.mwr.cn
    33 
    10.1.12.253 rbac-account.slyun.mwr.cn
    34 
    10.1.12.253 rbac-sso.slyun.mwr.cn
    35 
    10.1.12.253 rbac-web.slyun.mwr.cn
    36 
    10.1.12.253 service-manager.slyun.mwr.cn
    37 
    10.1.12.253 sora.slyun.mwr.cn
    38 
    10.1.12.253 release-manager.slyun.mwr.cn
    39 
    10.1.12.252 sso.mwr.cn
    40 
    10.1.12.252 slbbase.mwr.cn
    41 
    10.1.12.252 gateway.mwr.cn
    42 
    10.1.12.252 gatewayproxy.mwr.cn
    43 
    10.1.12.252 portal.mwr.cn
    44 
    10.1.12.252 msgcenter.mwr.cn
    45 
    10.1.12.252 openplatclient.mwr.cn
    46 
    10.1.12.252 openplatserver.mwr.cn
    47 
    10.1.12.252 springpro.mwr.cn
    48 
    10.1.12.252 springproweb.mwr.cn
    49 
    10.1.12.252 gkgl.mwr.cn
    50 
    10.1.12.252 nwservice.mwr.cn
    51 
    10.1.12.252 nwbase.mwr.cn
    52
    53

    + 115 - 0
    oa-app/src/main/java/com/css/oa/exam/admin/controller/login.json
    查看文件 

    @ -0,0 +1,115 @@
    1 
    {
    2 
      "id": "fc80fa44f4ab4c389cddb17837074a34",
    3 
      "persCode": "140622198906200032",
    4 
      "userName": "zangtie",
    5 
      "persName": "臧铁",
    6 
      "orgCode": "100000002",
    7 
      "orgName": "其他",
    8 
      "orgJurd": "",
    9 
      "jurdAreaType": "",
    10 
      "adminOrgCode": "",
    11 
      "depCode": "8be30b2208ff4b899be59c51465d34fe",
    12 
      "depName": "临时部门",
    13 
      "userState": "1",
    14 
      "caCertification": "",
    15 
      "ordernum": "95656",
    16 
      "creater": "",
    17 
      "modifier": "",
    18 
      "roleInfoList": [
    19 
        {
    20 
          "id": "9b0e3d32582d48a5be2af92a89cadc56",
    21 
          "roleCode": "kfz",
    22 
          "roleName": "开发者",
    23 
          "roleDesc": "",
    24 
          "roleType": "1",
    25 
          "orgId": "",
    26 
          "orgCode": "",
    27 
          "orgName": "",
    28 
          "orgJurd": "",
    29 
          "jurdAreaType": "",
    30 
          "sysId": "",
    31 
          "sysCode": "2222",
    32 
          "status": "1",
    33 
          "creater": "",
    34 
          "modifier": "",
    35 
          "ordernum": "",
    36 
          "note": ""
    37 
        },
    38 
        {
    39 
          "id": "6b303bd8624e4c308401dfa1d3f2ac99",
    40 
          "roleCode": "cdglxt",
    41 
          "roleName": "菜单管理系统",
    42 
          "roleDesc": "管理业务系统管理员的菜单",
    43 
          "roleType": "1",
    44 
          "orgId": "",
    45 
          "orgCode": "",
    46 
          "orgName": "",
    47 
          "orgJurd": "",
    48 
          "jurdAreaType": "",
    49 
          "sysId": "",
    50 
          "sysCode": "1001",
    51 
          "status": "1",
    52 
          "creater": "",
    53 
          "modifier": "",
    54 
          "ordernum": "",
    55 
          "note": "管理业务系统管理员的菜单"
    56 
        },
    57 
        {
    58 
          "id": "0577191f23b241b8b7d86176f5c2346a",
    59 
          "roleCode": "131452021-xtgly-01",
    60 
          "roleName": "系统管理员",
    61 
          "roleDesc": "",
    62 
          "roleType": "01",
    63 
          "orgId": "",
    64 
          "orgCode": "",
    65 
          "orgName": "",
    66 
          "orgJurd": "",
    67 
          "jurdAreaType": "",
    68 
          "sysId": "",
    69 
          "sysCode": "131452021",
    70 
          "status": "1",
    71 
          "creater": "",
    72 
          "modifier": "",
    73 
          "ordernum": "",
    74 
          "note": ""
    75 
        },
    76 
        {
    77 
          "id": "93f35c1d5b0f44c29b33599865a2aeb1",
    78 
          "roleCode": "cdglaq",
    79 
          "roleName": "菜单管理安全",
    80 
          "roleDesc": "管理安全管理员菜单",
    81 
          "roleType": "1",
    82 
          "orgId": "",
    83 
          "orgCode": "",
    84 
          "orgName": "",
    85 
          "orgJurd": "",
    86 
          "jurdAreaType": "",
    87 
          "sysId": "",
    88 
          "sysCode": "1001",
    89 
          "status": "1",
    90 
          "creater": "",
    91 
          "modifier": "",
    92 
          "ordernum": "",
    93 
          "note": "管理安全管理员菜单"
    94 
        },
    95 
        {
    96 
          "id": "fee152c213c845a28521d16b873fa4ad",
    97 
          "roleCode": "131452021-aqgly-02",
    98 
          "roleName": "安全管理员",
    99 
          "roleDesc": "",
    100 
          "roleType": "02",
    101 
          "orgId": "",
    102 
          "orgCode": "",
    103 
          "orgName": "",
    104 
          "orgJurd": "",
    105 
          "jurdAreaType": "",
    106 
          "sysId": "",
    107 
          "sysCode": "131452021",
    108 
          "status": "1",
    109 
          "creater": "",
    110 
          "modifier": "",
    111 
          "ordernum": "",
    112 
          "note": ""
    113 
        }
    114 
      ]
    115 
    }

    + 2 - 0
    oa-app/src/main/resources/application-dev.yml
    查看文件 

    @ -29,6 +29,8 @@ spring:
    29 29 
            min-idle: 5
    30 30 
            max-wait: 10000
    31 31 
        database: 0
    32 
        session:
    33 
          store-type: redis
    32 34 
    swagger:
    33 35 
      enable: true
    34 36 
    management:

    + 11 - 1
    oa-app/src/main/resources/slw-config.properties
    查看文件 

    @ -1,3 +1,13 @@
    1 
    ##app.system.id=131452021
    2 
    #app.system.id=131452021
    3 
    #app.service.secretkey=admin123
    4 
    ##baseRestUrl=http://10.13.1.172:8080/cssbase/rest
    5 
    #getewayToken=slw-jwt-token
    6 
    #baseRestUrl=http://gatewayproxy.mwr.cn
    7
    8
    9
    1 10 
    app.system.id=13149527
    2 11 
    app.service.secretkey=admin123
    3 
    baseRestUrl=http://10.13.1.172:8080/cssbase/rest
    12 
    getewayToken=slw-jwt-token
    13 
    baseRestUrl=http://gatewayproxy.mwr.cn

    单点登录1 · 2f4121d6ac - Gogs: Go Git Service
    Home Erkunden Hilfe
    Registrieren Anmelden
    XinChuang
    /
    admin_api
    Beobachten 2
    Favorit hinzufügen 0
    Fork 0
    Code Issues 0 Pull-Requests 0 Commits 231 Releases 0 Wiki
    Quellcode durchsuchen

    单点登录1

    zhuhaiwen vor 3 Jahren
    Ursprung
    2fbc4e803a
    Commit
    2f4121d6ac
    6 geänderte Dateien mit 600 neuen Zeilen und 36 gelöschten Zeilen
    Geteilte Ansicht Diff-Statistik anzeigen
    1. 111 0
        oa-app/src/main/java/com/css/oa/config/CasConfiguration.java
    2. 308 0
        oa-app/src/main/java/com/css/oa/config/CasConfigurationProperties.java
    3. 75 17
        oa-app/src/main/java/com/css/oa/config/WebSecurityConfig.java
    4. 22 0
        oa-app/src/main/java/com/css/oa/exam/admin/bean/LoginUser.java
    5. 64 19
        oa-app/src/main/java/com/css/oa/exam/admin/controller/AdminController.java
    6. 20 0
        pom.xml

    + 111 - 0
    oa-app/src/main/java/com/css/oa/config/CasConfiguration.java
    Datei anzeigen 

    @ -0,0 +1,111 @@
    1 
    package com.css.oa.config;
    2
    3 
    import org.jasig.cas.client.authentication.AuthenticationFilter;
    4 
    import org.jasig.cas.client.configuration.ConfigurationKeys;
    5 
    import org.jasig.cas.client.session.SingleSignOutFilter;
    6 
    import org.jasig.cas.client.session.SingleSignOutHttpSessionListener;
    7 
    import org.jasig.cas.client.util.HttpServletRequestWrapperFilter;
    8 
    import org.jasig.cas.client.validation.Cas30ProxyReceivingTicketValidationFilter;
    9 
    import org.springframework.beans.factory.annotation.Autowired;
    10 
    import org.springframework.boot.context.properties.EnableConfigurationProperties;
    11 
    import org.springframework.boot.web.servlet.FilterRegistrationBean;
    12 
    import org.springframework.boot.web.servlet.ServletListenerRegistrationBean;
    13 
    import org.springframework.context.annotation.Bean;
    14 
    import org.springframework.context.annotation.Configuration;
    15
    16 
    import javax.servlet.http.HttpSessionListener;
    17
    18 
    @Configuration
    19 
    @EnableConfigurationProperties(CasConfigurationProperties.class)
    20 
    public class CasConfiguration {
    21 
        @Autowired
    22 
        private CasConfigurationProperties autoconfig;
    23
    24 
        @Bean
    25 
        public ServletListenerRegistrationBean<HttpSessionListener> httpSessionListener() {
    26 
            ServletListenerRegistrationBean<HttpSessionListener> listener = new ServletListenerRegistrationBean<>();
    27 
            listener.setListener(new SingleSignOutHttpSessionListener());
    28 
            return listener;
    29 
        }
    30
    31 
        /**
    32 
         * 该过滤器用于实现单点登出功能,单点退出配置,一定要放在其他filter之前
    33 
         */
    34 
        @Bean
    35 
        public FilterRegistrationBean singleSignOutFilter() {
    36 
            FilterRegistrationBean filterRegistration = new FilterRegistrationBean();
    37 
            filterRegistration.setFilter(new SingleSignOutFilter());
    38 
            filterRegistration.addUrlPatterns("/*");
    39
    40 
            filterRegistration.addInitParameter(ConfigurationKeys.CAS_SERVER_URL_PREFIX.getName(), autoconfig.getCasServerUrlPrefix());
    41 
            filterRegistration.addInitParameter(ConfigurationKeys.SERVER_NAME.getName(), autoconfig.getServerName());
    42 
            filterRegistration.setOrder(1);
    43 
            return filterRegistration;
    44 
        }
    45
    46 
        /**
    47 
         * 该过滤器负责用户的认证工作
    48 
         */
    49 
        @Bean
    50 
        public FilterRegistrationBean authenticationFilter() {
    51 
            FilterRegistrationBean filterRegistration = new FilterRegistrationBean();
    52 
            filterRegistration.setFilter(new AuthenticationFilter());
    53 
            filterRegistration.addUrlPatterns("/*");
    54
    55 
            filterRegistration.addInitParameter(ConfigurationKeys.CAS_SERVER_LOGIN_URL.getName(), autoconfig.getCasServerLoginUrl());
    56 
            filterRegistration.addInitParameter(ConfigurationKeys.SERVER_NAME.getName(), autoconfig.getServerName());
    57 
            filterRegistration.addInitParameter(ConfigurationKeys.IGNORE_URL_PATTERN_TYPE.getName(), autoconfig.getIgnoreUrlPatternType());
    58 
            filterRegistration.addInitParameter(ConfigurationKeys.IGNORE_PATTERN.getName(), autoconfig.getIgnorePattern());
    59 
            filterRegistration.setOrder(2);
    60 
            return filterRegistration;
    61 
        }
    62
    63 
        /**
    64 
         * 该过滤器负责对Ticket的校验工作
    65 
         */
    66 
        @Bean
    67 
        public FilterRegistrationBean cas30ProxyReceivingTicketValidationFilter() {
    68 
            FilterRegistrationBean filterRegistration = new FilterRegistrationBean();
    69 
            filterRegistration.setFilter(new Cas30ProxyReceivingTicketValidationFilter());
    70 
            filterRegistration.addUrlPatterns("/*");
    71
    72 
            filterRegistration.addInitParameter(ConfigurationKeys.CAS_SERVER_URL_PREFIX.getName(), autoconfig.getCasServerUrlPrefix());
    73 
            filterRegistration.addInitParameter(ConfigurationKeys.SERVER_NAME.getName(), autoconfig.getServerName());
    74 
            filterRegistration.addInitParameter(ConfigurationKeys.REDIRECT_AFTER_VALIDATION.getName(), String.valueOf(autoconfig.isRedirectAfterValidation()));
    75 
            filterRegistration.addInitParameter(ConfigurationKeys.USE_SESSION.getName(), String.valueOf(autoconfig.isUseSession()));
    76 
            filterRegistration.addInitParameter(ConfigurationKeys.ENCODING.getName(), autoconfig.getEncoding());
    77 
            filterRegistration.setOrder(3);
    78 
            return filterRegistration;
    79 
        }
    80
    81 
        /**
    82 
         * 该过滤器对HttpServletRequest请求包装,
    83 
         * 可通过HttpServletRequest的getRemoteUser()方法获得登录用户的登录名
    84 
         */
    85 
        @Bean
    86 
        public FilterRegistrationBean httpServletRequestWrapperFilter() {
    87 
            FilterRegistrationBean filterRegistration = new FilterRegistrationBean();
    88 
            filterRegistration.setFilter(new HttpServletRequestWrapperFilter());
    89 
            filterRegistration.addUrlPatterns("/*");
    90
    91 
            filterRegistration.setOrder(4);
    92 
            return filterRegistration;
    93 
        }
    94
    95 
        /**
    96 
         * 该过滤器使得可以通过org.jasig.cas.client.util.AssertionHolder来获取用户的登录名。
    97 
         * 比如AssertionHolder.getAssertion().getPrincipal().getName()。
    98 
         * 这个类把Assertion信息放在ThreadLocal变量中,这样应用程序不在web层也能够获取到当前登录信息
    99 
         */
    100 
        /*@Bean
    101 
        public FilterRegistrationBean assertionThreadLocalFilter() {
    102 
            FilterRegistrationBean filterRegistration = new FilterRegistrationBean();
    103 
            filterRegistration.setFilter(new AssertionThreadLocalFilter());
    104 
            filterRegistration.addUrlPatterns("/*");
    105 
            filterRegistration.setOrder(5);
    106 
            return filterRegistration;
    107 
        }*/
    108
    109
    110
    111 
    }

    + 308 - 0
    oa-app/src/main/java/com/css/oa/config/CasConfigurationProperties.java
    Datei anzeigen 

    @ -0,0 +1,308 @@
    1 
    package com.css.oa.config;
    2
    3 
    import org.springframework.boot.context.properties.ConfigurationProperties;
    4
    5 
    /**
    6 
     * SingleSignOutFilter 配置如下:
    7 
     * <table>
    8 
     * <thead>
    9 
     * <tr>
    10 
     * <th>Property</th>
    11 
     * <th>Description</th>
    12 
     * <th>Required</th>
    13 
     * </tr>
    14 
     * </thead>
    15 
     * <tbody>
    16 
     * <tr>
    17 
     * <td><code>artifactParameterName</code></td>
    18 
     * <td>The ticket artifact parameter name. Defaults to <code>ticket</code></td>
    19 
     * <td>No</td>
    20 
     * </tr>
    21 
     * <tr>
    22 
     * <td><code>logoutParameterName</code></td>
    23 
     * <td>Defaults to <code>logoutRequest</code></td>
    24 
     * <td>No</td>
    25 
     * </tr>
    26 
     * <tr>
    27 
     * <td><code>frontLogoutParameterName</code></td>
    28 
     * <td>Defaults to <code>SAMLRequest</code></td>
    29 
     * <td>No</td>
    30 
     * </tr>
    31 
     * <tr>
    32 
     * <td><code>relayStateParameterName</code></td>
    33 
     * <td>Defaults to <code>RelayState</code></td>
    34 
     * <td>No</td>
    35 
     * </tr>
    36 
     * <tr>
    37 
     * <td><code>eagerlyCreateSessions</code></td>
    38 
     * <td>Defaults to <code>true</code></td>
    39 
     * <td>No</td>
    40 
     * </tr>
    41 
     * <tr>
    42 
     * <td><code>artifactParameterOverPost</code></td>
    43 
     * <td>Defaults to  <code>false</code></td>
    44 
     * <td>No</td>
    45 
     * </tr>
    46 
     * <tr>
    47 
     * <td><code>casServerUrlPrefix</code></td>
    48 
     * <td>URL to root of CAS Web application context.</td>
    49 
     * <td>Yes</td>
    50 
     * </tr></tbody></table>
    51 
     * --------------------------------------------</br>
    52 
     * AuthenticationFilter 配置如下:
    53 
     * <table>
    54 
     * <thead>
    55 
     * <tr>
    56 
     * <th>Property</th>
    57 
     * <th>Description</th>
    58 
     * <th>Required</th>
    59 
     * </tr>
    60 
     * </thead>
    61 
     * <tbody>
    62 
     * <tr>
    63 
     * <td><code>casServerLoginUrl</code></td>
    64 
     * <td>Defines the location of the CAS server login URL, i.e. <code>https://localhost:8443/cas/login</code></td>
    65 
     * <td>Yes</td>
    66 
     * </tr>
    67 
     * <tr>
    68 
     * <td><code>serverName</code></td>
    69 
     * <td>The name of the server this application is hosted on. Service URL will be dynamically constructed using this, i.e. <a href="https://localhost:8443" rel="nofollow">https://localhost:8443</a> (you must include the protocol, but port is optional if it's a standard port).</td>
    70 
     * <td>Yes</td>
    71 
     * </tr>
    72 
     * <tr>
    73 
     * <td><code>service</code></td>
    74 
     * <td>The service URL to send to the CAS server, i.e. <code>https://localhost:8443/yourwebapp/index.html</code></td>
    75 
     * <td>No</td>
    76 
     * </tr>
    77 
     * <tr>
    78 
     * <td><code>renew</code></td>
    79 
     * <td>specifies whether <code>renew=true</code> should be sent to the CAS server. Valid values are either <code>true/false</code> (or no value at all). Note that <code>renew</code> cannot be specified as local <code>init-param</code> setting.</td>
    80 
     * <td>No</td>
    81 
     * </tr>
    82 
     * <tr>
    83 
     * <td><code>gateway</code></td>
    84 
     * <td>specifies whether <code>gateway=true</code> should be sent to the CAS server. Valid values are either <code>true/false</code> (or no value at all)</td>
    85 
     * <td>No</td>
    86 
     * </tr>
    87 
     * <tr>
    88 
     * <td><code>artifactParameterName</code></td>
    89 
     * <td>specifies the name of the request parameter on where to find the artifact (i.e. <code>ticket</code>).</td>
    90 
     * <td>No</td>
    91 
     * </tr>
    92 
     * <tr>
    93 
     * <td><code>serviceParameterName</code></td>
    94 
     * <td>specifies the name of the request parameter on where to find the service (i.e. <code>service</code>)</td>
    95 
     * <td>No</td>
    96 
     * </tr>
    97 
     * <tr>
    98 
     * <td><code>encodeServiceUrl</code></td>
    99 
     * <td>Whether the client should auto encode the service url. Defaults to <code>true</code></td>
    100 
     * <td>No</td>
    101 
     * </tr>
    102 
     * <tr>
    103 
     * <td><code>ignorePattern</code></td>
    104 
     * <td>Defines the url pattern to ignore, when intercepting authentication requests.</td>
    105 
     * <td>No</td>
    106 
     * </tr>
    107 
     * <tr>
    108 
     * <td><code>ignoreUrlPatternType</code></td>
    109 
     * <td>Defines the type of the pattern specified. Defaults to <code>REGEX</code>. Other types are <code>CONTAINS</code>, <code>EXACT</code>.</td>
    110 
     * <td>No</td>
    111 
     * </tr>
    112 
     * <tr>
    113 
     * <td><code>gatewayStorageClass</code></td>
    114 
     * <td>The storage class used to record gateway requests</td>
    115 
     * <td>No</td>
    116 
     * </tr>
    117 
     * <tr>
    118 
     * <td><code>authenticationRedirectStrategyClass</code></td>
    119 
     * <td>The class name of the component to decide how to handle authn redirects to CAS</td>
    120 
     * <td>No</td>
    121 
     * </tr></tbody></table>
    122 
     * <p>
    123 
     * ---------------------------------------------------<br/>
    124 
     * Cas20ProxyReceivingTicketValidationFilter 配置如下:
    125 
     * <table>
    126 
     * <thead>
    127 
     * <tr>
    128 
     * <th>Property</th>
    129 
     * <th>Description</th>
    130 
     * <th>Required</th>
    131 
     * </tr>
    132 
     * </thead>
    133 
     * <tbody>
    134 
     * <tr>
    135 
     * <td><code>casServerUrlPrefix</code></td>
    136 
     * <td>The start of the CAS server URL, i.e. <code>https://localhost:8443/cas</code></td>
    137 
     * <td>Yes</td>
    138 
     * </tr>
    139 
     * <tr>
    140 
     * <td><code>serverName</code></td>
    141 
     * <td>The name of the server this application is hosted on. Service URL will be dynamically constructed using this, i.e. <code>https://localhost:8443</code> (you must include the protocol, but port is optional if it's a standard port).</td>
    142 
     * <td>Yes</td>
    143 
     * </tr>
    144 
     * <tr>
    145 
     * <td><code>renew</code></td>
    146 
     * <td>Specifies whether <code>renew=true</code> should be sent to the CAS server. Valid values are either <code>true/false</code> (or no value at all). Note that <code>renew</code> cannot be specified as local <code>init-param</code> setting.</td>
    147 
     * <td>No</td>
    148 
     * </tr>
    149 
     * <tr>
    150 
     * <td><code>redirectAfterValidation</code></td>
    151 
     * <td>Whether to redirect to the same URL after ticket validation, but without the ticket in the parameter. Defaults to <code>true</code>.</td>
    152 
     * <td>No</td>
    153 
     * </tr>
    154 
     * <tr>
    155 
     * <td><code>useSession</code></td>
    156 
     * <td>Whether to store the Assertion in session or not. If sessions are not used, tickets will be required for each request. Defaults to <code>true</code>.</td>
    157 
     * <td>No</td>
    158 
     * </tr>
    159 
     * <tr>
    160 
     * <td><code>exceptionOnValidationFailure</code></td>
    161 
     * <td>whether to throw an exception or not on ticket validation failure. Defaults to <code>true</code></td>
    162 
     * <td>No</td>
    163 
     * </tr>
    164 
     * <tr>
    165 
     * <td><code>proxyReceptorUrl</code></td>
    166 
     * <td>The URL to watch for <code>PGTIOU/PGT</code> responses from the CAS server. Should be defined from the root of the context. For example, if your application is deployed in <code>/cas-client-app</code> and you want the proxy receptor URL to be <code>/cas-client-app/my/receptor</code> you need to configure proxyReceptorUrl to be <code>/my/receptor</code>.</td>
    167 
     * <td>No</td>
    168 
     * </tr>
    169 
     * <tr>
    170 
     * <td><code>acceptAnyProxy</code></td>
    171 
     * <td>Specifies whether any proxy is OK. Defaults to <code>false</code>.</td>
    172 
     * <td>No</td>
    173 
     * </tr>
    174 
     * <tr>
    175 
     * <td><code>allowedProxyChains</code></td>
    176 
     * <td>Specifies the proxy chain. Each acceptable proxy chain should include a space-separated list of URLs (for exact match) or regular expressions of URLs (starting by the <code>^</code> character). Each acceptable proxy chain should appear on its own line.</td>
    177 
     * <td>No</td>
    178 
     * </tr>
    179 
     * <tr>
    180 
     * <td><code>proxyCallbackUrl</code></td>
    181 
     * <td>The callback URL to provide the CAS server to accept Proxy Granting Tickets.</td>
    182 
     * <td>No</td>
    183 
     * </tr>
    184 
     * <tr>
    185 
     * <td><code>proxyGrantingTicketStorageClass</code></td>
    186 
     * <td>Specify an implementation of the ProxyGrantingTicketStorage class that has a no-arg constructor.</td>
    187 
     * <td>No</td>
    188 
     * </tr>
    189 
     * <tr>
    190 
     * <td><code>sslConfigFile</code></td>
    191 
     * <td>A reference to a properties file that includes SSL settings for client-side SSL config, used during back-channel calls. The configuration includes keys for <code>protocol</code> which defaults to <code>SSL</code>, <code>keyStoreType</code>, <code>keyStorePath</code>, <code>keyStorePass</code>, <code>keyManagerType</code> which defaults to <code>SunX509</code> and <code>certificatePassword</code>.</td>
    192 
     * <td>No.</td>
    193 
     * </tr>
    194 
     * <tr>
    195 
     * <td><code>encoding</code></td>
    196 
     * <td>Specifies the encoding charset the client should use</td>
    197 
     * <td>No</td>
    198 
     * </tr>
    199 
     * <tr>
    200 
     * <td><code>secretKey</code></td>
    201 
     * <td>The secret key used by the <code>proxyGrantingTicketStorageClass</code> if it supports encryption.</td>
    202 
     * <td>No</td>
    203 
     * </tr>
    204 
     * <tr>
    205 
     * <td><code>cipherAlgorithm</code></td>
    206 
     * <td>The algorithm used by the <code>proxyGrantingTicketStorageClass</code> if it supports encryption. Defaults to <code>DESede</code></td>
    207 
     * <td>No</td>
    208 
     * </tr>
    209 
     * <tr>
    210 
     * <td><code>millisBetweenCleanUps</code></td>
    211 
     * <td>Startup delay for the cleanup task to remove expired tickets from the storage. Defaults to <code>60000 msec</code></td>
    212 
     * <td>No</td>
    213 
     * </tr>
    214 
     * <tr>
    215 
     * <td><code>ticketValidatorClass</code></td>
    216 
     * <td>Ticket validator class to use/create</td>
    217 
     * <td>No</td>
    218 
     * </tr>
    219 
     * <tr>
    220 
     * <td><code>hostnameVerifier</code></td>
    221 
     * <td>Hostname verifier class name, used when making back-channel calls</td>
    222 
     * <td>No</td>
    223 
     * </tr></tbody></table>
    224 
     */
    225 
    @ConfigurationProperties(prefix = "spring.cas")
    226 
    public class CasConfigurationProperties {
    227 
        private String casServerUrlPrefix = "http://10.1.193.115:8100/cas";
    228 
        private String casServerLoginUrl = casServerUrlPrefix + "/login";
    229 
        private String casServerLogoutUrl = casServerUrlPrefix + "/logout";
    230 
        private String serverName = "http://10.1.176.129:8081/zhbg";
    231 
        private boolean useSession = true;
    232 
        private boolean redirectAfterValidation = true;
    233 
        private String ignorePattern = "\\.(js|img|css)(\\?.*)?$";
    234 
        private String ignoreUrlPatternType = "REGEX";
    235 
        private String encoding = "UTF-8";
    236
    237 
        public String getCasServerUrlPrefix() {
    238 
            return casServerUrlPrefix;
    239 
        }
    240
    241 
        public void setCasServerUrlPrefix(String casServerUrlPrefix) {
    242 
            this.casServerUrlPrefix = casServerUrlPrefix;
    243 
        }
    244
    245 
        public String getCasServerLoginUrl() {
    246 
            return casServerLoginUrl;
    247 
        }
    248
    249 
        public void setCasServerLoginUrl(String casServerLoginUrl) {
    250 
            this.casServerLoginUrl = casServerLoginUrl;
    251 
        }
    252
    253 
        public String getCasServerLogoutUrl() {
    254 
            return casServerLogoutUrl;
    255 
        }
    256
    257 
        public void setCasServerLogoutUrl(String casServerLogoutUrl) {
    258 
            this.casServerLogoutUrl = casServerLogoutUrl;
    259 
        }
    260
    261 
        public String getServerName() {
    262 
            return serverName;
    263 
        }
    264
    265 
        public void setServerName(String serverName) {
    266 
            this.serverName = serverName;
    267 
        }
    268
    269 
        public boolean isUseSession() {
    270 
            return useSession;
    271 
        }
    272
    273 
        public void setUseSession(boolean useSession) {
    274 
            this.useSession = useSession;
    275 
        }
    276
    277 
        public boolean isRedirectAfterValidation() {
    278 
            return redirectAfterValidation;
    279 
        }
    280
    281 
        public void setRedirectAfterValidation(boolean redirectAfterValidation) {
    282 
            this.redirectAfterValidation = redirectAfterValidation;
    283 
        }
    284
    285 
        public String getIgnorePattern() {
    286 
            return ignorePattern;
    287 
        }
    288
    289 
        public void setIgnorePattern(String ignorePattern) {
    290 
            this.ignorePattern = ignorePattern;
    291 
        }
    292
    293 
        public String getIgnoreUrlPatternType() {
    294 
            return ignoreUrlPatternType;
    295 
        }
    296
    297 
        public void setIgnoreUrlPatternType(String ignoreUrlPatternType) {
    298 
            this.ignoreUrlPatternType = ignoreUrlPatternType;
    299 
        }
    300
    301 
        public String getEncoding() {
    302 
            return encoding;
    303 
        }
    304
    305 
        public void setEncoding(String encoding) {
    306 
            this.encoding = encoding;
    307 
        }
    308 
    }

    + 75 - 17
    oa-app/src/main/java/com/css/oa/config/WebSecurityConfig.java
    Datei anzeigen 

    @ -1,30 +1,88 @@
    1 1 
    package com.css.oa.config;
    2 2
    3 
    import org.jasig.cas.client.session.SingleSignOutHttpSessionListener;
    4 
    import org.jasig.cas.client.util.AbstractCasFilter;
    5 
    import org.jasig.cas.client.validation.AssertionImpl;
    6 
    import org.springframework.beans.factory.annotation.Autowired;
    7 
    import org.springframework.boot.autoconfigure.security.SecurityProperties;
    8 
    import org.springframework.boot.web.servlet.ServletListenerRegistrationBean;
    3 9 
    import org.springframework.context.annotation.Bean;
    4 10 
    import org.springframework.context.annotation.Configuration;
    5 
    import org.springframework.web.servlet.config.annotation.InterceptorRegistry;
    6 
    import org.springframework.web.servlet.config.annotation.WebMvcConfigurerAdapter;
    11 
    import org.springframework.core.annotation.Order;
    12 
    import org.springframework.security.authentication.AnonymousAuthenticationToken;
    13 
    import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
    14 
    import org.springframework.security.config.annotation.web.builders.HttpSecurity;
    15 
    import org.springframework.security.config.annotation.web.builders.WebSecurity;
    16 
    import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
    17 
    import org.springframework.security.core.Authentication;
    18 
    import org.springframework.security.core.context.SecurityContextHolder;
    19 
    import org.springframework.security.core.userdetails.User;
    20 
    import org.springframework.security.provisioning.UserDetailsManager;
    21 
    import org.springframework.security.web.authentication.SavedRequestAwareAuthenticationSuccessHandler;
    22 
    import org.springframework.web.cors.CorsUtils;
    23
    24 
    import javax.servlet.ServletException;
    25 
    import javax.servlet.http.HttpServletRequest;
    26 
    import javax.servlet.http.HttpServletResponse;
    27 
    import java.io.IOException;
    7 28
    8 
    /**
    9 
     * @author hjf
    10 
     * @version V1.0
    11 
     * @description: TODO
    12 
     * @date 2019/11/25 11:25
    13 
     */
    14 29 
    @Configuration
    15 
    public class WebSecurityConfig extends /*WebMvcConfigurationSupport*/WebMvcConfigurerAdapter {
    30 
    //@Order(SecurityProperties.ACCESS_OVERRIDE_ORDER)
    31 
    @Order(SecurityProperties.BASIC_AUTH_ORDER)
    32 
    public class WebSecurityConfig extends WebSecurityConfigurerAdapter{
    33 
        @Autowired
    34 
        private CasConfigurationProperties autoconfig;
    35
    16 36 
        @Bean
    17 
        public RedisSessionInterceptor getSessionInterceptor(){
    18 
            return  new RedisSessionInterceptor();
    37 
        public UserDetailsManager userDetailsService(AuthenticationManagerBuilder auth) throws Exception {
    38 
            auth.inMemoryAuthentication().withUser("demo").password("demo").roles("USER");
    39 
            return (UserDetailsManager) auth.getDefaultUserDetailsService();
    19 40 
        }
    41
    20 42 
        @Override
    21 
        public void addInterceptors(InterceptorRegistry registry) {
    22 
           //拦截所有请求
    23 
           //registry.addInterceptor(getSessionInterceptor()).excludePathPatterns("/login**").addPathPatterns("/**");
    24 
           //放行所有请求
    25 
            registry.addInterceptor(getSessionInterceptor()).excludePathPatterns("/**");
    43 
        public void configure(WebSecurity web) throws Exception {
    44 
            web.ignoring().antMatchers("/css/**", "/js/**");
    45 
        }
    26 46
    27 
            super.addInterceptors(registry);
    47 
        @Override
    48 
        protected void configure(HttpSecurity http) throws Exception {
    49 
            http.headers().frameOptions().disable();
    50 
            http.csrf().disable();
    51 
            http.httpBasic().disable();
    52 
            http.formLogin()
    53 
                .loginPage("/casLogin")
    54 
                .loginProcessingUrl("/login")
    55 
                .defaultSuccessUrl("/index")
    56 
                .successHandler(new SavedRequestAwareAuthenticationSuccessHandler(){
    57 
                    @Override
    58 
                    public void onAuthenticationSuccess(HttpServletRequest request,
    59 
                                                        HttpServletResponse response, Authentication authentication)
    60 
                        throws ServletException, IOException {
    61 
                        super.onAuthenticationSuccess(request, response, authentication);
    62 
                        Authentication auth = SecurityContextHolder.getContext().getAuthentication();
    63 
                        if (!(auth instanceof AnonymousAuthenticationToken)) {
    64 
                            User user = (User) auth.getPrincipal();
    65 
                            request.getSession().setAttribute(AbstractCasFilter.CONST_CAS_ASSERTION, new AssertionImpl(user.getUsername()));
    66 
                        }
    67 
                    }
    68 
                })
    69 
                .permitAll();
    70 
            http.authorizeRequests()
    71 
                .requestMatchers(CorsUtils::isPreFlightRequest).permitAll()
    72 
                .antMatchers("/register", "/casLogin").permitAll()
    73 
                .anyRequest().authenticated();
    74 
            http.logout()
    75 
                .logoutUrl("/logout")
    76 
                .logoutSuccessUrl(autoconfig.getCasServerLogoutUrl() + "?service=" + autoconfig.getServerName() + "/index")
    77 
                .permitAll();
    78 
            http.antMatcher("/**");
    28 79 
        }
    29 80
    81 
        @Bean
    82 
        public ServletListenerRegistrationBean<SingleSignOutHttpSessionListener> singleSignOutHttpSessionListener(){
    83 
            ServletListenerRegistrationBean<SingleSignOutHttpSessionListener> servletListenerRegistrationBean =
    84 
                new ServletListenerRegistrationBean<>();
    85 
            servletListenerRegistrationBean.setListener(new SingleSignOutHttpSessionListener());
    86 
            return servletListenerRegistrationBean;
    87 
        }
    30 88 
    }

    + 22 - 0
    oa-app/src/main/java/com/css/oa/exam/admin/bean/LoginUser.java
    Datei anzeigen 

    @ -0,0 +1,22 @@
    1 
    package com.css.oa.exam.admin.bean;
    2
    3 
    public class LoginUser {
    4 
        private String username;
    5 
        private String password;
    6
    7 
        public String getUsername() {
    8 
            return username;
    9 
        }
    10
    11 
        public void setUsername(String username) {
    12 
            this.username = username;
    13 
        }
    14
    15 
        public String getPassword() {
    16 
            return password;
    17 
        }
    18
    19 
        public void setPassword(String password) {
    20 
            this.password = password;
    21 
        }
    22 
    }

    + 64 - 19
    oa-app/src/main/java/com/css/oa/exam/admin/controller/AdminController.java
    Datei anzeigen 

    @ -1,34 +1,79 @@
    1 1 
    package com.css.oa.exam.admin.controller;
    2 2
    3 
    import com.css.oa.exam.admin.bean.LoginUser;
    3 4 
    import com.css.oa.exam.base.BaseController;
    4 
    import com.css.oa.exam.admin.service.AdminService;
    5 5 
    import io.swagger.annotations.Api;
    6 6 
    import org.springframework.beans.factory.annotation.Autowired;
    7 
    import org.springframework.security.authentication.AnonymousAuthenticationToken;
    8 
    import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
    9 
    import org.springframework.security.core.Authentication;
    10 
    import org.springframework.security.core.authority.AuthorityUtils;
    11 
    import org.springframework.security.core.context.SecurityContextHolder;
    12 
    import org.springframework.security.core.userdetails.User;
    13 
    import org.springframework.security.core.userdetails.UserDetailsService;
    14 
    import org.springframework.security.provisioning.UserDetailsManager;
    15 
    import org.springframework.ui.Model;
    7 16 
    import org.springframework.web.bind.annotation.*;
    8 17
    9 
    @Api(tags = {"模拟切换用户"})
    18 
    import javax.servlet.http.HttpServletRequest;
    19
    20 
    @Api(tags = {"管理员登录"})
    10 21 
    @RestController
    11 22 
    @RequestMapping("/admin")
    12 23 
    public class AdminController extends BaseController {
    13 24
    14 25 
        @Autowired
    15 
        private AdminService mService;
    16
    17 
    //    @ApiOperation(value = "增加公告接口")
    18 
    //    @PostMapping("/login")
    19 
    //    public Result login(HttpServletResponse response,
    20 
    //                        @RequestParam("username") String username,
    21 
    //                        @RequestParam("password") String password) {
    22 
    //        Result<Map> result;
    23 
    //        try {
    24 
    //            String token = mService.login(response, username, password);
    25 
    //            result = setResult(token);
    26 
    //        } catch (Exception e) {
    27 
    //            result = setErr(e.getMessage());
    28 
    //            e.printStackTrace();
    29 
    //        }
    30 
    //        return result;
    31 
    //    }
    26 
        private UserDetailsService userDetailsService;
    27
    28 
        @GetMapping("*")
    29 
        public String welcome() {
    30 
            return "redirect:casLogin";
    31 
        }
    32
    33 
        @GetMapping("index")
    34 
        public String index() {
    35 
            return "welcome";
    36 
        }
    37
    38 
        @GetMapping("login")
    39 
        public String loginPage(Model model) {
    40 
            Authentication auth = SecurityContextHolder.getContext().getAuthentication();
    41 
            if (!(auth instanceof AnonymousAuthenticationToken)) {
    42 
                return "redirect:index";
    43 
            }
    44 
            LoginUser user = new LoginUser();
    45 
            model.addAttribute("user",user);
    46 
            return "login";
    47 
        }
    48
    49 
        @GetMapping("casLogin")
    50 
        public String casLogin(HttpServletRequest request) {
    51 
            if (request.getRemoteUser() != null) {
    52 
                Authentication auth = new UsernamePasswordAuthenticationToken(request.getRemoteUser(), request.getRemoteUser(),
    53 
                        AuthorityUtils.createAuthorityList("USER"));
    54 
                SecurityContextHolder.getContext().setAuthentication(auth);
    55 
                return "redirect:index";
    56 
            }
    57 
            return "redirect:login";
    58 
        }
    59
    60 
        @GetMapping("register")
    61 
        public String registerPage(Model model) {
    62 
            LoginUser user = new LoginUser();
    63 
            model.addAttribute("user",user);
    64 
            return "register";
    65 
        }
    32 66
    67 
        @PostMapping("register")
    68 
        public String register(LoginUser user) {
    69 
            UserDetailsManager userDetailsManager = (UserDetailsManager) userDetailsService;
    70 
            boolean exists = userDetailsManager.userExists(user.getUsername());
    71 
            if (!exists) {
    72 
                userDetailsManager.createUser(new User(user.getUsername(), user.getPassword(), AuthorityUtils.createAuthorityList("USER")));
    73 
                return "redirect:register?success";
    74 
            } else {
    75 
                return "redirect:register?error";
    76 
            }
    77 
        }
    33 78
    34 79 
    }

    + 20 - 0
    pom.xml
    Datei anzeigen 

    @ -50,6 +50,26 @@
    50 50 
        </properties>
    51 51
    52 52 
        <dependencies>
    53 
            <dependency>
    54 
                <groupId>org.jasig.cas.client</groupId>
    55 
                <artifactId>cas-client-core</artifactId>
    56 
                <version>3.5.1</version>
    57 
            </dependency>
    58 
            <dependency>
    59 
                <groupId>org.springframework.security</groupId>
    60 
                <artifactId>spring-security-config</artifactId>
    61 
                <version>4.1.0.RELEASE</version>
    62 
            </dependency>
    63 
            <dependency>
    64 
                <groupId>org.springframework.security</groupId>
    65 
                <artifactId>spring-security-core</artifactId>
    66 
                <version>4.1.0.RELEASE</version>
    67 
            </dependency>
    68 
            <dependency>
    69 
                <groupId>org.springframework.security</groupId>
    70 
                <artifactId>spring-security-web</artifactId>
    71 
                <version>4.1.0.RELEASE</version>
    72 
            </dependency>
    53 73 
            <!--        llg加的测试依赖-->
    54 74 
            <dependency>
    55 75 
                <groupId>junit</groupId>

    XinChuang/client_web_mobile - Gogs: Go Git Service
    ホーム エスクプローラ ヘルプ
    登録 サインイン
    XinChuang
    /
    client_web_mobile
    Watch 2
    Star 0
    Fork 0
    コード 課題 0 プルリクエスト 0 コミット 23 リリース 0 Wiki
    ツリー: 03fbfb1b90
    ブランチ タグ

    1 コミット (03fbfb1b9068cebec792971b4d3b2813b43796bf)

    作者 SHA1 メッセージ 日付
      yy 56b13f5ff5 首页 3 年 前