目录

CAS 5.3服务器搭建

CAS 5.3服务器搭建

一:CAS5.3 下载

下载地址:
GitHub下载地址:https://github.com/apereo/cas-overlay-template

版本选择:
https://oss.lumingbao.cn/images/20220317/a32cea90163449fda1a3e38c38efb7a1.png?imageView2/0/interlace/1/q/50|imageslim

点击下载:
https://oss.lumingbao.cn/images/20220317/f161712252864601b2fe9a9d1dfa2988.png?imageView2/0/interlace/1/q/50|imageslim

二:CAS5.3 编译

运行构建脚本

切换至cas5.3 源码地址(cas-overlay-template-5.3),执行如下指令:./build.sh run
编译过程中根据不同系统,可能会有不同的报错,具体按照报错内容处理

https://oss.lumingbao.cn/images/20220317/3594d3e6eb0341219aaaefa1dafdcee6.png?imageView2/0/interlace/1/q/50|imageslim

备注说明:Windows环境运行build.cmd,Linux环境运行build.sh

运行构建提示错误信息:Caused by: java.io.FileNotFoundException:\etc\cas\thekeystore (系统找不到指定的文件)

Caused by: java.io.FileNotFoundException: \etc\cas\thekeystore (系统找不到指定的文件。)
        at java.io.FileInputStream.open0(Native Method) ~[?:1.8.0_211]
        at java.io.FileInputStream.open(Unknown Source) ~[?:1.8.0_211]
        at java.io.FileInputStream.<init>(Unknown Source) ~[?:1.8.0_211]
        at java.io.FileInputStream.<init>(Unknown Source) ~[?:1.8.0_211]
        at sun.net.www.protocol.file.FileURLConnection.connect(Unknown Source) ~[?:1.8.0_211]
        at sun.net.www.protocol.file.FileURLConnection.getInputStream(Unknown Source) ~[?:1.8.0_211]
        at org.apache.tomcat.util.file.ConfigFileLoader.getInputStream(ConfigFileLoader.java:89) ~[tomcat-embed-core-8.5.47.jar!/:8.5.47]
        at org.apache.tomcat.util.net.SSLUtilBase.getStore(SSLUtilBase.java:197) ~[tomcat-coyote-8.5.47.jar!/:8.5.47]
        at org.apache.tomcat.util.net.SSLHostConfigCertificate.getCertificateKeystore(SSLHostConfigCertificate.java:206) ~[tomcat-coyote-8.5.47.jar!/:8.5.47]
        at org.apache.tomcat.util.net.SSLUtilBase.getKeyManagers(SSLUtilBase.java:282) ~[tomcat-coyote-8.5.47.jar!/:8.5.47]
        at org.apache.tomcat.util.net.SSLUtilBase.createSSLContext(SSLUtilBase.java:246) ~[tomcat-coyote-8.5.47.jar!/:8.5.47]
        at org.apache.tomcat.util.net.AbstractJsseEndpoint.createSSLContext(AbstractJsseEndpoint.java:98) ~[tomcat-coyote-8.5.47.jar!/:8.5.47]
        at org.apache.tomcat.util.net.AbstractJsseEndpoint.initialiseSsl(AbstractJsseEndpoint.java:72) ~[tomcat-coyote-8.5.47.jar!/:8.5.47]
        at org.apache.tomcat.util.net.NioEndpoint.bind(NioEndpoint.java:244) ~[tomcat-coyote-8.5.47.jar!/:8.5.47]
        at org.apache.tomcat.util.net.AbstractEndpoint.start(AbstractEndpoint.java:1191) ~[tomcat-coyote-8.5.47.jar!/:8.5.47]
        at org.apache.coyote.AbstractProtocol.start(AbstractProtocol.java:591) ~[tomcat-coyote-8.5.47.jar!/:8.5.47]
        at org.apache.catalina.connector.Connector.startInternal(Connector.java:1018) ~[tomcat-catalina-8.5.47.jar!/:8.5.47]
        ... 21 more

错误产生原因:\etc\cas\thekeystore是生成的密钥文件的,因为这里不使用加密,所以需要将cas的https协议忽略并将http协议设置为允许

解决办法:支持http协议配置

1)在cas-overlay-template-5.3目录下创建src文件夹
https://oss.lumingbao.cn/images/20220317/9e4e95bdadfe481099783586e76cf2b8.png?imageView2/0/interlace/1/q/50|imageslim

2)在src文件夹中,依次创建main\resources目录,最终结果如下
https://oss.lumingbao.cn/images/20220317/6a38cf89529a4dbda6f072f6bd376514.png?imageView2/0/interlace/1/q/50|imageslim

3)拷贝所需文件
进入cas-overlay-template-5.3\target\cas\WEB-INF\classes目录将services文件夹与application.properties文件复制到上一步的cas-overlay-template-5.3\src\main\resources文件中,如下截图:
https://oss.lumingbao.cn/images/20220317/19d55caef50d439d823ffc8973108677.png?imageView2/0/interlace/1/q/50|imageslim

4)修改复制后的application.properties文件
注释ssl 协议相关配置:
https://oss.lumingbao.cn/images/20220317/2fca6d60a23a4a219ac189b555b0e8f3.png?imageView2/0/interlace/1/q/50|imageslim

文件最末尾加入以下2个配置项,如下图:

cas.tgc.secure=false
cas.serviceRegistry.initFromJson=true

修改services\HTTPSandIMAPS-10000001.json
https://oss.lumingbao.cn/images/20220317/1bed25c56ccc4a97bcdc668cfa4c30dd.png?imageView2/0/interlace/1/q/50|imageslim

增加http协议配置
https://oss.lumingbao.cn/images/20220317/a1a1f3e26069472291e92567a01b3253.png?imageView2/0/interlace/1/q/50|imageslim

再次执行构建脚本
./build.sh run

三:CAS验证

浏览器访问CAS

打开http://localhost:8443/cas

右边的两个提示框,黄色代表cas server没有使用密钥加密,蓝色提示当前登录账户是静态验证,不影响测试

https://oss.lumingbao.cn/images/20220317/1d62b3f7f5ff40838242d912893d8af6.png?imageView2/0/interlace/1/q/50|imageslim

测试使用默认用户名密码进行登录验证
输入默认用户名casuser与密码Mellon,点击登录按钮

备注说明:默认用户名与密码存储在cas-overlay-template-5.3\src\main\resources\application.properties文件,cas.authn.accept.users=casuser::Mellon

https://oss.lumingbao.cn/images/20220317/4f92c3509e214f41806529938c9788c6.png?imageView2/0/interlace/1/q/50|imageslim

https://oss.lumingbao.cn/images/20220317/22876a88c44b4bbcaa301c18d8871cc9.png?imageView2/0/interlace/1/q/50|imageslim

至此,cas 5.3 服务端搭建成功

评论