首页 > 学院 > 开发设计 > 正文

单点登录SSO(同父域实现)

2019-11-08 02:09:17
字体:
来源:转载
供稿:网友

1.同父域单点登录实现流程

这里写图片描述 备:在.x.com这个域中有三个服务器,dome1项目和dome2项目,包括一个校验chekck,实现在不同的项目中单点登录

2.使用不同包和路径模拟三个服务器

这里写图片描述这里写图片描述

3.统一登录接口(login.jsp

<%@ page language="java" contentType="text/html; charset=utf-8" pageEncoding="utf-8"%><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"><html><head><meta http-equiv="Content-Type" content="text/html; charset=utf-8"><title>dome1和dome2的统一登录接口</title></head><body> <center> <h1>统一登录</h1> <!-- action这里请求的是一个校验服务器接口,因为属于不同服务器,所以需要全路径 --> <form action="http://check.x.com/doLogin.action" method="post"> <span>用户名:</span> <input type="text" name="username"/> <span>密码:</span> <input type="passWord" name="password"/> <!--隐藏表单,用于保存我们要跳转的页面 --> <input type="hidden" name="getUrl" value="${getUrl}"/> <input type="submit" value="登录"/> </form> </center></body></html>

4.登录Action(SSOAction.java)

package check.x.com;import java.io.IOException;import javax.servlet.http.Cookie;import javax.servlet.http.HttpServletResponse;import org.apache.struts2.ServletActionContext;import com.opensymphony.xwork2.ActionSupport;import check.x.com.util.SSOCheck;/* * cookie的校验服务器 */public class SSOAction extends ActionSupport { PRivate String username; private String password; private String getUrl; public String getGetUrl() { return getUrl; } public void setGetUrl(String getUrl) { this.getUrl = getUrl; } public String getUsername() { return username; } public void setUsername(String username) { this.username = username; } public String getPassword() { return password; } public void setPassword(String password) { this.password = password; } //发送cookiename 和cookievalue过去校验 private String cookieName; private String cookieValue; public String getCookieName() { return cookieName; } public void setCookieName(String cookieName) { this.cookieName = cookieName; } public String getCookieValue() { return cookieValue; } public void setCookieValue(String cookieValue) { this.cookieValue = cookieValue; } /* * doLogin */ public String doLogin() { boolean flag = SSOCheck.isLogin(username, password); if(flag) { Cookie cookie = new Cookie("ssocookie","sso"); //因为现在是在不同的域,所以需要把cookie设置到顶级中 cookie.setDomain(".x.com");//主要 cookie.setPath("/"); HttpServletResponse response = ServletActionContext.getResponse(); response.addCookie(cookie); return SUCCESS; } return null; } /* * 用于别的域校验cookie */ public void check() throws IOException { boolean flag = SSOCheck.isCookie(cookieName, cookieValue); String result = "0";//保存cookie是否校验成功 if(flag) { result = "1";//成功 } HttpServletResponse response = ServletActionContext.getResponse(); response.getWriter().print(result);//吧校验结果发送到客户端 response.getWriter().close(); }}

5.工具类(SSOCheck.java)包括登录验证和校验接口

package check.x.com.util;import javax.servlet.http.Cookie;import javax.servlet.http.HttpServletRequest;/* * 工具 */public class SSOCheck { private static final String USERNAME = "zhangying"; private static final String PASSWORD = "123"; public static boolean isLogin(String username,String password) { if(username.equals(USERNAME) && password.equals(PASSWORD)) return true; return false; } /* * 用于校验cookie */ public static boolean isCookie(String cookieName,String cookieValue) { //直接校验 if(cookieName.equals("ssocookie") && cookieValue.equals("sso")) { return true; } return false; }}

6.DOME1和DOME2的主页(index1.jsp index2.jsp)

index1.jsp<%@ page language="java" contentType="text/html; charset=utf-8" pageEncoding="utf-8"%><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"><html><head><meta http-equiv="Content-Type" content="text/html; charset=utf-8"><title>欢迎访问dome1</title></head><body> <h1>这里时dome1的主页</h1></body></html>index2.jsp<%@ page language="java" contentType="text/html; charset=utf-8" pageEncoding="utf-8"%><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"><html><head><meta http-equiv="Content-Type" content="text/html; charset=utf-8"><title>欢迎访问dome2</title></head><body> <h1>这里时dome2的主页</h1></body></html>

7..DOME1和DOME2的Action(DOME1.java DOME2.java)

DOME1.javapackage dome1.x.com;import javax.servlet.http.Cookie;import javax.servlet.http.HttpServletRequest;import org.apache.struts2.ServletActionContext;import com.opensymphony.xwork2.ActionSupport;import dome1.x.com.util.DOME1Tool;public class DOME1 extends ActionSupport { private String getUrl; /* * dome1 */ public String main() { HttpServletRequest request = ServletActionContext.getRequest(); //获取cookie Cookie[] cookies = request.getCookies(); if(cookies!=null) { for(Cookie c:cookies) { if(c.getName().equals("ssocookie")) { //url是校验服务器的地址 String result = DOME1Tool.doGet("http://check.x.com/check.action", c.getName(), c.getValue()); if(result.equals("1"))//存在cookie { return SUCCESS; } } } } getUrl = "http://dome1.x.com/main.action";//请求后需要回来的这个域 return LOGIN; }}DOME2.javapackage dome2.x.com;import javax.servlet.http.Cookie;import javax.servlet.http.HttpServletRequest;import org.apache.struts2.ServletActionContext;import com.opensymphony.xwork2.ActionSupport;import dome2.x.com.util.DOME2Tool;public class DOME2 extends ActionSupport { private String getUrl; /* * dome1 */ public String main() { HttpServletRequest request = ServletActionContext.getRequest(); //获取cookie Cookie[] cookies = request.getCookies(); if(cookies!=null) { for(Cookie c:cookies) { if(c.getName().equals("ssocookie")) { //url是校验服务器的地址 String result = DOME2Tool.doGet("http://check.x.com/check.action", c.getName(), c.getValue()); if(result.equals("1"))//存在cookie { return SUCCESS; } } } } getUrl = "http://dome2.x.com/main.action";//请求后需要回来的这个域 return LOGIN; }}

8.DOME1和DOME2的工具(DOME1Tool.java DOME2Tool.java)

DOME1Tool.javapackage dome1.x.com.util;import java.awt.image.BufferStrategy;import java.io.BufferedReader;import java.io.IOException;import java.io.InputStream;import java.io.InputStreamReader;import java.net.HttpURLConnection;import java.net.URL;import org.xml.sax.InputSource;import antlr.InputBuffer;/* * dome1的工具 */public class DOME1Tool { /* * 用于dome1向校验服务器通信 */ public static String doGet(String url,String cookieName,String cookieValue) { StringBuffer sb = new StringBuffer(); HttpURLConnection httpURLConnection = null; try{ URL urls = new URL(url+"?cookieName="+cookieName+"&cookieValue="+cookieValue); httpURLConnection = (HttpURLConnection) urls.openConnection();//打开通信 httpURLConnection.setRequestMethod("GET");//设置通信方式 httpURLConnection.connect();//开始通信 InputStream is = httpURLConnection.getInputStream(); InputStreamReader isr = new InputStreamReader(is); BufferedReader br = new BufferedReader(isr); String temp = null; while((temp=br.readLine())!=null) { sb.append(temp); } br.close(); isr.close(); is.close(); }catch (IOException e) { e.printStackTrace(); }finally{ if(httpURLConnection!=null) { httpURLConnection.disconnect();//关闭通信 } } return sb.toString(); }}DOME2Tool.javapackage dome2.x.com.util;import java.awt.image.BufferStrategy;import java.io.BufferedReader;import java.io.IOException;import java.io.InputStream;import java.io.InputStreamReader;import java.net.HttpURLConnection;import java.net.URL;import org.xml.sax.InputSource;import antlr.InputBuffer;/* * dome1的工具 */public class DOME2Tool { /* * 用于dome1向校验服务器通信 */ public static String doGet(String url,String cookieName,String cookieValue) { StringBuffer sb = new StringBuffer(); HttpURLConnection httpURLConnection = null; try{ URL urls = new URL(url+"?cookieName="+cookieName+"&cookieValue="+cookieValue); httpURLConnection = (HttpURLConnection) urls.openConnection();//打开通信 httpURLConnection.setRequestMethod("GET");//设置通信方式 httpURLConnection.connect();//开始通信 InputStream is = httpURLConnection.getInputStream(); InputStreamReader isr = new InputStreamReader(is); BufferedReader br = new BufferedReader(isr); String temp = null; while((temp=br.readLine())!=null) { sb.append(temp); } br.close(); isr.close(); is.close(); }catch (IOException e) { e.printStackTrace(); }finally{ if(httpURLConnection!=null) { httpURLConnection.disconnect();//关闭通信 } } return sb.toString(); }}

9.struts.xml中的配置(struts.xml)

<!DOCTYPE struts PUBLIC "-//Apache Software Foundation//DTD Struts Configuration 2.5//EN" "http://struts.apache.org/dtds/struts-2.5.dtd"><struts> <package name="sso" extends="struts-default" namespace="/"> <action name="doLogin" class="check.x.com.SSOAction" method="doLogin"> <!-- type设置为请求转发,转发到我们要跳转的页面 --> <result name="success" type="redirect">${getUrl}</result> </action> <!-- 配置校验服务器的校验 --> <action name="check" class="check.x.com.SSOAction" method="check"></action> </package> <package name="dome1" extends="struts-default" namespace="/"> <action name="dome1" class="dome1.x.com.DOME1" method="main"> <result name="success">/index1.jsp</result> <result name="login">/login.jsp</result> </action> </package> <package name="dome2" extends="struts-default" namespace="/"> <action name="dome2" class="dome2.x.com.DOME2" method="main"> <result name="success">/index2.jsp</result> <result name="login">/login.jsp</result> </action> </package></struts>

10.测试

访问:http://dome1.x.com/main.action http://dome2.x.com/main.action

在没有登录之前,他们都会跳转到登录页面 只要在其中一个登录成功后,再刷新第二个项目便不需要登录了

上一篇:Spring 和Struts2 整合 特别需要关注Session 关闭的问题:解决方法是使用 OpenSessionInViewFilter

下一篇:转: mmap文件映射内存分析

发表评论 共有条评论
用户名: 密码:
验证码: 匿名发表
学习交流
更多

索泰发布一款GTX 1070 Mini迷你版本:小机

索泰发布一款GTX 1070 Mini迷你版本:小机箱大爱...
热门图片
更多
猜你喜欢的新闻
猜你喜欢的关注

新闻热点

荣耀总裁赵明乌镇演讲:荣耀首款5G手机V30下月发布
2019-10-23 09:17:05
搜狐张朝阳:回归媒体是搜狐重新崛起的关键
2019-10-21 09:20:02
华为轮值董事长郭平:虚拟技术创造现实价值
2019-10-21 09:00:12
滴滴英文服务上线两周年 用户已超200万
2019-09-26 08:57:12
华为推出全球至快AI训练集群Atlas900
2019-09-25 08:46:36
马斯克:特斯拉正组建中国技术团队
2019-09-25 08:15:43

疑难解答

图片精选

网友关注

关于本站 - 网上投稿 - 商务合作 - 隐私政策 - 网站地图
Copyright © 2008 - 2019 VEVB.COM. All Rights Reserved.武林网 版权所有