CAS默认的登录页面样式如下,只有用户名与密码两项验证项目。

现在需要为首页登录加上验证码功能。

第一步:首页对默认登录页面的样式进行了调整,使其看上去还算美观。

在页面上加上了验证码项目。

第二步:导入验证码生成工具包及生成验证码配置

pom.xml中加入如下配置

<dependency>

    <groupId>com.google.code.kaptcha</groupId>

    <artifactId>kaptcha</artifactId>

    <version>2.3.2</version>

</dependency>

web.xml中加入如下配置(只配置了宽高度等其他默认)

    <servlet>

        <servlet-name>captchacode</servlet-name>

        <servlet-class>com.google.code.kaptcha.servlet.KaptchaServlet</servlet-class>

        <init-param>

            <description>边框粗细度。必须是一个大于0的值</description>

            <param-name>kaptcha.border.thickness</param-name>

            <param-value>1</param-value>

        </init-param>

        <init-param>

            <description>图片的宽度</description>

            <param-name>kaptcha.image.width</param-name>

            <param-value>140</param-value>

        </init-param>

        <init-param>

            <description>图片的高度</description>

            <param-name>kaptcha.image.height</param-name>

            <param-value>55</param-value>

        </init-param>

    </servlet>

    <servlet-mapping>

        <servlet-name>captchacode</servlet-name>

        <url-pattern>/captchacode</url-pattern>

    </servlet-mapping>

登录页jsp中

<form:input cssClass="required" cssErrorClass="error" id="imgverifycode" path="imgverifycode" htmlEscape="true" autocomplete="off" placeholder="输入验证码" />

<img id="cimg" src="${base_path}/captchacode" onclick="refreshcaptchacode(this)" title="看不清?点击更换另一个。"/>

JavaScript:

function refreshcaptchacode(obj) {

    obj.setAttribute("src", base_path+ "/captchacode?date=" + new Date());

}

第三步:CAS源码需要做哪些修改?

1.首先将新增项目imgverifycode绑定到表单

打开login-webflow.xml,找到这一段

    <view-state id="viewLoginForm" view="casLoginView" model="credentials">

        <binder>

            <binding property="username" />

            <binding property="password" />

        </binder>

        <on-entry>

            <set name="viewScope.commandName" value="'credentials'" />

        </on-entry>

        <transition on="submit" bind="true" validate="true" to="realSubmit">

            <evaluate expression="authenticationViaFormAction.doBind(flowRequestContext, flowScope.credentials)" />

        </transition>

    </view-state>

修改为(注意红色加大部分):

    <view-state id="viewLoginForm" view="casLoginView" model="credentials">

        <binder>

            <binding property="username" />

            <binding property="password" />

            <binding property="imgverifycode" />

        </binder>

        <on-entry>

            <set name="viewScope.commandName" value="'credentials'" />

        </on-entry>

        <transition on="submit" bind="true" validate="true" to="imgverifycodeValidate">

            <evaluate expression="authenticationViaFormAction.doBind(flowRequestContext, flowScope.credentials)" />

        </transition>

    </view-state>

    <!--  并增加了下面这一段代码 -->

    <action-state id="imgverifycodeValidate">

        <evaluate

            expression="authenticationViaFormAction.validatorCode(flowRequestContext, flowScope.credentials, messageContext)" />

        <transition on="error" to="generateLoginTicket" />

        <transition on="success" to="realSubmit" />

    </action-state>

主要是在登录的工作流中加上了 验证码提交绑定以及验证码验证处理。

其次,在UsernamePasswordCredentials.java中添加验证码字段。

    /** The imgverifycode. */

    @NotNull

    @Size(min = 1, message = "required.imgverifycode")

    private String imgverifycode;

对于的修改一下equals,hascode方法。

    @Override

    public boolean equals(final Object o)

    {

        if (this == o)

            return true;

        if (o == null || getClass() != o.getClass())

            return false;

        UsernamePasswordCredentials that = (UsernamePasswordCredentials) o;

        if (username != null ? !username.equals(that.username)

                : that.username != null)

            return false;

        if (password != null ? !password.equals(that.password)

                : that.password != null)

            return false;

        if (imgverifycode != null ? !imgverifycode.equals(that.imgverifycode)

                : that.imgverifycode != null)

            return false;

        return true;

    }

    @Override

    public int hashCode()

    {

        int result = username != null ? username.hashCode() : 0;

        result = 31 * result + (password != null ? password.hashCode() : 0);

        result = 31 * result

                + (imgverifycode != null ? imgverifycode.hashCode() : 0);

        return result;

    }

2.添加验证逻辑

注意上一段配置加上了一个action-state:imgverifycodeValidate,执行的是AuthenticationViaFormAction.validatorCode(...)方法

打开AuthenticationViaFormAction.java(cas-server-core工程下),添加如下方法

    public final String validatorCode(final RequestContext context,

            final Credentials credentials, final MessageContext messageContext)

            throws Exception

    {

        final HttpServletRequest request = WebUtils.getHttpServletRequest(context);

        HttpSession session = request.getSession();

        UsernamePasswordCredentials upc = (UsernamePasswordCredentials) credentials;

        String submitAuthcode = upc.getImgverifycode();

        if (!StringUtils.hasText(submitAuthcode))

        {

            populateErrorsInstance(new NullImgVerifyCodeAuthenticationException(),

                    messageContext);

            return "error";

        }

        if (StringUtils.equalsIgnoreCase((String) session.getAttribute(Constants.KAPTCHA_SESSION_KEY), captchacode))

        {

            return "success";

        }

        populateErrorsInstance(new BadImgVerifyCodeAuthenticationException(),

                messageContext);

        return "error";

    }

其中NullImgVerifyCodeAuthenticationException,BadImgVerifyCodeAuthenticationException是仿照源码异常类新增的自定义异常类。

NullImgVerifyCodeAuthenticationException.java

/*

 * Copyright 2007 The JA-SIG Collaborative. All rights reserved. See license

 * distributed with this file and available online at

 * http://www.ja-sig.org/products/cas/overview/license/

 */

package com.tongxiang.cas.auth.handler;

import org.jasig.cas.ticket.TicketException;

/**

 * Generic Bad Credentials Exception. This can be thrown when the system knows

 * the credentials are not valid specificially because they are bad. Subclasses

 * can be specific to a certain type of Credentials

 * (BadUsernamePassowrdCredentials).

 *

 * @author Scott Battaglia

 * @version $Revision$ $Date$

 * @since 3.0

 */

public class NullImgVerifyCodeAuthenticationException extends TicketException

{

    /**

     * Static instance of class to prevent cost incurred by creating new

     * instance.

     */

    public static final NullImgVerifyCodeAuthenticationException ERROR = new NullImgVerifyCodeAuthenticationException();

    /** UID for serializable objects. */

    private static final long serialVersionUID = 3256719585087797044L;

    /**

     * Default constructor that does not allow the chaining of exceptions and

     * uses the default code as the error code for this exception.

     */

    private static final String CODE = "required.imgverifycode";

    /**

     * Default constructor that does not allow the chaining of exceptions and

     * uses the default code as the error code for this exception.

     */

    public NullImgVerifyCodeAuthenticationException()

    {

        super(CODE);

    }

    /**

     * Constructor to allow for the chaining of exceptions. Constructor defaults

     * to default code.

     *

     * @param throwable the chainable exception.

     */

    public NullImgVerifyCodeAuthenticationException(final Throwable throwable)

    {

        super(CODE, throwable);

    }

    /**

     * Constructor method to allow for providing a custom code to associate with

     * this exception.

     *

     * @param code the code to use.

     */

    public NullImgVerifyCodeAuthenticationException(final String code)

    {

        super(code);

    }

    /**

     * Constructor to allow for the chaining of exceptions and use of a

     * non-default code.

     *

     * @param code the user-specified code.

     * @param throwable the chainable exception.

     */

    public NullImgVerifyCodeAuthenticationException(final String code,

            final Throwable throwable)

    {

        super(code, throwable);

    }

}

BadImgVerifyCodeAuthenticationException.java

/*

 * Copyright 2007 The JA-SIG Collaborative. All rights reserved. See license

 * distributed with this file and available online at

 * http://www.ja-sig.org/products/cas/overview/license/

 */

package com.tongxiang.cas.auth.handler;

import org.jasig.cas.ticket.TicketException;

/**

 * Generic Bad Credentials Exception. This can be thrown when the system knows

 * the credentials are not valid specificially because they are bad. Subclasses

 * can be specific to a certain type of Credentials

 * (BadUsernamePassowrdCredentials).

 *

 * @author Scott Battaglia

 * @version $Revision$ $Date$

 * @since 3.0

 */

public class BadImgVerifyCodeAuthenticationException extends TicketException

{

    /**

     * Static instance of class to prevent cost incurred by creating new

     * instance.

     */

    public static final BadImgVerifyCodeAuthenticationException ERROR = new BadImgVerifyCodeAuthenticationException();

    /** UID for serializable objects. */

    private static final long serialVersionUID = 3256719585087797044L;

    /**

     * Default constructor that does not allow the chaining of exceptions and

     * uses the default code as the error code for this exception.

     */

    private static final String CODE = "error.authentication.imgverifycode.bad";

    /**

     * Default constructor that does not allow the chaining of exceptions and

     * uses the default code as the error code for this exception.

     */

    public BadImgVerifyCodeAuthenticationException()

    {

        super(CODE);

    }

    /**

     * Constructor to allow for the chaining of exceptions. Constructor defaults

     * to default code.

     *

     * @param throwable the chainable exception.

     */

    public BadImgVerifyCodeAuthenticationException(final Throwable throwable)

    {

        super(CODE, throwable);

    }

    /**

     * Constructor method to allow for providing a custom code to associate with

     * this exception.

     *

     * @param code the code to use.

     */

    public BadImgVerifyCodeAuthenticationException(final String code)

    {

        super(code);

    }

    /**

     * Constructor to allow for the chaining of exceptions and use of a

     * non-default code.

     *

     * @param code the user-specified code.

     * @param throwable the chainable exception.

     */

    public BadImgVerifyCodeAuthenticationException(final String code,

            final Throwable throwable)

    {

        super(code, throwable);

    }

}

并且,在messages_zh_CN.properties文件中添加对应上面两个异常类的两个异常消息

required.imgverifycode=请输入验证码

error.authentication.imgverifycode.bad=验证码错误

3.验证

OK。





单点登录CAS使用记系列:

												


											
单点登录CAS使用记(四):为登录页面加上验证码的更多相关文章
	

    
								
  1. 单点登录CAS使用记(一):前期准备以及为CAS-Server配置SSL协议
		
    知识点: SSO:单点登录(Single Sign On),是目前比较流行的企业业务整合的解决方案之一.SSO的定义是在多个应用系统中,用户只需要登录一次就可以访问所有相互信任的应用系统. CAS:耶 ...
    
		
    2. 
						
  2. 单点登录CAS使用记(二):部署CAS服务器以及客户端
		
    CAS-Server下载地址:https://www.apereo.org/projects/cas/download-cas CAS-Client下载地址:http://developer.jasi ...
    
		
    3. 
						
  3. 单点登录CAS使用记(三):实现自定义验证用户登录
		
    问题: CAS自带的用户验证逻辑太过简单,如何像正常网站一样,通过验证DB中的用户数据,来验证用户以及密码的合法性呢? 方案1:CAS默认的JDBC扩展方案: CAS自带了两种简单的通过JDBC方式验 ...
    
		
    4. 
						
  4. 单点登录CAS使用记(五):cas-client不拦截静态资源以及无需登录的请求。
		
    一.问题在哪? 在配置cas-client中,有这么一段配置: <filter> <filter-name>CAS Filter</filter-name> < ...
    
		
    5. 
						
  5. 单点登录CAS使用记(六):单点登出、单点注销
		
    单点登出基本上没有啥配置 直接在原来logout的时候,重定向到Cas-Server的logout方法 @RequestSecurity @RequestMapping(value = "l ...
    
		
    6. 
						
  6. 单点登录CAS使用记(七):关于服务器超时以及客户端超时的分析
		
    我的预想情况 一般情况下,当用户登录一个站点后,如果长时间没有发生任何动作,当用户再次点击时,会被强制登出并且跳转到登录页面, 提醒用户重新登录.现在我已经为站点整合了CAS,并且已经实现了单点登录以 ...
    
		
    7. 
						
  7. 单点登录CAS使用记(八):使用maven的overlay实现无侵入的改造CAS
		
    前期在学习CAS部署的过程中,都是网上各种教程,各种方案不停的尝试. 期间各种侵入改源码,时间久了,改了哪个文件,改了哪段配置,增加了哪段代码,都有可能混淆不清了. 而且最大的问题是,万一换个人来维护 ...
    
		
    8. 
						
  8. 单点登录cas常见问题(十四) - ST和TGT的过期策略是什么?
		
    ST和TGT的过期策略能够參看配置文件:ticketExpirationPolicies.xml 1.先说ST:ST的过期包含使用次数和时间,默认使用一次就过期,或者即使没有使用.一段时间后也要过期  ...
    
		
    9. 
						
  9. cas sso单点登录系列7_ 单点登录cas常见问题系列汇总
		
    转:http://blog.csdn.net/matthewei6/article/details/50709252 单点登录cas常见问题(一) - 子系统是否还要做session处理?单点登录ca ...
    
		
    10. 
		

	


随机推荐
	

    
									
  1. 转:前端集锦:十款精心挑选的在线 CSS3 代码生成工具
			
    今天这篇文章向大家推荐十款非常有用的在线 CSS3 代码生成工具,这些工具能够帮助你方便的生成 CSS3 特效.CSS3 是对 CSS 规范的改善和增强,增加了圆角.旋转.阴影.渐变和动画等众多强大的 ...
    
			
    2. 
						
  2. python urllib2
			
    http://my.oschina.net/duhaizhang/blog/69883
    
			
    3. 
						
  3. (2015年郑州轻工业学院ACM校赛题) A  彩票
			
    这是个简单的题目,其实就是判断是否是偶数, 对二进行特判一下就行了! 比赛时候我们还错两次................ 一看简单题就想抢一血,谁知到第一次提交CE, 再提交WA 汗........ ...
    
			
    4. 
						
  4. 【6】JAVA---地址App小软件(QueryPanel.class)(表现层)
			
    查找模块: 年龄可进行段查找. 其他的都是模糊匹配. 空格为无用字符,会屏蔽的(除年龄). (如果在年龄中输入空格,会出现异常,当时没想到这点,要防护这点很容易的,但因为在这个小软件的编写过程,我主要 ...
    
			
    5. 
						
  5. cf701B Cells Not Under Attack
			
    Vasya has the square chessboard of size n × n and m rooks. Initially the chessboard is empty. Vasya  ...
    
			
    6. 
						
  6. Mysql 的字符编码机制、中文乱码问题及解决方案【转载】
			
    本文转载自:http://hi.baidu.com/huabinyin/item/7f51e462df565c97c4d24929.感谢作者及相关博主.        相信很多朋友都会对字符编码敬而远 ...
    
			
    7. 
						
  7. Java学习日记8-包、环境变量和访问控制
			
    Java中的包.环境变量和访问控制 一.java中的包 Java利用包来组织代码,一来使大型项目的代码结构清晰,二来包是一个命名空间的划分,即不同包中可以有相同名字的类,只需在在类名前加上包名即可区分 ...
    
			
    8. 
						
  8. 修改ORACLE的语言参数
			
    ALTER SYSTEM SET nls_territory = "CHINA" SCOPE=SPFILE; ALTER SYSTEM SET NLS_CURRENCY = '¥' ...
    
			
    9. 
						
  9. WPF: How to use DatePicker in XAML-DataGrid
			
    https://msdn.microsoft.com/en-us/library/system.windows.controls.datagridtemplatecolumn(v=VS.100).as ...
    
			
    10. 
						
  10. django 执行原始SQL
			
    二.知识点总结 When the model query APIs don’t go far enough, you can fall back to writing raw SQL. go far  ...
    
			
    11.