投稿
  1. 首页
  2. 随笔

我如何像j_security_check这样从servlet内以编程方式调用身份验证

ie系列浏览器 2022-12-15 随笔 阅读 23

我如何像j_security_check这样从servlet内以编程方式调用身份验证,第1张

我如何像j_security_check这样从servlet内以编程方式调用身份验证

我注意到这已不再是最新的。最终的解决方案是使用OpenAM提供的Java SDK。

这是起点:http : //openam.forgerock.org/openam-
documentation/openam-doc-source/doc/dev-guide/index/chap-
jdk.html

1)将此SDK随附的所有jar文件添加到您的Web应用程序。2)更改您的servlet(或重型客户端),使其具有以下代码:

    private void addLoginCallbackMessage(LoginCredentialsBean loginBean, Callback [] callbacks)        throws UnsupportedCallbackException{    int i = 0;    try    {        for (i = 0; i < callbacks.length; i++)        { if (callbacks[i] instanceof TextOutputCallback) {     handleTextOutputCallback((TextOutputCallback) callbacks[i]); } else if (callbacks[i] instanceof NameCallback) {     handleNameCallback(loginBean.getUsername(), (NameCallback) callbacks[i]); } else if (callbacks[i] instanceof PasswordCallback) {     handlePasswordCallback(loginBean.getPassword(), (PasswordCallback) callbacks[i]); } else if (callbacks[i] instanceof TextInputCallback) {     handleTextInputCallback((TextInputCallback) callbacks[i]); } else if (callbacks[i] instanceof ChoiceCallback) {     handleChoiceCallback((ChoiceCallback) callbacks[i]); }        }    }    catch (IOException e)    {        e.printStackTrace();        throw new UnsupportedCallbackException(callbacks[i], e.getMessage());    }}private void handleTextOutputCallback(TextOutputCallback toc){    System.out.println("Got TextOutputCallback");    // display the message according to the specified type    switch (toc.getMessageType())    {    case TextOutputCallback.INFORMATION:        System.out.println(toc.getMessage());        break;    case TextOutputCallback.ERROR:        System.out.println("ERROR: " + toc.getMessage());        break;    case TextOutputCallback.WARNING:        System.out.println("WARNING: " + toc.getMessage());        break;    default:        System.out.println("Unsupported message type: " +     toc.getMessageType());    }}private void handleNameCallback(String name, NameCallback nc)        throws IOException{    nc.setName(name);}private void handleTextInputCallback(TextInputCallback tic)        throws IOException{    // not supported for server side    // prompt for text input}private void handlePasswordCallback(String password, PasswordCallback pc)        throws IOException{    // prompt the user for sensitive information    pc.setPassword(password.toCharArray());}private void handleChoiceCallback(ChoiceCallback cc)        throws IOException{    // not supported for server side    // ignore the provided defaultValue    }private void doLogin (){    // ... lots of other logic here    // TODO: Make this into modules with this one being for OpenAM    if (_useOpenAM)    {        String orgName = "/";        String moduleName = "DataStore";        String locale = "en_US";        AuthContext lc = new AuthContext(orgName);        AuthContext.IndexType indexType = AuthContext.IndexType.MODULE_INSTANCE;        lc.login(indexType, moduleName, locale);        boolean succeed = false;        Callback [] callbacks = null;        // get information requested from module        while (lc.hasMoreRequirements())        { callbacks = lc.getRequirements(); if (callbacks != null) {     addLoginCallbackMessage(loginBean, callbacks);     lc.submitRequirements(callbacks); }        }        if (lc.getStatus() == AuthContext.Status.SUCCESS)        { try {     System.out.println("Login succeeded.");     openAMSessionId = lc.getAuthIdentifier();     System.out.println("lc.getAuthIdentifier()=" + openAMSessionId);     System.out.println("lc.getSuccessURL()=" + lc.getSuccessURL());     System.out.println("lc.getSSOToken().getAuthLevel()=" + lc.getSSOToken().getAuthLevel());     System.out.println("lc.getSSOToken().getAuthType()=" + lc.getSSOToken().getAuthType());     System.out.println("lc.getSSOToken().getHostName()=" + lc.getSSOToken().getHostName());     System.out.println("lc.getSSOToken().getIdleTime()=" + lc.getSSOToken().getIdleTime());     System.out.println("lc.getSSOToken().getMaxIdleTime()=" + lc.getSSOToken().getMaxIdleTime());     System.out.println("lc.getSSOToken().getMaxSessionTime()=" + lc.getSSOToken().getMaxSessionTime());     System.out.println("lc.getSSOToken().getTimeLeft()=" + lc.getSSOToken().getTimeLeft());     System.out.println("lc.getSSOToken().getIPAddress()=" + lc.getSSOToken().getIPAddress());     System.out.println("lc.getSSOToken().getTokenID()=" + lc.getSSOToken().getTokenID().toString());     System.out.println("lc.getSSOToken().getPrincipal()=" + lc.getSSOToken().getPrincipal().toString()); } catch (Exception e) {     e.printStackTrace(); } succeed = true;        }        else if (lc.getStatus() == AuthContext.Status.FAILED)        { System.out.println("Login failed.");        }        else        { System.out.println("Unknown status: " + lc.getStatus());        }        System.out.println( "OpenAM login success=" + succeed);    }}

上面的代码中重要的是变量openAMSessionId。最后,有了新的OpenAM单一登录会话ID,您可以将其传递给所有受保护的客户端应用程序,以使用户不会受到登录方面的挑战。

我希望这有帮助。

-dklotz



欢迎分享,转载请注明来源:内存溢出

原文地址: http://outofmemory.cn/zaji/5622177.html

(0)
打赏 微信扫一扫 微信扫一扫 支付宝扫一扫 支付宝扫一扫
ie系列浏览器 ie系列浏览器 一级用户组
0 0
上一篇 2022-12-15
下一篇 2022-12-15

发表评论

登录后才能评论

评论列表(0条)

保存