JASIG-CAS学习笔记——初探CAS

http://www.ibm.com/developerworks/cn/opensource/os-cn-cas/

http://steven-wiki.readthedocs.org/en/latest/security/cas-tomcat/#authenticationhanlder

http://blog.sina.com.cn/s/articlelist_1549622495_0_1.html

Cas Server MD5加密：

<property name="authenticationHandlers">
            <list>
                <bean class="org.jasig.cas.authentication.handler.support.HttpBasedServiceCredentialsAuthenticationHandler" 
　　　　　　　　　　　　　　p:httpClient-ref="httpClient" p:requireSecure="false" />
                <!--
                <bean
                    class="org.jasig.cas.authentication.handler.support.SimpleTestUsernamePasswordAuthenticationHandler" />
                    -->
                    <bean class="org.jasig.cas.adaptors.jdbc.QueryDatabaseAuthenticationHandler">
                          <property name="dataSource" ref="dataSource" />
                          <property name="sql" value="SELECT PASSWORD FROM USERS WHERE USERNAME = ?" />
                          <property name="passwordEncoder" ref="passwordEncoder"/>
                    </bean>
            </list>
        </property>

加密的是32位小写的，大小写敏感。

<bean id="passwordEncoder" class="org.jasig.cas.authentication.handler.DefaultPasswordEncoder">
        <constructor-arg value="MD5"/>
    </bean>