buji-pac4j | Bridge from the pac4j security library to Shiro | Authentication library
kandi X-RAY | buji-pac4j Summary
kandi X-RAY | buji-pac4j Summary
The buji-pac4j project is an easy and powerful security library for Shiro web applications and web services which supports authentication and authorization, but also advanced features like CSRF protection. It's based on Java 11, Shiro 1.8 and on the pac4j security engine v5. It's available under the Apache 2 license. OAuth - SAML - CAS - OpenID Connect - HTTP - Google App Engine - Kerberos - LDAP - SQL - JWT - MongoDB - CouchDB - IP address - REST API. Roles / permissions - Anonymous / remember-me / (fully) authenticated - Profile type, attribute - CORS - CSRF - Security headers - IP address, HTTP method.
Support
Quality
Security
License
Reuse
Top functions reviewed by kandi - BETA
- Gets the basic authorization info from principals collection
- Gets the list of all profiles of the authenticated user
- Extracts the authentication information from a principal
- Get the profiles
- Returns the name of the principal
- Returns the main profile of the authenticated user
- Save all the profiles
- Populate the authenticated user profiles in the shiro subject
- Ensures that the authentication token was created
- Returns true if this record is remembered
- Get value from session
- Returns the shiro session
- Returns a string representation of this object
- Builds session store from trackable session
- Returns the cached credentials
- Returns a hashcode of profiles
- Gets the framework ini
- Gets the trackable session
- Compares this Pac4Principal to another
- Logout the user
- Destroys the session
- Sets the config
- Sets the value for the session
- Gets session id
- Gets the principal
buji-pac4j Key Features
buji-pac4j Examples and Code Snippets
Community Discussions
Trending Discussions on buji-pac4j
QUESTION
spring boot 2.2.5
shiro-spring-boot-web-starter 1.5.1
buji-pac4j 4.1.1
pac4j-cas 3.8.3
cas overlay template 5.3.
I start cas server in tomcat with https, and start two clients(pac4j1 and pac4j2) in eclipse.
single sign on works, but single sign out failed.
Following are my configs:
I only added one service file under cas server which looks like:
ANSWER
Answered 2020-Mar-29 at 02:33with the help of the link SLO which provided by leopal, i know that cas server need to send log out request back to client.
Hence, i checked the log of cas server and found INFO [org.apereo.cas.logout.DefaultLogoutManager] - .
so i added log for org.apereo.cas.logout and found that there are some classes about logout: DefaultLogoutManager, DefaultSingleLogoutServiceLogoutUrlBuilder, DefaultSingleLogoutServiceMessageHandler and SimpleUrlValidator.
when performing logout, DefaultSingleLogoutServiceLogoutUrlBuilder.determineLogoutUrl will get the logout url from registered service or get the original url from cas client if original url is a valid url.
So my problem is : i didn't define logout url in service json file and the original url from cas client is localhost:8444 which is a invalid ipv4. As a result, cas server will not send logout request back to client.
Solution is : use ip in project url instead of localhost in application.yml of cas client:
Community Discussions, Code Snippets contain sources that include Stack Exchange Network
Vulnerabilities
No vulnerabilities reported
Install buji-pac4j
You can use buji-pac4j like any standard Java library. Please include the the jar files in your classpath. You can also use any IDE and you can run and debug the buji-pac4j component as you would do with any other Java program. Best practice is to use a build tool that supports dependency management such as Maven or Gradle. For Maven installation, please refer maven.apache.org. For Gradle installation, please refer gradle.org .
Support
Reuse Trending Solutions
Find, review, and download reusable Libraries, Code Snippets, Cloud APIs from over 650 million Knowledge Items
Find more librariesStay Updated
Subscribe to our newsletter for trending solutions and developer bootcamps
Share this Page
