Skip to content
项目
群组
代码片段
帮助
当前项目
正在载入...
登录 / 注册
切换导航面板
J
jira-sso
项目
项目
详情
活动
周期分析
仓库
仓库
文件
提交
分支
标签
贡献者
图表
比较
统计图
议题
0
议题
0
列表
看板
标记
里程碑
合并请求
0
合并请求
0
CI / CD
CI / CD
流水线
作业
日程
统计图
Wiki
Wiki
代码片段
代码片段
成员
成员
折叠边栏
关闭边栏
活动
图像
聊天
创建新问题
作业
提交
问题看板
Open sidebar
胡帅
jira-sso
Commits
cccda9e5
提交
cccda9e5
authored
8月 14, 2024
作者:
husishuai
浏览文件
操作
浏览文件
下载
电子邮件补丁
差异文件
更新注释
上级
93eef554
隐藏空白字符变更
内嵌
并排
正在显示
1 个修改的文件
包含
2 行增加
和
13 行删除
+2
-13
SSOSeraphAuthenticator.java
...m/atlassian/jira/security/sso/SSOSeraphAuthenticator.java
+2
-13
没有找到文件。
atlassian-plugins-sso/src/main/java/com/atlassian/jira/security/sso/SSOSeraphAuthenticator.java
浏览文件 @
cccda9e5
...
@@ -71,7 +71,6 @@ public class SSOSeraphAuthenticator extends DefaultAuthenticator {
...
@@ -71,7 +71,6 @@ public class SSOSeraphAuthenticator extends DefaultAuthenticator {
*/
*/
@Override
@Override
public
boolean
logout
(
HttpServletRequest
httpServletRequest
,
HttpServletResponse
httpServletResponse
)
throws
AuthenticatorException
{
public
boolean
logout
(
HttpServletRequest
httpServletRequest
,
HttpServletResponse
httpServletResponse
)
throws
AuthenticatorException
{
System
.
out
.
println
(
"logout...."
);
return
super
.
logout
(
httpServletRequest
,
httpServletResponse
);
return
super
.
logout
(
httpServletRequest
,
httpServletResponse
);
}
}
...
@@ -87,14 +86,11 @@ public class SSOSeraphAuthenticator extends DefaultAuthenticator {
...
@@ -87,14 +86,11 @@ public class SSOSeraphAuthenticator extends DefaultAuthenticator {
*/
*/
@Override
@Override
public
boolean
login
(
HttpServletRequest
httpServletRequest
,
HttpServletResponse
httpServletResponse
,
String
username
,
String
password
,
boolean
setRememberMeCookie
)
throws
AuthenticatorException
{
public
boolean
login
(
HttpServletRequest
httpServletRequest
,
HttpServletResponse
httpServletResponse
,
String
username
,
String
password
,
boolean
setRememberMeCookie
)
throws
AuthenticatorException
{
// 登出时请求的地址 http://ip:port/log
in.html?isLogout=true
// 登出时请求的地址 http://ip:port/log
out.html
String
isLogout
=
httpServletRequest
.
getParameter
(
"isLogout"
);
String
isLogout
=
httpServletRequest
.
getParameter
(
"isLogout"
);
System
.
out
.
println
(
"isLogout = "
+
isLogout
);
if
(
isLogout
.
equals
(
"true"
))
{
if
(
isLogout
.
equals
(
"true"
))
{
System
.
out
.
println
(
"开始退出..."
);
this
.
logout
(
httpServletRequest
,
httpServletResponse
);
this
.
logout
(
httpServletRequest
,
httpServletResponse
);
}
else
{
}
else
{
System
.
out
.
println
(
"开始登录..."
);
// jira请求标识
// jira请求标识
httpServletRequest
.
setAttribute
(
"com.atlassian.confluence.login.direct"
,
true
);
httpServletRequest
.
setAttribute
(
"com.atlassian.confluence.login.direct"
,
true
);
...
@@ -149,17 +145,14 @@ public class SSOSeraphAuthenticator extends DefaultAuthenticator {
...
@@ -149,17 +145,14 @@ public class SSOSeraphAuthenticator extends DefaultAuthenticator {
Principal
user
=
this
.
getUser
(
username
);
Principal
user
=
this
.
getUser
(
username
);
// 如果用户不存在,则创建用户
// 如果用户不存在,则创建用户
if
(
ObjectUtils
.
isEmpty
(
user
))
{
if
(
ObjectUtils
.
isEmpty
(
user
))
{
System
.
out
.
println
(
"系统中不存在用户 = "
+
username
);
// 3.3 判断是否存在组
// 3.3 判断是否存在组
GroupManager
groupManager
=
ComponentAccessor
.
getGroupManager
();
GroupManager
groupManager
=
ComponentAccessor
.
getGroupManager
();
// 判断缓存中是否存在用户组
// 判断缓存中是否存在用户组
if
(!
GROUP_NAME_CACHE
.
containsKey
(
groupName
))
{
if
(!
GROUP_NAME_CACHE
.
containsKey
(
groupName
))
{
System
.
out
.
println
(
"缓存中不存在组 = "
+
groupName
);
boolean
groupExists
=
groupManager
.
groupExists
(
groupName
);
boolean
groupExists
=
groupManager
.
groupExists
(
groupName
);
// 不存在则创建组
// 不存在则创建组
if
(!
groupExists
)
{
if
(!
groupExists
)
{
System
.
out
.
println
(
"系统中不存在组 = "
+
groupName
);
groupManager
.
createGroup
(
groupName
);
groupManager
.
createGroup
(
groupName
);
// 给组授予应用程序访问权,否则无法登陆(调用rest api实现)
// 给组授予应用程序访问权,否则无法登陆(调用rest api实现)
addGroupApplicationRole
(
groupName
);
addGroupApplicationRole
(
groupName
);
...
@@ -201,7 +194,6 @@ public class SSOSeraphAuthenticator extends DefaultAuthenticator {
...
@@ -201,7 +194,6 @@ public class SSOSeraphAuthenticator extends DefaultAuthenticator {
@Override
@Override
protected
boolean
authenticate
(
Principal
user
,
String
password
)
throws
AuthenticatorException
{
protected
boolean
authenticate
(
Principal
user
,
String
password
)
throws
AuthenticatorException
{
try
{
try
{
System
.
out
.
println
(
"ssssssssssssssssssssssssssssssssssssssss"
);
System
.
out
.
println
(
"user -> "
+
user
.
getName
());
System
.
out
.
println
(
"user -> "
+
user
.
getName
());
System
.
out
.
println
(
"password -> "
+
password
);
System
.
out
.
println
(
"password -> "
+
password
);
this
.
crowdServiceAuthenticate
(
user
,
password
);
this
.
crowdServiceAuthenticate
(
user
,
password
);
...
@@ -395,7 +387,6 @@ public class SSOSeraphAuthenticator extends DefaultAuthenticator {
...
@@ -395,7 +387,6 @@ public class SSOSeraphAuthenticator extends DefaultAuthenticator {
.
header
(
"Authorization"
,
AUTHORIZATION_HEADER
);
.
header
(
"Authorization"
,
AUTHORIZATION_HEADER
);
HttpResponse
response
=
request
.
execute
();
HttpResponse
response
=
request
.
execute
();
String
body
=
response
.
body
();
String
body
=
response
.
body
();
System
.
out
.
println
(
"getApplicationRole - response: "
+
body
);
// 解析
// 解析
// 将JSON字符串转换为JSONArray
// 将JSON字符串转换为JSONArray
JSONArray
jsonArray
=
JSONUtil
.
parseArray
(
body
);
JSONArray
jsonArray
=
JSONUtil
.
parseArray
(
body
);
...
@@ -433,7 +424,6 @@ public class SSOSeraphAuthenticator extends DefaultAuthenticator {
...
@@ -433,7 +424,6 @@ public class SSOSeraphAuthenticator extends DefaultAuthenticator {
private
void
addGroupApplicationRole
(
String
groupName
)
{
private
void
addGroupApplicationRole
(
String
groupName
)
{
// 获取应用程序授权信息(包含原本已授权的信息)
// 获取应用程序授权信息(包含原本已授权的信息)
HashMap
<
String
,
List
<
String
>>
applicationRole
=
getApplicationRole
();
HashMap
<
String
,
List
<
String
>>
applicationRole
=
getApplicationRole
();
System
.
out
.
println
(
"addGroupApplicationRole - applicationRole: "
+
applicationRole
);
List
<
String
>
groups
=
applicationRole
.
get
(
"groups"
);
List
<
String
>
groups
=
applicationRole
.
get
(
"groups"
);
// 添加新增的组信息
// 添加新增的组信息
if
(!
groups
.
contains
(
groupName
))
{
if
(!
groups
.
contains
(
groupName
))
{
...
@@ -465,9 +455,8 @@ public class SSOSeraphAuthenticator extends DefaultAuthenticator {
...
@@ -465,9 +455,8 @@ public class SSOSeraphAuthenticator extends DefaultAuthenticator {
.
body
(
JSONUtil
.
toJsonStr
(
requestMap
))
.
body
(
JSONUtil
.
toJsonStr
(
requestMap
))
.
header
(
"User-Agent"
,
"PostmanRuntime-ApipostRuntime/1.1.0"
)
.
header
(
"User-Agent"
,
"PostmanRuntime-ApipostRuntime/1.1.0"
)
.
header
(
"Authorization"
,
AUTHORIZATION_HEADER
);
.
header
(
"Authorization"
,
AUTHORIZATION_HEADER
);
HttpResponse
response
=
request
.
execute
();
// 请求成功则表示更新成功
// 请求成功则表示更新成功
System
.
out
.
println
(
"addGroupApplicationRole - response.body() = "
+
response
.
body
()
);
HttpResponse
response
=
request
.
execute
(
);
}
}
}
}
编写
预览
Markdown
格式
0%
重试
或
添加新文件
添加附件
取消
您添加了
0
人
到此讨论。请谨慎行事。
请先完成此评论的编辑!
取消
请
注册
或者
登录
后发表评论
