Java 嵌入式Jetty-以编程方式添加基于表单的身份验证
是否有一种方法可以通过编程方式添加如下所示的基于表单的身份验证? 我正在使用自己的Java 嵌入式Jetty-以编程方式添加基于表单的身份验证,java,ldap,jetty,forms-authentication,Java,Ldap,Jetty,Forms Authentication,是否有一种方法可以通过编程方式添加如下所示的基于表单的身份验证? 我正在使用自己的LdapLoginModule。最初我使用基本身份验证,它工作正常,但现在我希望在登录页面上有更多的控制(如显示徽标等) 有好的样品吗 我使用的是嵌入式jetty v8.1.7。对于嵌入式jetty,我不使用任何web.xml。jetty服务器是以编程方式启动的 <login-config> <auth-method>FORM</auth-method> <
LdapLoginModule<login-config>
<auth-method>FORM</auth-method>
<realm-name>Test JAAS Realm</realm-name>
<form-login-config>
<form-login-page>/login.html</form-login-page>
<form-error-page>/error.jsp</form-error-page>
</form-login-config>
</login-config>
形式
测试JAAS领域
/login.html
/error.jsp
FormAuthenticatorSecurityHandlerServletContextHandlermain[]jetty serverjetty servletjetty securityhttp://localhost:8080hello usernameServer server = new Server(8080);
ServletContextHandler context = new ServletContextHandler(server, "/", ServletContextHandler.SESSIONS | ServletContextHandler.SECURITY);
context.addServlet(new ServletHolder(new DefaultServlet() {
@Override
protected void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
response.getWriter().append("hello " + request.getUserPrincipal().getName());
}
}), "/*");
context.addServlet(new ServletHolder(new DefaultServlet() {
@Override
protected void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
response.getWriter().append("<html><form method='POST' action='/j_security_check'>"
+ "<input type='text' name='j_username'/>"
+ "<input type='password' name='j_password'/>"
+ "<input type='submit' value='Login'/></form></html>");
}
}), "/login");
Constraint constraint = new Constraint();
constraint.setName(Constraint.__FORM_AUTH);
constraint.setRoles(new String[]{"user","admin","moderator"});
constraint.setAuthenticate(true);
ConstraintMapping constraintMapping = new ConstraintMapping();
constraintMapping.setConstraint(constraint);
constraintMapping.setPathSpec("/*");
ConstraintSecurityHandler securityHandler = new ConstraintSecurityHandler();
securityHandler.addConstraintMapping(constraintMapping);
HashLoginService loginService = new HashLoginService();
loginService.putUser("username", new Password("password"), new String[] {"user"});
securityHandler.setLoginService(loginService);
FormAuthenticator authenticator = new FormAuthenticator("/login", "/login", false);
securityHandler.setAuthenticator(authenticator);
context.setSecurityHandler(securityHandler);
server.start();
server.join();
Server服务器=新服务器(8080);
ServletContextHandler context=new ServletContextHandler(服务器“/”,ServletContextHandler.SESSIONS | ServletContextHandler.SECURITY);
addServlet(新的ServletHolder(新的DefaultServlet()){
@凌驾
受保护的void doGet(HttpServletRequest请求,HttpServletResponse响应)抛出ServletException,IOException{
response.getWriter().append(“hello”+request.getUserPrincipal().getName());
}
}), "/*");
addServlet(新的ServletHolder(新的DefaultServlet()){
@凌驾
受保护的void doGet(HttpServletRequest请求,HttpServletResponse响应)抛出ServletException,IOException{
response.getWriter().append(“”
+ ""
+ ""
+ "");
}
}),“/login”);
约束=新约束();
constraint.setName(constraint.\u FORM\u AUTH);
setRoles(新字符串[]{“用户”、“管理员”、“主持人”});
constraint.setAuthenticate(true);
ConstraintMapping ConstraintMapping=新的ConstraintMapping();
constraintMapping.setConstraint(约束);
constraintMapping.setPathSpec(“/*”);
ConstraintSecurityHandler securityHandler=新的ConstraintSecurityHandler();
addConstraintMapping(constraintMapping);
HashLoginService loginService=新的HashLoginService();
loginService.putUser(“用户名”,新密码(“密码”),新字符串[]{“用户”});
securityHandler.setLoginService(loginService);
FormAuthenticator authenticator=新的FormAuthenticator(“/login”,“/login”,false);
setAuthenticator(验证器);
setSecurityHandler(securityHandler);
server.start();
join();
ConstraintMapping