结合openId身份识别
openID是一个分散式身份识别协议,在其基础上实现了网上身份认证系统。可以将您的系统使用openID来作为用户登录,让你的程序支持opendID。我使用的是http://www.openid.org.cn/ 作为openID提供商,使用openid4java库编写openID依赖方。
以下根据openid4java文档写的一个demo
发起openID请求的action
//yuyong 2012-2-10public class OpenIDLoginAction extends ActionSupport implements ServletRequestAware,ServletResponseAware{ private ISampleConsumerManager sampleConsumerManager;private AuthRequest authReq;private String openID=null; ActionContext context = ActionContext.getContext(); HttpServletRequest request = null; HttpServletResponse response = null; Map<String,Object>pm=null; String actionURL;public String execute()throws Exception{if(openID!=null&&openID.startsWith("http://")){openID=openID.replaceAll("http://", "");}String returnToUrl="http://localhost:8181/SSO/firstPageAction.action";ActionContext context = ActionContext.getContext();Map params = context.getParameters();authReq=sampleConsumerManager.authRequest(openID, returnToUrl,request,response, request.getSession());Map<String,Object>pm=authReq.getParameterMap();this.pm=pm;this.actionURL=authReq.getOPEndpoint();request.setAttribute("pm", pm);request.setAttribute("actionURL", authReq.getOPEndpoint());return SUCCESS;}}//yuyong 2012-2-10public class SampleConsumerManager implements ISampleConsumerManager{public ConsumerManager manager;public SampleConsumerManager()throws ConsumerException{manager=new ConsumerManager();manager.setAssociations(new InMemoryConsumerAssociationStore());manager.setNonceVerifier(new InMemoryNonceVerifier(5000));}//将openID,返回url封装为一个openID请求public AuthRequest authRequest(String userSuppliedString,String returnToUrl, HttpServletRequest httpReq,HttpServletResponse httpResp,HttpSession session)throws IOException {try {List discoveries=manager.discover(userSuppliedString);DiscoveryInformation discovered=manager.associate(discoveries);session.setAttribute("discovered", discovered);AuthRequest authReq=manager.authenticate(discovered, returnToUrl);httpResp.sendRedirect(authReq.getDestinationUrl(true));return authReq;} catch (DiscoveryException e) {e.printStackTrace();} catch (MessageException e) {e.printStackTrace();} catch (ConsumerException e) {e.printStackTrace();}return null;} //验证openID登录验证的返回public Identifier verifyResponse(HttpServletRequest httpReq,HttpSession session) throws IOException {ParameterList openidResp=new ParameterList(httpReq.getParameterMap());DiscoveryInformation discovered=(DiscoveryInformation) session.getAttribute("discovered");StringBuffer receivingURL=httpReq.getRequestURL();String queryString=httpReq.getQueryString();if(queryString!=null&&queryString.length()>0)receivingURL.append("?").append(httpReq.getQueryString());try {VerificationResult verification=manager.verify(receivingURL.toString(), openidResp, discovered);Identifier verified=verification.getVerifiedId();return verified;} catch (MessageException e) {e.printStackTrace();} catch (DiscoveryException e) {e.printStackTrace();} catch (AssociationException e) {e.printStackTrace();}return null;}}//yuyong 2012-2-10public class FirstPageAction extends ActionSupport implements ServletRequestAware,ServletResponseAware{private ISampleConsumerManager sampleConsumerManager=null;private HttpServletRequest request=null;private HttpServletResponse response=null;private HttpSession session=null;public String execute()throws Exception{if(sampleConsumerManager.verifyResponse(request, session)!=null)return SUCCESS;else return ERROR;}}<action name="openIDLoginAction" name="code"><body onload="document.forms['openid-form-redirection'].submit();"> <form id="openid-form-redirection" action="<s:property value="#request.actionURL"/>"> <s:iterator value="#request.pm"> <input type="hidden" name="<s:property value="key"/>" value="<s:property value="value"/>" /> </s:iterator> </form></body>