Bex3.8 单点登录问题

jishuang · 发表于 2020-5-25 17:27:12

不生效1楼的错误应该报不出来的，错误都已经报到filter里面了com.justep.filter.NTLoginFilter.doFilter(NTLoginFilter.java:69)

adjust · 发表于 2020-5-26 08:19:17

本帖最后由 adjust 于 2020-5-26 08:36 编辑

jishuang 发表于 2020-5-25 17:27
不生效1楼的错误应该报不出来的，错误都已经报到filter里面了com.justep.filter.NTLoginFilter.doFilter(NT ...

我将jar包反编译，打印输出用户名为null，然后给定用户名默认值为system，其余代码未作改动，也是报同样的错误：javax.servlet.ServletException: com.justep.ui.exception.UIException: 编码: JUSTEP000014; 提示: WINDOW编译出错, 文件"/UI2/portal/pc3/undefined/default.html"不存在。具体错误1楼已贴出

jishuang · 发表于 2020-5-26 09:07:11

7楼和9楼的看了吗？

adjust · 发表于 2020-5-26 10:40:32

本帖最后由 adjust 于 2020-5-26 11:47 编辑

jishuang 发表于 2020-5-26 09:07
7楼和9楼的看了吗？

7楼提到的我不需要啊，7楼说到如果需要不过滤地址的话才需要进行此操作；
9楼的也配置了，同样报错。
现在跟踪代码，是x5-cas.jar 里报的错误，

没有获取到用户名，这个我已用默认值system替代；
传递用户为system后，后续继续报错，报错内容见1楼的附件

jishuang · 发表于 2020-5-26 13:13:44

平台默认的过滤是pc下的，你现在是pc3下的，要修改filter中的过滤的地址啊
1楼的还是com.justep.filter.NTLoginFilter.doFilter(NTLoginFilter.java:69)错误就没有变过

adjust · 发表于 2020-5-26 13:53:02

jishuang 发表于 2020-5-26 13:13
平台默认的过滤是pc下的，你现在是pc3下的，要修改filter中的过滤的地址啊
1楼的还是com.justep.filter.NTL ...

平台默认的过滤是全过滤，7楼的链接是要创建不需要过滤的地址，所以这个没有参考意义；
9楼的我也试过，不管是pc3还是pc，错误都是一样的。提示是找不到pc3下的undefined/default.html，这个不管是pc还是pc3下都没有这个地址的。
我说了，通过反编译jar包，问题就在这段内容，第69行就是最后一行代码

public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException {
String targetUrl;
HttpServletRequest req = (HttpServletRequest) request;
HttpServletResponse res = (HttpServletResponse) response;
HttpSession session = req.getSession();
String username = "system";
if (session != null) {
// String username = AssertionHolder.getAssertion().getPrincipal().getName();
System.out.println("!!!!!!!!!!!!!!!!!!!!!!."+username);
if (SystemUtils.isNotEmptyString(username)) {
String bsessionid = getBSessionID(req, username);
String url = NetUtils.getRequestPath(req);
if (this.urlMapping.containsKey(url) && !"true".equals(new StringBuilder(String.valueOf(req.getParameter("_login"))).toString()) && SystemUtils.isEmptyString(req.getParameter("$pageType"))) {
String targetUrl2 = String.valueOf(req.getContextPath()) + this.urlMapping.get(url);
if (targetUrl2.contains("?")) {
targetUrl = String.valueOf(targetUrl2) + "&bsessionid=" + bsessionid + "&_login=true";
} else {
targetUrl = String.valueOf(targetUrl2) + "?bsessionid=" + bsessionid + "&_login=true";
}
Cookie cookie = new Cookie(BSESSIONID, bsessionid);
cookie.setPath("/");
res.addCookie(cookie);
res.sendRedirect(targetUrl);
return;
}
}
}
chain.doFilter(req, res);
}

复制代码

jishuang · 发表于 2020-5-26 14:49:46

this.setBsessionid(justep.Util.getCookie("bsessionid"));改为
this.setBsessionid(justep.Util.getCookie("bsessionid") || this.getContext().getRequestParameter("bsessionid"));这个修改了吗?

adjust · 发表于 2020-5-26 16:28:55

本帖最后由 adjust 于 2020-5-26 16:33 编辑

jishuang 发表于 2020-5-26 14:49
this.setBsessionid(justep.Util.getCookie("bsessionid"));改为
this.setBsessionid(justep.Util.getCook ...

与这项无关。是否修改不影响。
找到问题原因了：

<context-param>
<param-name>pc.login.path</param-name>
<param-value>/UI2/portal/pc3/login/login.w?device=pc</param-value>
</context-param>

复制代码

login.path原来默认是 /UI2/portal/pc3/idnex.w?device=pc，需要指向login.w后，过滤器才生效。
但有一个问题是，如果直接输入 xxx/x5/UI2/portal/pc3/idnex.w?device=pc，页面显示为登录页面，地址栏地址不变；登录后刷新，也会跳转到此登录页面。
另外帮忙把一楼的第一个图片帮忙删掉。谢了。

jishuang · 发表于 2020-5-26 18:18:15

login.w是在index.w中通过windowDialog打开的，不是单独的页面，所以要用index.w

adjust · 发表于 2020-5-27 09:43:09

本帖最后由 adjust 于 2020-5-27 09:46 编辑

jishuang 发表于 2020-5-26 18:18
login.w是在index.w中通过windowDialog打开的，不是单独的页面，所以要用index.w

测试过程中又发现了一个新的问题，每次浏览器直接关闭，然后重新输入地址访问后，此错误必现，浏览器地址为 xxx.cn/x5/;jsessionid=52D3F51311A77CA3994AE6B089327BC4

javax.servlet.ServletException: com.justep.ui.exception.UIException: 编码: JUSTEP002001; 提示: 根据获取$UI的路径出错
at com.justep.ui.servlet.MainServlet.service(Unknown Source)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:723)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at com.justep.portal.filter.RedirectFilter.doFilter(Unknown Source)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at com.justep.ui.filter.MicroServiceAdminFilter.doFilter(Unknown Source)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at com.justep.filter.NTLoginFilter.doFilter(NTLoginFilter.java:81)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at org.jasig.cas.client.util.AssertionThreadLocalFilter.doFilter(AssertionThreadLocalFilter.java:54)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at org.jasig.cas.client.util.HttpServletRequestWrapperFilter.doFilter(HttpServletRequestWrapperFilter.java:75)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at org.jasig.cas.client.validation.AbstractTicketValidationFilter.doFilter(AbstractTicketValidationFilter.java:201)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at org.jasig.cas.client.authentication.AuthenticationFilter.doFilter(AuthenticationFilter.java:107)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at org.jasig.cas.client.session.SingleSignOutFilter.doFilter(SingleSignOutFilter.java:76)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:233)
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:293)
at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:861)
at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:606)
at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:489)
at java.lang.Thread.run(Thread.java:745)
Caused by: com.justep.ui.exception.UIException: 编码: JUSTEP002001; 提示: 根据获取$UI的路径出错
at com.justep.ui.exception.UIException.create(Unknown Source)
at com.justep.ui.JustepConfig.getUIValue(Unknown Source)
at com.justep.ui.ResourceServer.execute(Unknown Source)
... 38 more

复制代码

刷新也没有用，必须在当前浏览器重新输入地址，才能正常进入。报错行请参照16楼贴出的代码，at com.justep.filter.NTLoginFilter.doFilter(NTLoginFilter.java:81)，这个是16楼代码的最后一行

		自动登录	找回密码
密码			注册

[处理中3] Bex3.8 单点登录问题