JSON Service Registry
This DAO reads services definitions from JSON configuration files at the application context initialization time. JSON files are expected to be found inside a configured directory location and this DAO will recursively look through the directory structure to find relevant JSON files.
1
<alias name="jsonServiceRegistryDao" alias="serviceRegistryDao" />
Path to the JSON service definitions directory is controlled via:
1
service.registry.config.location=classpath:services
A sample JSON file follows:
1
2
3
4
5
6
7
{
"@class" : "org.jasig.cas.services.RegexRegisteredService",
"serviceId" : "testId",
"name" : "testId",
"id" : 1,
"evaluationOrder" : 0
}
You MUST consider that if your CAS server deployment is clustered, each CAS node in the cluster must have access to the same set of JSON configuration files as the other, or you may have to devise a strategy to keep changes synchronized from one node to the next.
The JSON service registry is also able to auto detect changes to the specified directory. It will monitor changes to recognize file additions, removals and updates and will auto-refresh CAS so changes do happen instantly.
Please make sure all field values in the JSON blob are correctly escaped, specially for the service id. If the service is defined as a regular expression, certain regex constructs such as "." and "\d" need to be doubly escaped.
The naming convention for new JSON files is recommended to be the following:
1
2
3
JSON fileName = serviceName + "-" + serviceNumericId + ".json"
Based on the above formula, for example the above JSON snippet shall be named: testJsonFile-103935657744185.json
. Remember that because files are created based on the serviceName
, you will need to make sure characters considered invalid for file names are not used as part of the name.
As you add more files to the directory, you need to be absolutely sure that no two service definitions will have the same id. If this happens, loading one definition will stop loading the other. While service ids can be chosen arbitrarily, make sure all service numeric identifiers are unique. CAS will also output warnings if duplicate data is found.
JSON Syntax
CAS uses a version of the JSON syntax that provides a much more relaxed syntax with the ability to specify comments.
A given JSON file for instance could be formatted as such in CAS:
1
2
3
4
5
6
7
8
9
10
11
{
/*
Generic service definition that applies to https/imaps urls
that wish to register with CAS for authentication.
*/
"@class" : "org.jasig.cas.services.RegexRegisteredService",
"serviceId" : "^(https|imaps)://.*",
"name" : "HTTPS and IMAPS",
"id" : 10000001,
}
Note the trailing comma at the end. See the above link for more info on the alternative syntax.