import org.jasig.cas.authentication.MixedPrincipalException; //导入依赖的package包/类
/**
 * Always keep track of a single authentication object,
 * as opposed to keeping a history of all. This helps with
 * memory consumption. Note that supplemental authentications
 * are to be removed.
 * @param context authentication context
 * @param ticketGrantingTicket the tgt
 * @return the processed authentication in the current context
 * @throws MixedPrincipalException in case there is a principal mismatch between TGT and the current authN. 
 */
private static Authentication evaluatePossibilityOfMixedPrincipals(final AuthenticationContext context,
                                                            final TicketGrantingTicket ticketGrantingTicket)
        throws MixedPrincipalException {
    Authentication currentAuthentication = null;
    if (context != null) {
        currentAuthentication = context.getAuthentication();
        if (currentAuthentication != null) {
            final Authentication original = ticketGrantingTicket.getAuthentication();
            if (!currentAuthentication.getPrincipal().equals(original.getPrincipal())) {
                throw new MixedPrincipalException(
                        currentAuthentication, currentAuthentication.getPrincipal(), original.getPrincipal());
            }
            ticketGrantingTicket.getSupplementalAuthentications().clear();
            ticketGrantingTicket.getSupplementalAuthentications().add(currentAuthentication);
        }
    }
    return currentAuthentication;
}
 

import org.jasig.cas.authentication.MixedPrincipalException; //导入依赖的package包/类
private static Authentication evaluatePossibilityOfMixedPrincipals(final AuthenticationContext context,
                                                            final TicketGrantingTicket ticketGrantingTicket)
        throws MixedPrincipalException {
    Authentication currentAuthentication = null;
    if (context != null) {
        currentAuthentication = context.getAuthentication();
        if (currentAuthentication != null) {
            final Authentication original = ticketGrantingTicket.getAuthentication();
            if (!currentAuthentication.getPrincipal().equals(original.getPrincipal())) {
                throw new MixedPrincipalException(
                        currentAuthentication, currentAuthentication.getPrincipal(), original.getPrincipal());
            }
            ticketGrantingTicket.getSupplementalAuthentications().add(currentAuthentication);
        }
    }
    return currentAuthentication;
}
 

import org.jasig.cas.authentication.MixedPrincipalException; //导入依赖的package包/类
@Test(expected = MixedPrincipalException.class)
public void verifyGrantServiceTicketWithDifferentCredentials() throws Exception {
    final AuthenticationContext ctx = TestUtils.getAuthenticationContext(getAuthenticationSystemSupport(),
            TestUtils.getCredentialsWithSameUsernameAndPassword("testA"));
    final TicketGrantingTicket ticketGrantingTicket = getCentralAuthenticationService()
        .createTicketGrantingTicket(ctx);

    final AuthenticationContext ctx2 = TestUtils.getAuthenticationContext(getAuthenticationSystemSupport(),
            TestUtils.getCredentialsWithSameUsernameAndPassword("testB"));
    getCentralAuthenticationService().grantServiceTicket(ticketGrantingTicket.getId(), getService(), ctx2);
}
 

import org.jasig.cas.authentication.MixedPrincipalException; //导入依赖的package包/类
@Test(expected=MixedPrincipalException.class)
public void verifyGrantServiceTicketWithDifferentCredentials() throws Exception {
    final TicketGrantingTicket ticketGrantingTicket = getCentralAuthenticationService()
        .createTicketGrantingTicket(
            TestUtils.getCredentialsWithSameUsernameAndPassword("testA"));
    getCentralAuthenticationService().grantServiceTicket(
        ticketGrantingTicket.getId(), TestUtils.getService(),
        TestUtils.getCredentialsWithSameUsernameAndPassword("testB"));
}
 

import org.jasig.cas.authentication.MixedPrincipalException; //导入依赖的package包/类
@Test(expected = MixedPrincipalException.class)
public void verifyThrowsMixedPrincipalExceptionOnRenewWithDifferentPrincipal() throws Exception {
    // Note the original credential used to start SSO session does not satisfy security policy
    final TicketGrantingTicket tgt = cas.createTicketGrantingTicket(newUserPassCredentials("alice", "alice"));
    assertNotNull(tgt);
    final Service service = newService("https://example.com/high/");
    cas.grantServiceTicket(
            tgt.getId(),
            service,
            newUserPassCredentials("bob", "bob"),
            new OneTimePasswordCredential("bob", "62831"));
}
 

import org.jasig.cas.authentication.MixedPrincipalException; //导入依赖的package包/类
@Test(expected=MixedPrincipalException.class)
public void testGrantServiceTicketWithDifferentCredentials() throws Exception {
    final String ticketGrantingTicket = getCentralAuthenticationService()
        .createTicketGrantingTicket(
            TestUtils.getCredentialsWithSameUsernameAndPassword("testA"));
    getCentralAuthenticationService().grantServiceTicket(
        ticketGrantingTicket, TestUtils.getService(),
        TestUtils.getCredentialsWithSameUsernameAndPassword("testB"));
}
 

import org.jasig.cas.authentication.MixedPrincipalException; //导入依赖的package包/类
@Test(expected = MixedPrincipalException.class)
public void testThrowsMixedPrincipalExceptionOnRenewWithDifferentPrincipal() throws Exception {
    // Note the original credential used to start SSO session does not satisfy security policy
    final String tgt = cas.createTicketGrantingTicket(newUserPassCredentials("alice", "alice"));
    assertNotNull(tgt);
    final Service service = newService("https://example.com/high/");
    cas.grantServiceTicket(
            tgt,
            service,
            newUserPassCredentials("bob", "bob"),
            new OneTimePasswordCredential("bob", "62831"));
}