通过ADFS进行Liferay / Java自定义登录
[英]Liferay/Java Custom Login through ADFS
问题描述
Using Liferay CE 6.2 GA2. 
使用Liferay CE 6.2 GA2。 Client is using ADFS 客户端正在使用ADFS
Have a custom login screen in Liferay 6.2 where I need to connect to client's ADFS to authenticate a user based on the User id and password that he/she enters and retrieve some basic user attributes like email, groups, etc. 在Liferay 6.2中有一个自定义登录屏幕,我需要在此连接到客户端的ADFS,以根据用户输入的用户ID和密码对用户进行身份验证,并检索一些基本的用户属性,例如电子邮件,组等。
How can I do this? 我怎样才能做到这一点? Does ADFS have any endpoints that I can use to authenticate? ADFS是否有可用于身份验证的终结点? Liferay SAML EE Plugin - Configuring Liferay as SP and ADFS as IDP is not possible as it forwards the user to the IDP's login page. Liferay SAML EE插件-无法将Liferay配置为SP,将ADFS配置为IDP,因为它会将用户转发到IDP的登录页面。 Please note that this is a custom login screen and SSO is out of the picture. 请注意,这是一个自定义的登录屏幕,SSO不在图片中。
1 个解决方案
解决方案1
1 已采纳 2014-08-06 08:36:16
Liferay can connect to your LDAP, including AD, thus there's no need for a custom login screen. Liferay可以连接到您的LDAP(包括AD),因此不需要自定义登录屏幕。 Use this route and make your life easy and your setup maintainable. 使用此路线,使您的生活变得轻松,并且您的设置可维护。 From that point on you can continue to evaluate SAML and other SSO means. 从那时起,您可以继续评估SAML和其他SSO手段。
As 98% of people that assume they need custom login mechanism actually don't need them (they just need to be pointed to the internal mechanism and its extension points), I'm assuming that you're among this majority, and you'd have to provide a lot of information to convince me of the opposite. 由于98%的人认为他们需要自定义登录机制,实际上并不需要它们(他们只需要指出内部机制及其扩展点),我假设您属于大多数,并且您d必须提供很多信息才能使我相信相反的情况。 So start properly connecting through LDAP and assume that you can actually use SSO 因此,开始通过LDAP正确连接,并假设您可以实际使用SSO
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.