用于签署证书的SAML样本身份提供者证书和Java应用程序
[英]SAML Sample Identity Provider Certificate and Java Application for signing certificate
问题描述
I have a Java web application. 
我有一个Java Web应用程序。 And I want to implement SAML SSO login for my application. 我想为我的应用程序实现SAML SSO登录。 What I am trying to do is, 我想做的是,
- Need one sample identity provider certificate 需要一个样本身份提供者证书
- Create a separate JSP application which will sign certificate and create assertion for my app. 创建一个单独的JSP应用程序,它将签署证书并为我的应用程序创建断言。
- Upload the public key of the certificate and save in keystore. 上传证书的公钥并保存在密钥库中。
- Whenever a user tries to login, the assertion from JSP application will be created and send to my web app. 每当用户尝试登录时,JSP应用程序中的断言都将被创建并发送到我的Web应用程序。
- Validate the public key with the key in keystore and proceed further. 使用密钥库中的密钥验证公钥,然后继续。
Please correct me if I am wrong in this. 如果我错了,请纠正我。
Also where can I find a sample identity provider certificate? 另外,我在哪里可以找到样本身份提供者证书? Or may be how to create one? 或者可能是如何创建一个? Also is there any sample JSP application that can create assertion and send to my application? 还有哪些示例JSP应用程序可以创建断言并发送到我的应用程序?
Thanks. 谢谢。
1 个解决方案
解决方案1
3 已采纳 2014-10-20 06:23:19
You can get free account at PingOne from Ping Identity . 您可以通过Ping Identity从PingOne获得免费帐户。
After that you will be provided with certificate and meta information to use PingOne as identity provider. 之后,您将获得证书和元信息,以便将PingOne用作身份提供者。
Also you can try TestShib or OpenIdP . 您也可以尝试TestShib或OpenIdP 。
You can use keytool command to manage certificates at your local system. 您可以使用keytool命令管理本地系统上的证书。
If you use JBoss AS/Wildfly then I suggest using Picketlink, you can find documentation here . 如果你使用JBoss AS / Wildfly,那么我建议使用Picketlink,你可以在这里找到文档。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.