通过使用Web服务实现单点登录
[英]Single Sign On Implementation by making use of web service
问题描述
I am having an REST web service (for user authentication) and with the help of that I have to integrate sso for applications (which could be hosted on DIFFERENT DOMAIN). 
我有一个REST Web服务(用于用户身份验证),在此基础上,我必须为应用程序集成sso (可以在不同的域中托管)。
I googled the stuff regarding SSO and found some solution in the form of cas & josso . 我搜索了有关SSO的内容,并找到了cas & josso形式的一些解决方案。
I also studied a bit about SAML and OAUTH2 but didn't found a good example for it, Could someone please point me in the right direction how to implement SSO ? 我还研究了一些有关SAML和OAUTH2但没有找到一个很好的例子,有人可以指出正确的方向如何实现SSO吗?
NOTE : The Implementation must make the use of web service to authenticate the user. 注意:实现必须使用Web服务来验证用户身份。
1 个解决方案
解决方案1
0 2016-01-11 12:30:42
You will have to make your Web Service receive the authentication token form a Security Token Service (STS) that is trusted by both domains for which you want to provide SSO. 您将必须使Web服务从安全令牌服务(STS)接收身份验证令牌,该安全令牌服务由您要为其提供SSO的两个域所信任。 A common standard to broker authentication tokens is SAML; 代理身份验证令牌的通用标准是SAML。 as far as I know, also josso uses SAML for the exchange of authentication information. 据我所知,josso还使用SAML交换身份验证信息。
If you are looking for some code, I recommend the Axis2 samples, which contain an example for SSO authentication via a STS. 如果您正在寻找一些代码,建议您使用Axis2示例,其中包含一个通过STS进行SSO身份验证的示例。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.