ADFS(3.0)与iPad应用程序集成以实现SSO实施
[英]ADFS (3.0) integration with iPad app to achieve SSO implementation
问题描述
I am using ADAL SDK ( https://github.com/AzureAD/azure-activedirectory-library-for-objc ) for integration my iOS app with ADFS for SSO implementation. 
我正在使用ADAL SDK ( https://github.com/AzureAD/azure-activedirectory-library-for-objc )将我的iOS应用程序与ADFS集成以实现SSO。 I run demo code provide with above link. 我运行演示代码提供上面的链接。
As per as demo it's asking for following components to SOS implementation :- 根据演示,它要求为SOS实施提供以下组件: -
- clientId 的clientId
- Redirect URI 重定向URI
- ResourceId RESOURCEID
- Authority Path 权威路径
According to ADAL SDK ,I need to register my app to ADFS as per as this tutorial ( https://blog.kloud.com.au/2014/12/02/implementing-azure-active-directory-sso-single-sign-on-in-xamarin-ios-apps/ ). 根据ADAL SDK,我需要按照本教程将我的应用程序注册到ADFS( https://blog.kloud.com.au/2014/12/02/implementing-azure-active-directory-sso-single-sign -on-in-xamarin-ios-apps / )。 But i am not able to figured out how will register my app to ADFS . 但我无法弄清楚如何将我的应用程序注册到ADFS 。
I also tried to figure out with this link ( loggin into an iOS app using a system with ADFS ). 我还试图找出这个链接( 使用带有ADFS的系统登录到iOS应用程序 )。
So the following question:- 所以以下问题: -
- Am i on right page? 我在右页吗?
- If Yes, how to register and configure my app with ADFS 如果是,如何使用ADFS注册和配置我的应用程序
- if No, please help to figure out this 如果不是,请帮助弄清楚这一点
Any help much appreciated. 任何帮助非常感谢。
2 个解决方案
解决方案1
4 2016-05-20 12:14:17
After R&D, I am able to figure out how to get all points With ADFS. 研发后,我能够弄清楚如何通过ADFS获得所有积分。
Client Id :- it's a GUID.You can generate Online as well as , Generate GUID( http://www.guidgen.com/ )
客户端ID: - 它是一个GUID。您可以生成在线以及生成GUID( http://www.guidgen.com/ ) Redirect URI :- it's something related with Bundle Identifier(com.compName.MyTestApp), So after adding urn, Redirect URI is looking like this.
重定向URI: - 它与Bundle Identifier(com.compName.MyTestApp)相关,因此在添加urn之后,Redirect URI看起来像这样。 Ex. 防爆。 @"urn:com.compName.MyTestApp" . @“urn:com.compName.MyTestApp” 。 ResourceId :- it's same as redirect uri in my case.
ResourceId: - 在我的情况下,它与重定向uri相同。 Authority Path :- it's ADFS login path url basically to authenticate with ADFS and get Access token.
权限路径: - 它的ADFS登录路径url基本上是用ADFS进行身份验证并获取Access令牌。 EX @"https.//myServer.com/adfs"; EX @“https .// myServer.com/adfs”;
Note :- Please change URL Types as per as you bundle identifier in Info.plist file. 注意: - 请在Info.plist文件中捆绑标识符时更改URL类型。
Some Link which helped me :- 一些帮助我的链接: -
https://msdn.microsoft.com/en-us/library/dn531010.aspx https://msdn.microsoft.com/en-us/library/dn531010.aspx
SSO from ADAL in WPF Client to ADFS 3.0 on Windows Server 2012 R2 从WPF客户端的ADAL到Windows Server 2012 R2上的ADFS 3.0的SSO
Hope it will help. 希望它会有所帮助。
解决方案2
2 2016-05-12 19:15:18
ADFS is a very different beast to Azure AD. ADFS与Azure AD完全不同。
ADFS 2.0 has no OAuth support. ADFS 2.0没有OAuth支持。 ADFS 3.0 has some OAuth support (No OpenID Connect, Web API only) and you have to use PowerShell. ADFS 3.0具有一些OAuth支持(无OpenID Connect,仅限Web API),您必须使用PowerShell。
Refer: Securing a Web API with ADFS on WS2012 R2 Got Even Easier for an example. 请参阅: 在WS2012 R2上使用ADFS保护Web API对于示例而言更加容易 。 (Not iOS though - not aware of any iOS example.). (虽然不是iOS - 不知道任何iOS示例。)。
ADFS 4.0 (Server 2016 in preview) has much better support. ADFS 4.0(预览中的Server 2016)有更好的支持。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.