堆栈内存溢出
  简体   繁体   English

Google作为服务提供商,由SAML IdP标识。 SSO

[英]Google As Service Provider, Identify by SAML IdP. SSO

 原文  2017-06-30 10:43:19       php/ single-sign-on/ saml

问题描述

I want my portal that allows me to use service like Google Apps and Office 365. 我希望我的门户网站能够使用Google Apps和Office 365等服务。

In this case, Google and Microsoft are service provider. 在这种情况下,Google和Microsoft是服务提供商。 My portal will be IdP as I am doing the authentication. 在进行身份验证时,我的门户网站将为IdP。 Is this correct? 这个对吗?

I wonder how can I build my own IdP. 我想知道如何建立自己的IdP。 Because if I want to achieve Single Sign On, the user can login my portal with username and pw stored in my database. 因为如果我要实现单点登录,则用户可以使用存储在数据库中的用户名和密码登录我的门户。

However, the password of users from my portal and Google can be totally different. 但是,我的门户网站和Google的用户密码可以完全不同。

For example, user in my database = id:Peter, pw:peter123, email:abc@google.com 例如,我数据库中的用户= id:Peter,pw:peter123,电子邮件:abc@google.com

user in Google's Database = email: abc@gmail.com, pw: peter456 Google数据库中的用户=电子邮件:abc@gmail.com,密码:peter456

How can I map those accounts to achieve Single Sign On, allowing user to login only ONCE on my portal. 如何映射这些帐户以实现“单点登录”,从而允许用户仅在我的门户网站上登录ONCE。

And then he can access Google Service by just clicking the buttons linking to Gmail, Google Drive...etc without logging in Google accounts? 然后,他只需单击链接到Gmail,Google云端硬盘等的按钮即可访问Google服务,而无需登录Google帐户?

I would appreciate if anyone could tell me more about SAML IdP and solutions. 如果有人能告诉我更多有关SAML IdP和解决方案的信息,我将不胜感激。

I am building it in PHP. 我正在用PHP构建它。

1 个解决方案

解决方案1
 0 已采纳  2017-07-06 03:38:07

I moved a little bit forward, 我往前走了一点

I think some of my thoughts are wrong. 我认为我的某些想法是错误的。 My portal won't be the IdP. 我的门户网站不是IdP。

But I will have to build a IdP server myself for communicating with my portal and Google and Microsoft 但是我将不得不自己构建一个IdP服务器,以便与我的门户网站以及Google和Microsoft通信

The following link will guide you throughout the basic setup of Shibboleth IdP server. 以下链接将指导您完成Shibboleth IdP服务器的基本设置。 https://wiki.shibboleth.net/confluence/display/IDP30/Installation https://wiki.shibboleth.net/confluence/display/IDP30/Installation

I will update if I can configure successfully. 如果可以成功配置,我将进行更新。 Cheers. 干杯。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 如何使用PHP从IDP发起的SSO处理SAML? - How to process SAML from idp initiated SSO using PHP? php应用程序中的Google SAML APP SSO身份验证 - Google SAML APP SSO authentication in php application Google SAML APP SSO 与 php 应用程序集成 - Google SAML APP SSO integrate with php application IdP 使用 SimplesamlPHP 发起 SSO - IdP initiated SSO with SimplesamlPHP PHP SAML IdP优先 - PHP SAML IdP First 使用simpleSAMLphp作为SP和OpenAM作为IdP的SAML - SAML with simpleSAMLphp as SP and OpenAM as IdP Laravel 5 与 SAML 2 与现有 IDP 集成 - Laravel 5 integrate with SAML 2 with existing IDP Laravel 基于 SAML 的 SSO - SAML based SSO with Laravel 如何将我的saml服务提供商配置为客户端登录页面 - how to configure my saml service provider to client login page Google Analytics(分析)服务提供商潜在客户 - Google analytics service provider leads
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM