堆栈内存溢出
  简体   繁体   English

WSO2 Identity Server 5.9.0 oAuth2 配置类型

[英]WSO2 Identity Server 5.9.0 oAuth2 type of configuration

 原文  2020-02-18 00:40:46       oauth-2.0/ wso2/ identity/ wso2is

问题描述

I want to use WSO2 as a centralized authentication solution for all my clients.我想使用 WSO2 作为我所有客户的集中式身份验证解决方案。

I'm trying to setup this scenario: Each client as Dev, QA and Prod Environments.我正在尝试设置这个场景:每个客户端都作为开发、质量保证和生产环境。 Some users should be able to log in into different environment.一些用户应该能够登录到不同的环境。

So far, as with oAuth2 I could setup an app id for each environment, and allow or deny authentication per application.到目前为止,与 oAuth2 一样,我可以为每个环境设置一个应用程序 ID,并允许或拒绝每个应用程序的身份验证。

With WSO2, I've been trying to setup some type of differentiated identity vaults, or specify this type of relationship, but unfortuantely, documentation hasn't been quite illustrative about how things are done.使用 WSO2,我一直在尝试设置某种类型的差异化身份库,或指定这种类型的关系,但不幸的是,文档并没有很好地说明事情是如何完成的。

Documentation talks about SSO but with SSO you have several IDP, in this scenario I want WSO2 IS 5.9.0 to BE the identity provider for all my infrastructure...文档讨论 SSO,但使用 SSO 您有几个 IDP,在这种情况下,我希望 WSO2 IS 5.9.0 成为我所有基础设施的身份提供者...

2 个解决方案

解决方案1
 1 已采纳  2020-02-18 01:22:21

MultiTenancy create an IDP for each tenant automatically. MultiTenancy 自动为每个租户创建一个 IDP。

The only thing needed is to login with the credentials setup when adding the tenant, and WSO2 would handle the rest.唯一需要的是在添加租户时使用凭据设置登录,WSO2 将处理其余的工作。

Yes is THAT simple!是的,就是这么简单!

解决方案2
 1  2020-09-24 20:57:38

If you don't want to create a multitenant installation, you may configure a service provider for each environment and also a different userstore for each environment with different credentials and set service providers up with adaptative authentication requesting only authenticated against the matching userstore.如果您不想创建多租户安装,您可以为每个环境配置一个服务提供者,并为每个环境配置一个不同的用户存储,使用不同的凭据,并使用自适应身份验证设置服务提供者,请求仅针对匹配的用户存储进行身份验证。

It is explained in this documentation of WSO2: https://docs.wso2.com/display/IS570/Configuring+User+Store-Based+Adaptive+Authentication在 WSO2 的本文档中对此进行了解释: https : //docs.wso2.com/display/IS570/Configuring+User+Store-Based+Adaptive+Authentication

You may also do it the same, based on the user's role with adaptative authentication if you don't want to create different userstores.如果您不想创建不同的用户存储,您也可以根据具有自适应身份验证的用户角色执行相同的操作。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 WSO2身份服务器OAuth2承载SAML声明 - WSO2 Identity Server OAuth2 Bearer SAML Assertion oAuth2 - WSO2 API Manager和Identity Server集成 - oAuth2 - WSO2 API Manager and Identity Server Integration 使用WSO2身份服务器的Spring oauth2客户端凭证授予 - Spring oauth2 client credential grant with WSO2 Identity server wso2身份服务器oauth2请求返回HTTP错误415 - wso2 identity server oauth2 request returns HTTP error 415 如何使用 oauth2 wso2 身份服务器获取授权码以关闭登录页面 - How to get authorize code to dismiss login page with oauth2 wso2 identity server 如何限制ldap用户登录wso2身份服务器oauth2 / openid - how to restrict a ldap user from login In wso2 Identity server oauth2/openid wso2身份服务器oauth userinfo没有角色 - wso2 identity server oauth userinfo no role Wso2身份服务器,带有用于OAuth的mssql和ReadOnlyLDAP - Wso2 Identity Server with mssql and ReadOnlyLDAP for OAuth wso2身份服务器oauth授权 - wso2 identity server oauth authorization 帐户锁定时,OAuth2登录时出现WSO2身份服务器NullPointerException - WSO2 identity server NullPointerException on OAuth2 login when account is locked
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM