堆栈内存溢出
  简体   繁体   English

WSO2 Identity Server 用户概念

[英]WSO2 Identity Server Concept of Users

 原文  2022-03-27 12:13:18       wso2/ wso2-identity-server

问题描述

I am new to WSO2 Identity Server and what I intend to use it for user creation, authentication and authorization for microservices(4 micro-services).我是 WSO2 Identity Server 的新手,我打算将其用于微服务(4 个微服务)的用户创建、身份验证和授权。 However, I am struggling to grab the concept of users.但是,我正在努力抓住用户的概念。 My understanding is we have two user groups: users who have access to the identity server and users you create for your application.我的理解是我们有两个用户组:有权访问身份服务器的用户和您为应用程序创建的用户。 I don't know if I right with that.我不知道我是否正确。 If that is the case how do I create users for my micro-services and users who can access the identity server?如果是这种情况,我该如何为我的微服务创建用户和可以访问身份服务器的用户?

1 个解决方案

解决方案1
 0  2022-03-30 04:01:24

Like you mentioned, in the WSO2 Identity Server we can maintain two types of users就像你提到的,在 WSO2 身份服务器中,我们可以维护两种类型的用户

  1. Users who perform administrative or development tasks (Privileged users)执行管理或开发任务的用户(特权用户)
  2. Users who consume your applications eg who uses WSO2 IS to authenticate to the applications (End users of your Business)使用您的应用程序的用户,例如使用 WSO2 IS 对应用程序进行身份验证的用户(您企业的最终用户)

For both types of users onboarding flow is the same (check [1]).对于这两种类型的用户,入职流程是相同的(检查 [1])。 The main difference is Privileged users(type-1 users) will have roles with advanced permissions & end-users (type-2) won't have that kind of roles.主要区别在于特权用户(类型 1 用户)将拥有具有高级权限的角色,而最终用户(类型 2)将没有这种角色。

Eg: If we want to use WSO2 Identity Server for employee IAM for organization, we can consider all the employees as users.例如:如果我们想为组织的员工 IAM 使用 WSO2 身份服务器,我们可以将所有员工视为用户。 Here most of them would be end users but infrateam/IT team will be considered as privileged users as they have to maintain or perform develop tasks in WSO2 Identity Server.这里他们中的大多数将是最终用户,但 infrateam/IT 团队将被视为特权用户,因为他们必须在 WSO2 Identity Server 中维护或执行开发任务。

For better management, we can have privileged users in one user store and endusers in another userstore.为了更好地管理,我们可以在一个用户存储中拥有特权用户,在另一个用户存储中拥有最终用户。 Eg based on users store, it is easier to write adaptive scripts to restrict privileged users from login to business applications or SCIM API to list down only privileged users.例如,基于用户存储,更容易编写自适应脚本来限制特权用户登录业务应用程序或 SCIM API 以仅列出特权用户。

[1] https://is.docs.wso2.com/en/latest/learn/adding-users-and-roles/ [1] https://is.docs.wso2.com/en/latest/learn/adding-users-and-roles/

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 使用 WSO2 Identity Server 和 WSO2 API Manager 保护后端 - Securing backend with WSO2 Identity Server and WSO2 API Manager Wso2 Identity Server Adaptive Authentication with Federation - Wso2 Identity Server Adaptive Authentication with Federation WSO2 身份服务器:更新用户失败 - WSO2 Identity Server: update user fails WSO2 身份服务器 - RDP 的 mfa 问题 - WSO2 identity server - question for mfa for RDP 我们可以访问 wso2 身份服务器中日期范围内的活跃用户吗? - Can we access active users in between date range in wso2 identity server? WSO2 身份服务器关闭挂钩已触发 - WSO2 Identity Server Shutdown hook triggered WSO2身份服务器:无法登录? - WSO2 identity Server: can not login? 如果用户在 wso2 身份服务器中尝试失败,我如何在 wso2 日志中记录用户名 - how can i log username in wso2 logs in case of failed attempt of a user in wso2 identity server WSO2 IdentitiServer 5.10.0:如何将路由移动短信提供商与 Wso2 身份服务器 MFA 集成 - WSO2 IdentitiServer 5.10.0 :How to integrate route mobile SMS Provider with Wso2 Identity server MFA WSO2 身份服务器 6.0.0 SOAP API 替换 - WSO2 identity server 6.0.0 SOAP APIs Replacement
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM