被动STS,允许对Silverlight应用程序和Classic ASP网站进行单点登录
[英]Passive STS to allow single sign-on for Silverlight app and a Classic ASP web site
问题描述
Currently I am working on a LOB Silverlight application. 
目前,我正在研究LOB Silverlight应用程序。 Eventually, I need to implement a single sign-on for the new app and an old Classic ASP web app. 最终,我需要为新应用程序和旧的Classic ASP Web应用程序实现单点登录。 Right now, the Silverlight App is secured using Forms Authentication through a custom Membership Provider. 目前,Silverlight应用程序通过自定义成员资格提供程序使用表单身份验证得到保护。
Reading online, I've come to think that Passive Federated Security is what I need. 在网上阅读时,我开始认为我需要被动联合安全性。 But, I am struggling with following questions: 但是,我正在努力解决以下问题:
1) What is a relatively painless way to set up STS. 1)什么是相对轻松的设置STS的方法。 I don't really want to spend a lot of time setting this up. 我真的不想花很多时间进行此设置。 I've take a look at WIF - it seems to require some platform changes so that really is not an ideal solution [Even though it seems relatively easy to set up] 我看过WIF-它似乎需要进行一些平台更改,因此,这实际上不是理想的解决方案[即使看起来相对容易设置]
2) How do I integrate Classic ASP app to use the STS? 2)如何集成Classic ASP应用程序以使用STS? - Currently it is validating against a custom userStore and putting the authentication/authorization info in the session. -当前正在针对自定义userStore进行验证,并将身份验证/授权信息放入会话中。
3) Eventually, users will be accessing both apps through a third-party portal that authenticates them outside of our organization. 3)最终,用户将通过第三方门户访问这两个应用程序,从而在我们组织外部对它们进行身份验证。 So, somehow the portal would need to be able to issue Security Tokens [SAML??] that the STS will understand. 因此,门户网站需要以某种方式能够发布STS可以理解的安全令牌[SAML?]。
I am currently focusing on 1 and 2. If anyone has even a slightest insight into this, that would be greatly appreciated. 我目前专注于1和2。如果有人对此有一点点了解,将不胜感激。
Thanks, Ravi 谢谢,拉维
1 个解决方案
解决方案1
0 2010-08-13 01:34:31
最新的身份培训套件包含一个完整的实验室,可演示SL +声明身份。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.