发表新帖
发表新帖

Enterprise Single Sign On

前端 未结
关注
2 623
余生分开走
余生分开走 2021-01-29 09:59

Am searching for Desktop application manage Enterprise Single Sign On (SAML v2, Identity Provider , Service Provider )

2条回答
  • 小蘑菇
    小蘑菇 (楼主)
    2021-01-29 10:27

    I have used ADFS 2.0 as RSTS for SSO where in we have all the IdentityProviders and the Relying parties are configured. You can use the active end point of the STS (in case you want to authenticate against external sources like web api/ web service/ AD/ Database then prefer writing you own custom STS as the IDP).

    Firstly you will get the boot strap token from the IDP and then get the Relying party token from the RSTS. In both the calls you need to communicate against the active end point (a wcf end point which implements WS Trust protocol).

    Passive end points/ passive calls are used for thin clients.

    You can try using ADFS 3.0 which even supports JOT (JSON) tokens (a very light weight token) along with SAML 2.0.

    0 讨论(0)
 看不清?
提交回复
热议问题