single-sign-on

OAuth2 based SSO

纵然是瞬间 提交于 2021-02-20 19:29:22
问题 Our project consists several sub application, and we are looking for a solution to implement SSO to avoid the authentication for each sub application. Suppose this is the structure of our project: authentication server(call it AS or IdP or something else) order-system product-system data-analysis-system ....... And we found that there are a lot of articles of "SSO implemented based on OAuth2" like this. In that article, we prefer to the SAML strategy because it is simple and clear, however

OAuth2 based SSO

扶醉桌前 提交于 2021-02-20 19:29:09
问题 Our project consists several sub application, and we are looking for a solution to implement SSO to avoid the authentication for each sub application. Suppose this is the structure of our project: authentication server(call it AS or IdP or something else) order-system product-system data-analysis-system ....... And we found that there are a lot of articles of "SSO implemented based on OAuth2" like this. In that article, we prefer to the SAML strategy because it is simple and clear, however

SSO Sustainsys.Saml2.Owin Request is not Authenticated - access_denied

[亡魂溺海] 提交于 2021-02-18 08:50:31
问题 I have to do SSO authentication with saml2 for my existing asp.net web application. I am using Sustainsys.Saml2.Owin example to do that. Identity provider is Azure ADFS ( https://sts.windows.net/TENANTID ) I have configured the Startup file. It loads the metadata file and certificate. And in my Login page, I am challenging if not authenticated. It is successfully redirecting to the login page but the Request is never getting authenticated after the login. And in the reply URL we are getting

How to validate WS-Federation SAML tokens with Java Service Provider

最后都变了- 提交于 2021-02-17 20:55:20
问题 I am working on a project that uses ws_federation and SAML to authenticate to a Identity Provider running on a IIS server running on .net called thinktecture I need to write a Java Service Provider that sends a SAML authentication request to the Identity Provider and get the SAML response back on my java web app. I need to know if there are any good libraries to validate SAML and mabye some direction on setting it up or links to a tutorial on getting started. I have tries spring_security-saml

how to pass SAML attributes from service provider(Salesforce) to Visualforce page Controller

馋奶兔 提交于 2021-02-10 20:20:39
问题 SAML response from the identity provides(External) contains the Employee Id as a separate attribute which i need to display in Salesforce VisualForce Page. So help me in passing the attributes from saml response to a VF Page once authenticated via SSO . Thanks in advance 回答1: Do you have a custom SAML handler class? You can generate a template one in SSO settings (bottom of the form, in JIT section) or just look around in documentation. https://developer.salesforce.com/docs/atlas.en-us

idp initiated sso using keycloak

▼魔方 西西 提交于 2021-02-09 08:48:10
问题 This question is in the area of SAML based IDP initiated SSO. As a POC, I have two keycloak instances, say keycloak1 and keycloak2. I would want to achieve the below : Authentication would be done at keycloak1 keycloak1 then directs to keycloak2 to access an keycloak2 client application. To do so, a) create a saml client at keycloak1 under realm1. With IdP initiated SSO Name set as some name without spaces) --> say, keycloakclientsaml . In the Fine Grain SAML Endpoint Configuration section,

How to tell if a user has an active Azure session, in html page, before SSO?

十年热恋 提交于 2021-02-08 11:39:40
问题 I'm trying to create an HTML page, and a part of it is to check if a user has an active Azure AD logged in session. If so then certain elements of the page would change. The IdP and SP are setup correctly, and SSO works, this is a separate page from both of them. This page is here before the user is redirected to the service provider. I just can't figure out how to do this! Is there any way to do it without redirecting the user off the page, maybe using JS? 回答1: After passing the aad

Single sign-on between WordPress and Django

这一生的挚爱 提交于 2021-02-08 06:52:38
问题 I have two web applications on Apache Ubuntu 16.04 Server: WordPress 4.8.1 website Django 1.11 application (with django-rest-framework) I want to install a Single Sign-On service (SSO). For instance, User logs on WordPress, then when he goes to Django website, he is already connected. Actually I don't find anything about SSO between WordPress and Django. Do you have an idea how to do it ? 回答1: Use below plugin implement JWT token for authentication in wordpress website https://wordpress.org

Single sign-on between WordPress and Django

陌路散爱 提交于 2021-02-08 06:50:21
问题 I have two web applications on Apache Ubuntu 16.04 Server: WordPress 4.8.1 website Django 1.11 application (with django-rest-framework) I want to install a Single Sign-On service (SSO). For instance, User logs on WordPress, then when he goes to Django website, he is already connected. Actually I don't find anything about SSO between WordPress and Django. Do you have an idea how to do it ? 回答1: Use below plugin implement JWT token for authentication in wordpress website https://wordpress.org

Custom Identity Provider for OpenAM/OpenSSO

别说谁变了你拦得住时间么 提交于 2021-02-07 10:30:15
问题 We are looking to use OpenAM/OpenSSO to act as a SSO provider. We need, however, to have OpenAM use our mongo datastore under the hood to manage its authentication needs. With this in mind, I found this: http://www.badgers-in-foil.co.uk/notes/installing_a_custom_opensso_identity_repository/ which looks promising. Apparently, this should allow me to add an "Access Manager Repository plugin", but I have since read this: The Access Manager Repository plugin is also called amSDK or legacy SDK as