single-sign-on

问题 I have set up a web application with Keycloak in my local machine. Since Im using Keycloak as SSO implementation, I want in my web app that whenever SIGNUP button is click, user is directed into the registration page, and not going through the LOGIN page. This is the example URL directed to the registration form, however, it contains a tab_id that is generated randomly like a session id. https://site.test/auth/realms/custom/login-actions/authenticate?client_id=test&tab_id=qIdW92Bvwmk I read

问题 I'm doing sso with azure active directory. I have done the setup on azure and go the keys. I'm using metrogistics/laravel-azure-ad-oauth (https://packagist.org/packages/metrogistics/laravel-azure-ad-oauth) package on laravel to do this. However, when I hit the url http://localhost:8000/login/microsoft , I got redirected to microsoft login page and given an error message. I have added following configurations to env file and did whatever package has demanded. AZURE_AD_CLIENT_ID

问题 I have 2 JHipster apps running each on one subdomain (app1.domain.tld & app2.domain.tld). In both apps, users login through Keycloak. The sequence is as such : Angular app sends /authenticate request with credentials to Keycloak In case of successful response returns a authentication cookie POST request is is sent to Jhipster backend app that generates JSessionID cookie JSessionID is then used for every request to backed app. What would be the best way to automatically login user (without

问题 I have 2 JHipster apps running each on one subdomain (app1.domain.tld & app2.domain.tld). In both apps, users login through Keycloak. The sequence is as such : Angular app sends /authenticate request with credentials to Keycloak In case of successful response returns a authentication cookie POST request is is sent to Jhipster backend app that generates JSessionID cookie JSessionID is then used for every request to backed app. What would be the best way to automatically login user (without

问题 I need your help for a special usecase, I searched on the internet but didn't found anything that would mach my case. I'm new to keycloak so it may be something easy to do but I failed to resolve it : I have two apps with spring boot security which are connected to the same keycloack. Front-end of both was generated by JHIPSTER. Let's call them app1 and app2. 1st case : I'm connected to app1 and app2 from the same browser, it works well, I can request app1 from app2. 2nd case : I'm connected

问题 I need your help for a special usecase, I searched on the internet but didn't found anything that would mach my case. I'm new to keycloak so it may be something easy to do but I failed to resolve it : I have two apps with spring boot security which are connected to the same keycloack. Front-end of both was generated by JHIPSTER. Let's call them app1 and app2. 1st case : I'm connected to app1 and app2 from the same browser, it works well, I can request app1 from app2. 2nd case : I'm connected

问题 I have Spring Boot app that uses OAuth 2.0 and Authorization Server. When I try to access secured page, I got redirect on login page of my authorization server (Blitz Identity Provider) and everything works great here like it should. My problem is that I can't extract authorization token in @Controller (on secured page) . That token I want to use later to authorize in second application. Tried this thing (in answer) and it worked, I got my token back, but as you can see, it's a hardcode of

问题 I have Spring Boot app that uses OAuth 2.0 and Authorization Server. When I try to access secured page, I got redirect on login page of my authorization server (Blitz Identity Provider) and everything works great here like it should. My problem is that I can't extract authorization token in @Controller (on secured page) . That token I want to use later to authorize in second application. Tried this thing (in answer) and it worked, I got my token back, but as you can see, it's a hardcode of

问题 I'm trying to implement Single Sign On in an http.sys-based server (using IOCP), and I'm having weird issues with AcceptSecurityContext, which will randomly fail with SEC_E_LOGON_DENIED. I'm getting the failure randomly when connecting from the same client machine to the same server machine (about 50% of the time), even when there is only one client with only one http connection. Both machines are in the same domain, neither of them are domain controlers. The call that fails is the 2nd (and

问题 We have a SSO setup between SAP Netweaver and ADFS (acting as the STS). So, some user will login on a custom ASP.Net application and this application will request a SAML assertion from ADFS to access the SAP system. The thing is that according to SAP documentation the relying party identifier of the SAP system is not an URL (its just a name), and that way is specified en ADFS (eg: SAPSYSTEMRPID). How on earth I can get a token issued using WS-TRUST (which is what ADFS provides) when the