dongzenglin8292 2013-06-10 05:05
浏览 83

是否可以使用SAML进行授权

Currently i am using simplesamlphp and we have successfully implemented SSO, in which SAML request is sending through HTTP-REDIRECT and getting response through HTTP-POST.

Here my doubts are:

Can i send the authentication details(username&password) using HTTP-POST?

Is the simplesamlphp only for authentication or can i use for authorization purpose like oath for Facebook?

  • 写回答

1条回答 默认 最新

  • duankun9280 2013-06-10 18:58
    关注

    When you authenticate with simplesamlPHP, you get a SAML token which contains attributes, These attributes are what are used for authorisation. They can be derived from "a storage of users, a database, a LDAP or a radius interface".

    Username can definitely be an attribute. However, password shouldn't be for security reasons.

    In terms of authentication, it supports OpenID. For OAuth, I suspect you would have to roll your own authentication module.

    评论

报告相同问题?

悬赏问题

  • ¥15 求差集那个函数有问题,有无佬可以解决
  • ¥15 【提问】基于Invest的水源涵养
  • ¥20 微信网友居然可以通过vx号找到我绑的手机号
  • ¥15 寻一个支付宝扫码远程授权登录的软件助手app
  • ¥15 解riccati方程组
  • ¥15 display:none;样式在嵌套结构中的已设置了display样式的元素上不起作用?
  • ¥15 使用rabbitMQ 消息队列作为url源进行多线程爬取时,总有几个url没有处理的问题。
  • ¥15 Ubuntu在安装序列比对软件STAR时出现报错如何解决
  • ¥50 树莓派安卓APK系统签名
  • ¥65 汇编语言除法溢出问题