PHP SAML IdP优先

I'm trying to make a Client portal (IdP) in PHP.

That portal links to several SP's (like Magento, Google Analytics and Wordpress)

Seeing how this needs to works my IdP needs to initiate authentication. when clicked on a link to an SP the authentication needs to start.
So it needs an IdP first application. I try to set it up with SimpleSAML, the only problem is the initial explanation on the simpleSAML website isn't clear enough for me (https://simplesamlphp.org/docs/stable/simplesamlphp-idp) can someone give me some better or in depth explanation about IdP first?

this is a new client portal but the clients already have accounts with the mentioned sites and other sites, sometimes more than 1 account. Is it possible to connect those accounts without doing it myself but let the clients connect them?

If there are better solutions than SAML to this problem please don't hesitate to mention them

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

1条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
dongyao8698 2015-04-30 10:34
关注
4.5 IdP initiated login

If you use a simpleSAMLphp IdP, and you want users to be able to bookmark the login page, you need to test IdP initiated login. To test IdP initiated login from a simpleSAMLphp IdP, you can access:

https://.../simplesaml/saml2/idp/SSOService.php?spentityid=<entity ID of your SP>&RelayState=<URL the user should be sent to after login>

Note that the RelayState parameter is only supported if the IdP runs version 1.5 of simpleSAMLphp. If it isn't supported by the IdP, you need to configure the RelayStateoption in the authentication source configuration.

As for account linking, it's my understanding that simple doesn't do this (it's getting out of the simple realm). To use it, you'll have to clean up accounts.

[edit]Actually, I suppose you could - though you'd have to build a structure to do it. You would need to somehow build a mapping of accounts from the corporate ID to the SP accounts at Wordpress, Google, etc.
本回答被题主选为最佳回答 , 对您是否有帮助呢?

解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

报告相同问题？

关注问题

PHP SAML IdP优先 php
2015-04-30 07:50

回答 1 已采纳 4.5 IdP initiated login If you use a simpleSAMLphp IdP, and you want users to be able to b
从SP发起的登录发送用户名到预填充IdP登录表单？ php
2019-02-19 11:44

回答 1 已采纳 The SAML request doesn't contain a Subject. Appreciate you've requested the user enter their user
如何在php中反序列化SAML请求 - 无法安装LightSAML laravel php
2018-03-27 04:50

回答 3 已采纳 Sorry I had to add this to composer and update: "repositories": [ { "type": "vcs",
saml-idp：适用于Craft CMS的SAML身份提供程序（IdP）插件
2021-02-12 22:55

Craft CMS的SAML IDP安装要安装，请使用composer： composer require flipboxfactory/saml-idp测验make test贡献请参阅。学分执照请参阅以获取更多信息。
在php中从SAML获取第二个AttributeValue php
2016-11-03 15:19

回答 1 已采纳 You can use SimpleSAMLphp's API $as = new SimpleSAML_Auth_Simple('default-sp'); $as->requireAu
SAML可以将非PingFederate SP与PingFederate IdP连接吗？ php
2016-07-11 04:42

回答 1 已采纳 To use Ping Identity's PHP Integration Kit, you must be licensed for and using PingFederate. For
SSOCircle保持重定向到Consent页面SAML2.0 php
2018-03-10 04:34

回答 1 已采纳 Update: The subsequent paragraph assume that when you modified your code to avoid the cyclique red
php 使用saml,php-saml
2021-04-02 08:03

zfxsteven的博客 OneLogin's SAML PHP Toolkit Add SAML support to your PHP software using this library.Forget those complicated libraries and use this open source library providedand supported by OneLogin Inc.The 3.X ....
PHP Xpath返回零匹配 php
2016-10-18 13:22

回答 1 已采纳 As stated on the comments by Sami Kuhmonen you may need to register the namespaces, here is an exa
找不到类'App \ Http \ Controllers \ Saml2' laravel php
2017-02-22 18:11

回答 3 已采纳 You need to use full namespace for the facade: \Saml2::login(URL::full()); Or add this to the t
如何在PHP中检索SAML2令牌以从WSO2 APIM获取OAuth令牌 php
2016-11-21 15:43

回答 2 已采纳 I have succeeded, so here are some indications for others who may have the same issue. I hacked
php 使用saml,php – 使用SimpleSAML作为SP和IDP用于开发环境
2021-04-02 08:02

Dr.Rodney的博客我正在尝试使用我的网络应用程序中的SAML进行身份验证.Backtrace:1 /app_path/application/lib/simplesamlPHP/www/_include.PHP:37 (SimpleSAML_exception_handler)0 [builtin] (N/A)Caused by: Exception: Unable ...
将simpleSAMLphp（SAML 2.0）与CMS Made Simple（CMSMS）集成 php
2012-10-31 21:58

回答 2 已采纳 This seems like conflicting session management between simpleSAMLphp and CMSMS. A simple way arou
php 解析 saml协议,SAML2.0 协议初识（二）---Service Provider(SP)
2021-04-26 20:09

App小公主的博客上一节，我们初步认识了 SAML 协议的概念和工作流程，这一节将介绍 SP 端的一些细节。通常情况下，SP 端是请求发起端，即当用户访问 SP 端的受保护资源时，由 SP 端向认证中心(IDP 端)发起认证请求。最终请求会回到 ...
php 使用saml,SimpleSamlPHP-生成SP元数据
2021-04-02 08:02

不吃酸菜的小贱人的博客现在他们(当然)需要我提供SP的元数据.SimpleSamlPHP提供了一个非常用户友好的转换器(在simplesamlphp / www / admin / metadata-converter.php中找到该转换器),您可以使用该转换器将IdP元数据XML转换为...
docker-simplesamlphp：用于开发和测试的Dockerized即插即用SAML 2.0身份提供程序（IdP）
2021-02-25 02:10

Docker测试SAML 2.0身份提供程序（IdP）带有即插即用SAML 2.0身份提供程序（IdP）的Docker容器，用于开发和测试。...用法使用docker run命令docker run --name=idp \ -p 8080:8080 \ -e SIMPLESAMLPHP_SP_ENTITY_ID=...
saml-2.0-demo
2021-04-10 01:26

saml-idp-demo模块是身份提供程序（IdP）模块。 saml-sp-shibboleth-demo和saml-sp-springboot-demo都是服务提供商（SP）模块。请注意，最后一个模块是SP的Java版本。在本演示中将不再讨论。如果您想了解其运行...
saml2-bridge-bundle:提供SAML身份提供程序（idp）的Symfony捆绑软件
2021-04-30 09:03

SAML2桥接套件一个使用将SAML功能添加到您的应用程序的捆绑软件，其灵感来自SAML支持SAML支持是有限...sas/saml2-bridge-bundle 将捆绑包添加到app/AppKernel.php内核public function registerBundles (){ // ... $ bu
php集成saml,关于simplsamlphp的配置问题，报错找不到元数据怎么解决？
2021-04-18 12:41

毁男孩的小图纸的博客但是当配置好之后、接收到从cognito发出的断言时simplesamlphp提示无法定位元信息：我不确定我的配置是哪里出问题了(虽然肯定是哪里出问题了)，配置代码如下：saml20-idp-hosted.php 文件：$metad...
PHP SAML SP端
2019-10-18 17:30

qqtaizi123的博客 SAML2.0介绍 https://www.cnblogs.com/shuidao/p/3463947.html ... php-saml https://github.com/onelogin/php-saml ①使用composer直接引入 composer require onelogin/php-saml ...
没有解决我的问题, 去提问

悬赏问题

¥15 delta降尺度计算的一些细节，有偿
¥15 Arduino红外遥控代码有问题
¥15 数值计算离散正交多项式
¥30 数值计算均差系数编程
¥15 redis-full-check比较两个集群的数据出错
¥15 Matlab编程问题
¥15 训练的多模态特征融合模型准确度很低怎么办
¥15 kylin启动报错log4j类冲突
¥15 超声波模块测距控制点灯，灯的闪烁很不稳定，经过调试发现测的距离偏大
¥15 import arcpy出现importing _arcgisscripting 找不到相关程序

PHP SAML IdP优先

1条回答 默认 最新

悬赏问题

1条回答默认最新