I need to enable SSO in my and one more application. Both applications are multi-tenant applications. (to log in, user must provide user name, password and tenant name).
我需要在我和另外一个应用程序中启用SSO。这两个应用程序都是多租户应用程序。 (要登录,用户必须提供用户名,密码和租户名称)。
Every tenant will have it's own directory in identity provider or use different IDP.
每个租户都将在身份提供商中拥有自己的目录或使用不同的IDP。
Does it make sense to authenticate the user on identity provider using tenant name beside user name and password?
使用用户名和密码旁边的租户名称对身份提供商的用户进行身份验证是否有意义?
Is there a IDP solution capable of providing this service? (3 parameter log in)
是否有能够提供此服务的IDP解决方案? (3参数登录)
1 个解决方案
#1
0
I would think many of the IDPs out there can be made to take in three parameters. If you are using the common SAML Web SSO spec, I don't see any problem in using SAML.
我认为那里的许多国内*者可以接受三个参数。如果您使用的是常见的SAML Web SSO规范,我认为使用SAML时没有任何问题。
As an example OpenAM is quite customizable, free and supports SAML.
作为一个例子,OpenAM可以自定义,免费并支持SAML。
This is probably of help https://wikis.forgerock.org/confluence/display/openam/Write+a+custom+authentication+module
这可能是有帮助的https://wikis.forgerock.org/confluence/display/openam/Write+a+custom+authentication+module
#1
0
I would think many of the IDPs out there can be made to take in three parameters. If you are using the common SAML Web SSO spec, I don't see any problem in using SAML.
我认为那里的许多国内*者可以接受三个参数。如果您使用的是常见的SAML Web SSO规范,我认为使用SAML时没有任何问题。
As an example OpenAM is quite customizable, free and supports SAML.
作为一个例子,OpenAM可以自定义,免费并支持SAML。
This is probably of help https://wikis.forgerock.org/confluence/display/openam/Write+a+custom+authentication+module
这可能是有帮助的https://wikis.forgerock.org/confluence/display/openam/Write+a+custom+authentication+module