XPage App，Notes客户端和连接之间的SSO [英] SSO between XPage App, Notes client and Connections

问题描述

有人成功创建了包含SSO的XPage应用程序，以便用户登录Notes客户端并能够打开使用Social Enabler将Connections数据集成到XPage中的XPage应用程序(数据库)吗?我的项目成功的关键是不需要提示用户输入用户名和密码(用户刚刚登录便笺！).

Has anybody had any success creating an XPage application that includes SSO so that the user logs into notes client and is able to open an XPage application (Database) which uses the Social Enabler to integrate Connections data into the XPage? The key to my projects success is to not need to prompt the user for their username and password (The user has just logged into notes!).

我看过@nheidloff关于SSO的博客，该博客在xpage和连接之间使用LTPA令牌，但是我需要它在Notes客户端中工作.如果有人在创建此应用程序方面取得了成功，可以请您分享一些技巧.

I have seen @nheidloff blog about SSO using the LTPA token between an xpage and connections, however I need this to work within the notes client. If anybody has any success in creating this, can you share any tips please.

推荐答案

我已经在博客中介绍了一种技术...

I have blogged about a technique...

http://lotusnotus.com/lotusnotus_en.nsf/dx/authenticating-notes-users-for-web-apps-automatically....htm

总而言之，我们需要一个LtpaToken来进行基于Web的身份验证.我们可以使用会话对象的Java方法在Notes客户端中创建LtpaToken.所以我的解决方案包括两个部分.

To sum up, we need a LtpaToken for web-based authentication. We have ability to create an LtpaToken inside Notes client using a Java method of the session object. So my solution has two parts.

一个Java代理，可为客户端上已通过身份验证的用户生成有效的LtpaToken.我们正在从任何Lotusscript例程中调用此Java代理.

A java agent that produces a valid LtpaToken for the authenticated user on the client side. We are calling this java agent from any Lotusscript routine.

第二部分是任何可以匿名访问的数据库上的重定向网页.这可能是Lotusscript代理，servlet或XAgent.它将从GET请求中获取LTPAToken和目标URL，将LTPAToken添加到cookie中，并将用户重定向回目标URL.

The second part is a redirection web page on any database that can be accessed anonymously. This might be a Lotusscript agent, servlet or XAgent. It will get LTPAToken and a target URL from a GET request, add the LTPAToken into cookies and redirect the user back to the target URL.

在Lotus Notes客户端中，任何Lotusscript动作都可以调用Java代理，获取有效的LTPAToken并启动构造的URL，该URL指向带有必要参数的重定向网页.

In Lotus Notes client, any Lotusscript action might call the Java agent, acquire a valid LTPAToken and launch a constructed URL which points to the redirection web page with necessary parameters.

我在Domino Web服务器上检测到一些错误.有关这些错误的技术和解决方法的详细信息，您可以参考我的博客文章.

There is a couple of bugs I have detected on Domino Web server. For details of the technique and workarounds about these bugs, you might refer to my blog entry.

这篇关于XPage App，Notes客户端和连接之间的SSO的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！