如何在不使用saml2 = disabled的情况下在Postman Client中执行启用saml的URL? [英] How to execute saml enabled url in Postman Client without using saml2=disabled?
问题描述
我有一个用例,其中我必须创建一个用于发布请求的Web API. 为了首先开发发布请求,我需要获取服务文档. 在请求服务文档时,我能够通过Chrome浏览器获取服务文档,并在其中提示输入基本身份验证和身份提供程序,即saml.
I have a use case where I have to create a web API for post request. In order to develop the post request first I need to fetch the service doc. At the time of service doc request I am able to fetch the service doc via Chrome Browser where it prompts for basic auth and Identity provider i.e. saml.
现在,我必须通过Postman客户端获取相同的请求. 在Postman客户端中,我提供了必要的标头,例如content-type,Authentication等.但是我无法提取数据.
Now I have to fetch the same request via Postman client. In Postman client I provide necessary headers like content-type, Authentication etc. But I am not able to fetch the data.
场景截图.
Service Doc Basic Auth ScreenShot
Service Doc Basic Auth ScreenShot
服务文档IDp屏幕截图:
service doc IDp screenshot:
通过浏览器获取数据:
邮递员客户端说您的浏览器不支持javascript,请启用它. 启用后会出现同样的错误.
Postman client says your browser does not support javascript please enable it. after enabling getting same error.
实际上,我无权访问托管此服务的管理座舱.
Actually I don't have access to the admin cockpit where this service is hosted.
请帮助.
谢谢, 阿比吉耶
推荐答案
Postman支持REST API,但SAML基于浏览器重定向.
Postman supports REST API but SAML is based on browser redirects.
Postman支持基于REST的OpenID Connect/OAuth.
Postman does support OpenID Connect / OAuth that is REST based.
它要求Javascript的原因是SAML登录表单依赖Javascript进行重定向.否则,您只会看到提交"按钮.
The reason it asks for Javascript is that the SAML login form relies on Javascript to redirect. Otherwise you just see the Submit button.
问题在于SAML和OAuth是具有不同令牌类型的不同协议. SAML是具有很多断言(声明)的XML,而OAuth是具有本质上罐头属性集的JSON.
The problem is that SAML and OAuth are different protocols with different token types. SAML is XML with lots of assertions (claims) and OAuth is JSON with essentially a canned set of attributes.
邮递员需要一个JWT令牌.它不适用于SAML令牌.
Postman requires a JWT token. It won't work with a SAML token.
您在网上看到的有关Postman/SAML的参考是指使用SAML登录到Postman Enterprise版本以获取SSO.
The references you see on the web about Postman / SAML refer to logging in to the Postman Enterprise edition with SAML to get SSO.
这篇关于如何在不使用saml2 = disabled的情况下在Postman Client中执行启用saml的URL?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
