从Angular 7项目中的第三方服务器读取SAML响应 [英] Reading the SAML response from third party server in Angular 7 project

问题描述

我创建了一个 angular 7 项目

http://myproject.com/

如果用户未登录，则i将用户重定向到另一个安全身份验证服务器(https://secureauth.com)进行登录.在此提示您输入用户名和密码.检查用户凭据.

If the user is not logged in the i redirect the user to another secure auth server(https://secureauth.com) to login.Here it promted to enther username and password.Then it checks the user credentials.

用户成功登录到安全身份验证服务器后.它返回一个SAML响应.为此，我已将返回URL启用为

once the user successfully logged in to the secure auth server. it returns the one SAML response. For that i have enabled the return URL as

http://myproject.com/ 

在安全身份验证服务器中.在这里，我需要处理我的角度项目中的SAML响应.

in secure auth server. Here i need to process the SAML response from my angular project.

我有一些疑问，

如何处理角度7中的SAML响应?由于它是一种客户端语言.有可能得到回应吗?

How can i process the SAML response in angular 7 ? Since it is a client side language. Is it possible to get the response ?

请分享一些有关此的想法.

Please share some ideas about this .

推荐答案

问题1 :在这里，我需要处理来自我的有角项目的SAML响应.如何处理Angular 7中的SAML响应?

Question 1: Here i need to process the SAML response from my angular project. How can i process the SAML response in angular 7?

答案:
您需要使用Angular 7 Web应用程序实现SAML SP，才能处理SAML IdP(例如Shibboleth IdP)发送的SAML响应.

Answer:
You need to implement SAML SP with your Angular 7 web application to process the SAML response sent by your SAML IdP (such as Shibboleth IdP).

带有angular客户端的SAML2.0 WebSSO 是开源客户端Angular应用程序于2018年3月发布.

SAML2.0 WebSSO with angular client at GitHub repository is the open-source client Angular app released in March 2018.

为了在您的生产环境中快速部署SAML SP，强烈建议利用第三方SAML SP(例如带有Angle Client的SAML2.0 WebSSO).然后，您将有足够的时间为Angular 7 Web应用程序开发自己的SAML SP.

For quick deployment of SAML SP on your production environment, leveraging third-party SAML SP (such as SAML2.0 WebSSO with angular client) is highly recommended. Then you have sufficient time to develop your own SAML SP for your Angular 7 web application.

问题2 :由于它是一种客户端语言.有可能得到回应吗?

Question 2:Since it is a client side language. Is it possible to get the response?

答案:
是的.Angular 7应用程序可能会获取响应，解码SAML响应，验证SAML断言签名，然后从SAML响应中检索用户信息以登录到Angular 7应用程序
如果您使用Angular 7应用程序实现SAML SP并使用Angular 7应用程序的本地用户帐户映射SAML用户.

Answer:
Yes. It is possible for Angular 7 app to get the response, decode the SAML response, validate SAML assertion signature, and then retrieve the user info from the SAML response to log in to your Angular 7 app
if you implement SAML SP with your Angular 7 app and map SAML user with local user account of your Angular 7 app.

您的Angular 7项目中的SAML SP 负责从第三方SAML IdP服务器读取SAML响应(例如"

(I)如何使用Docker构建和运行Shibboleth SAML IdP和SPGitHub存储库上的容器提供了有关使用Shibboleth SAML IdP和OpenLDAP构建基于SAML的身份验证/授权提供程序的说明.

(I) How to build and run Shibboleth SAML IdP and SP using Docker container at GitHub repository provides the instruction on building a SAML-based Authentication/Authorization Provider using Shibboleth SAML IdP and OpenLDAP.

• Shibboleth SAML IdP负责身份联合.

• Shibboleth SAML IdP is responsible for identity federation.

OpenLDAP负责身份验证.

OpenLDAP is responsible for identity authentication.

这将帮助您获得有关 SAML SP如何处理由第三方SAML IdP发送的SAML响应的动手经验.

This will help you to gain hands-on experience on how SAML SP processes the SAML response sent by the third-party SAML IdP.

(II)我已经验证了由Docker运行的Shibboleth SAML IdP(身份提供程序)和OpenLDAP为以下企业应用程序提供的SAML单一登录(SSO).换句话说，我利用运行Docker的Shibboleth SAML IdP和OpenLDAP成功登录到以下企业应用程序.

(II) I have validated SAML Single Sign-On (SSO) provided by Docker-running Shibboleth SAML IdP (Identity Provider) and OpenLDAP for the following enterprise applications. In other words, I leveraged Docker-running Shibboleth SAML IdP and OpenLDAP to log in to the following enterprise applications successfully.

Microsoft Office 365
Google G Suite
Salesforce
Dropbox
Box
Amazon AWS
OpenStack
Citrix NetScaler
VMware vCloud Director
Oracle NetSuite

(III)另一个StackOverflow问题如何在SAML和Shibboleth中实现或集成单一登录" 提供了有关SAML配置的有价值的信息和讨论.

(III) Another StackOverflow question "How to implement or integrate single sign on with SAML and Shibboleth" provides valuable information and discussions on SAML configuration.

这篇关于从Angular 7项目中的第三方服务器读取SAML响应的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！