德尔福SAML(Web应用程序还是桌面应用程序)? [英] Delphi & SAML (Web apps or desktop apps)?

问题描述

SAML协议(Sing Sign ON)是仅用于Web应用程序和Web服务，还是也用于标准应用程序?

is the SAML protocol (Sing Sign ON) used soley for web apps and web services, or is it also used for standard applications?

修订:

我正在为Single Sign On寻找一些Windows(标准应用程序(基于Web的应用程序))协议

I am looking for some windows (Standard Applications (not web based)) protocols for Single Sign On

推荐答案

如果您专门查看Windows，为什么不使用Kerberos和集成Windows身份验证?它内置在Active Directory和域控制器中.一旦您开始跨入Internet和其他安全域，它就不会真正起作用，但是在企业环境中，它可以很好地在防火墙后面运行.

If you are looking at Windows specifically, why not use Kerberos and Integrated Windows Authentication? It's built into Active Directory and Domain Controllers. It doesn't really work once you start crossing into the Internet and different security domains but it works well behind your firewall in a corporate environment.

但是，SAML可以用于桌面应用程序.我已经碰到过应用程序，然后才能从桌面检索Kerberos票证，对STS进行WSTrust/RST调用以验证Curb令牌，并在RSTR中取回SAML令牌，该令牌将嵌入到Web Services调用中，需要制作的桌面应用程序.

However, SAML can be used for desktop applications. I've run into applications before that would retrieve the Kerberos ticket from the Desktop, make a WSTrust/RST call to an STS to validate the Kerb token and get back a SAML token in the RSTR that would be embedded into a Web Services call that the desktop application needed to make.

这篇关于德尔福SAML(Web应用程序还是桌面应用程序)?的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！