如何使用Azure AD单点登录注册具有多个部署的集中式应用程序 [英] How to register a centralized application with multiple deployments with Azure AD for Single Sign On
问题描述
因此,我使用Azure AD作为身份验证提供程序实现此单一登录功能。我的问题是:是否可以只为一个可能的多个部署注册一个集中式应用程序?
doc
场景:我有一个潜在的核心应用程序多个部署,他们都有自己独特的网址。
1。 abc.com
2。 abc1.com
3。 abc2.com
列表会更长,所以如果我需要为每个应用程序设置应用程序,那将很痛苦。我可以通过设置一个集中的应用程序来解决这个问题吗?
$
对于`redirect url`我想我可以设置多个`回复网址'。或者我可以吗?
$
困难的部分是`logouturl`:`AAD`只允许设置一个值,所以我需要设置一个集中端点( logout.com/logout)接收注销调用,然后将调用重定向到关联的部署。 (一个用户从abc.com注销,`logout.com / logout`
被解雇,然后需要确定注销发生在abc.com,然后它将调用指向abc.com所以abc .com可以接收和执行清理。)
$
[1]:https://docs.microsoft.com/en-us/azure/active-directory/develop/v2-oauth2-auth-code-flow
So I am implementing this single sign on feature using Azure AD as the authentication provider. My question is : is it possible to register just one centralized application for potentially multiple deployments?
doc
Scenario: I have one core app for potentially multiple deployments, and they all have their unique urls.
1. abc.com
2. abc1.com
3. abc2.com
The list will go longer, so it is painful if I need to set up the application for each one. Can I get around by just setting one centralized app?
For the `redirect url` I think I can set up multiple `reply urls`. Or can I?
The difficult part is the `logouturl`: `AAD` only allow to set up one value, so I need to set up a centralized endpoint (logout.com/logout) to receive the logout call, and then redirect the call to the associated deployment. ( a user log out from abc.com, `logout.com/logout`
is fired, it will then need to identify that the logout happens in abc.com, then it direct the call to abc.com so abc.com can receive and perform cleanups.)
[1]: https://docs.microsoft.com/en-us/azure/active-directory/develop/v2-oauth2-auth-code-flow
推荐答案
应用程序注册和URL之间存在1:1的关系。您只能在注册中指定一个网址。
There is a 1:1 relationship between the app registration and the URL. You can only specify one URL in the registration.
但是,您可以将多个应用部署到一个网络应用,如此
thread :
However, you can deploy multiple apps to one web app as described in this thread:
https://stackoverflow.com/questions/34688681 / azure-web-app-multiple-apps-hosting
https://stackoverflow.com/questions/34688681/azure-web-app-multiple-apps-hosting
这
帖子也可能是有意义的。
这篇关于如何使用Azure AD单点登录注册具有多个部署的集中式应用程序的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
