OpenID登录工作流程? [英] OpenID login workflow?
问题描述
当有人使用Open ID登录网站时,幕后发生了什么?
When someone logs into a site using Open ID, what goes on behind the scene?
有人可以向我解释从合作伙伴开放ID站点进行典型登录期间的工作流程/步骤吗? (例如本网站)
can someone explain to me the work flow/steps of what happens during a typical login from a partner open ID site? (like this site)
即当我以myopenid登录时,该网站传递了什么?怎么知道这是正确的登录名?
i.e. when I login at myopenid, what is passed into this site? how does SO know it was a correct login?
推荐答案
什么是OpenId?
OpenID是一个开放的,去中心化,免费框架,用于以用户为中心的数字身份. OpenID利用了现有的互联网技术(URI,HTTP,SSL,Diffie-Hellman),并且意识到人们已经在为自己创建身份,无论是在其博客,照片流,个人资料页面等上.借助OpenID,您可以轻松地转换一个身份将这些现有URI转换成一个帐户,该帐户可在支持OpenID登录的网站上使用.
OpenID is an open, decentralized, free framework for user-centric digital identity. OpenID takes advantage of already existing internet technology (URI, HTTP, SSL, Diffie-Hellman) and realizes that people are already creating identities for themselves whether it be at their blog, photostream, profile page, etc. With OpenID you can easily transform one of these existing URIs into an account which can be used at sites which support OpenID logins.
区别在于标识将被分散到外部站点(例如Wordpress,yahoo ...).网站会知道您的身份验证是否正确,然后让您登录.常规身份验证表会与他们的私有数据库进行比较,然后让您登录或不登录.您只能使用登录密码登录该网站.使用openId,您可以在多个网站上使用相同的登录密码.
The difference it's that the identification will be decentralized to an external site (example Wordpress, yahoo...). The website will know that the identification is ok or not and let you loggin.Conventional authentification form do a comparison to their private database and let you loggin or not. You can only use the loggin-password to this website. With openId you can use the same loggin-password on multiple website.
- You can see the Flow of operation here (image)
- Step-by-step activities here
- Step-by-step activities here (other blog)
- List item
- 用户连接到启用了OpenID的网站.
- 用户输入凭据信息.
- 帖子是使用BASE64(提供者的网站) 制作的
- 已建立答案(包含到期时间)
- 网站将用户重定向到提供者以进行登录.
- 用户输入密码并提交.
- 验证已完成.
- 登录!
- User connect to OpenID enabled website.
- User enter credential information.
- A Post is made with a BASE64 (website to provider)
- An answer is built (that contain expiration)
- The website redirect the user to the provider to login.
- User enter password and submit.
- Verification is done.
- Login!
我为此问题写下了这个答案,但是这个答案比较老了,所以我在这里粘贴了答案.
I wrote this answer for this question but this one is more old, so I pasted my answer over here.
这篇关于OpenID登录工作流程?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
