WSO2身份服务器+ Rest STS客户端(不带ESB) [英] WSO2 Identity Server + Rest STS Client (without ESB)
问题描述
以下是否可以使用WSO2 IS?我浏览了不同的WSO2博客。他们是很好的指针。
Is below possible using WSO2 IS? I have gone through different WSO2 blogs. They are nice pointer. Still I need to advised on this.
需求-WSO2身份服务器+ Rest STS客户端(不带ESB)
Requirement- WSO2 Identity Server + Rest STS Client (without ESB)
- 在WSO2 Identity Server上管理用户。
- STS客户端使用RestFul API调用WSO2 Identity Server的STS服务,以进行以下操作:a)获取安全令牌b)验证令牌c )取消已发行令牌d)续签已发行令牌
- 使用特定的安全令牌检索用户个人资料。
参考:
- https://web.cci.emory.edu/confluence/display/EmorySTS/Security+Token+Service+Client+API
- http://blog.facilelogin.com/2011/07/integrating-3-legged-oauth-with-xacml.html
- http://blog.facilelogin.com/2010/05/managing-users-and-roles-with-wso2.html
- http:/ /blog.facilelogin.com/2009/05/security-token-service-with-wso2.html
- http://blog.facilelogin.com/2009/05/accessing-proxy-services- in-wso2-esb.html
- http://download.forgerock.org/downloads/openam/javadocs/9/com/sun/identity/wss/sts/TrustAuthorityClient.html
- https://web.cci.emory.edu/confluence/display/EmorySTS/Security+Token+Service+Client+API
- http://blog.facilelogin.com/2011/07/integrating-3-legged-oauth-with-xacml.html
- http://blog.facilelogin.com/2010/05/managing-users-and-roles-with-wso2.html
- http://blog.facilelogin.com/2009/05/security-token-service-with-wso2.html
- http://blog.facilelogin.com/2009/05/accessing-proxy-services-in-wso2-esb.html
- http://download.forgerock.org/downloads/openam/javadocs/9/com/sun/identity/wss/sts/TrustAuthorityClient.html
推荐答案
基于WS-Trust的STS用于基于SOAP的服务。但是WSO2 Identity Server还实现了另一个称为被动STS的规范-它是WS-Trust功能的包装。 WSO2 Identity Server中对PassiveSTS的支持可用作获取REST客户端令牌的方式。
STS which is based on WS-Trust is for SOAP based services. But WSO2 Identity Server also implements another specification called Passive STS - which is wrapper of the WS-Trust functionality. PassiveSTS support in WSO2 Identity Server can be used as way to obtain a token for REST client.
这篇关于WSO2身份服务器+ Rest STS客户端(不带ESB)的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!