JWT 和 SAML 的区别? [英] Difference between JWT and SAML?

问题描述

JWT(Json Web Token)和SAML的主要区别是什么?请向我推荐任何带有弹簧安全性的示例.提前致谢.

What are the main difference between JWT (Json Web Token) and SAML? Please suggest me any example of these with spring security. Thanks in advance.

推荐答案

SAML 和JWT 是安全令牌格式不依赖于任何编程语言.SAML 是较旧的格式，基于 XML.它通常用于 SAML-P、WS-Trust 和 WS-Federation 等协议中(尽管不是严格要求).

Both SAML and JWT are security token formats that are not dependent on any programming language. SAML is the older format and is based on XML. It's used commonly in protocols like SAML-P, WS-Trust and WS-Federation (although not strictly required).

JWT(JSON Web 令牌)令牌基于 JSON，用于新的身份验证和授权协议，如 OpenID Connect 和 OAuth 2.0.

JWT (JSON Web Token) tokens are based on JSON and used in new authentication and authorization protocols like OpenID Connect and OAuth 2.0.

这篇关于JWT 和 SAML 的区别?的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！