可以有人简单解释单点登录吗？我想使用openid作为SSO [英] can someone briefly explain Single sign on? i want to use openid as SSO

问题描述

可以有人解释我应该遵循的步骤实现SSO基于PHP的网站。例如用户登录www.siteA.com，当他访问www.siteB.com时，他应该已经登录了（在我的情况下）。 siteB如何识别用户？

can somebody explain steps i should follow to implement SSO on php based website. e.g user logs in to www.siteA.com and when he goes to www.siteB.com he should be already logged in. (in my case). how siteB would identify user? does user has to enter openid again?

推荐答案

请参阅 PHP的简单单点登录。

OpenID是不一样的事情。单点登录是指在一个位置登录，并自动在其他位置对您进行身份验证。 OpenID是关于将身份验证委托给OpenID提供程序，因此您可以使用一组凭据有效地登录到多个站点。

OpenID isn't quite the same thing. Single-sign-on is about logging on in one place and having that authenticate you at other locations automatically. OpenID is about delegating authentication to an OpenID provider so you can effectively log on to multiple sites with the one set of credentials.

值得注意的是，StackOverflow使用OpenID 关联不同网站之间的用户。你是这个意思吗？因为这不是SSO，因为你需要单独登录到每个网站。此外，一些OpenID提供程序（特别是Google）不打球，因为他们不向每个站点发送相同的标识符，因此您无法知道每个站点上的令牌源自同一组凭据。

It's worth noting that StackOverflow uses OpenID to associate a user between different sites. Is this what you mean? Because that's not SSO as you need to separately log on to each site. Also, some OpenID providers (notably Google) don't play ball in the sense that they don't send the same identifier to each site so you have no way of knowing that a token on each site originates from the same set of credentials.

您可以使用OpenID作为SSO的验证方案，但这是偶然的。

You could use OpenID as your authentication scheme for SSO but that's incidental.

这篇关于可以有人简单解释单点登录吗？我想使用openid作为SSO的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！