使用Shibboleth与Google App Engine java一起实施SSO [英] SSO implementation using Shibboleth with Google App Engine java
问题描述
我正在使用java开发 Google App Engine 上的应用程序。在此应用程序中,我必须使用 SAML2 实施 SSO 。我的谷歌应用程序引擎应用程序将充当服务提供者,身份提供者将成为一个单独的服我只是写SSO的SP一面。我是SAML的新手,并且在SAML上做了很多Google,并在SSO中实现了基本的用户身份验证流程。我发现 opensaml 库可用于处理Idp和SP之间的SAML消息。我还发现了 Shibboleth 这是opensaml库的实现。我对选择opensaml或Shibboleth的决定感到非常困惑。任何人都可以建议我选择opensaml或Shibboleth,如果有人在Google应用程序引擎中发现了关于SSO的SP实现的任何教程,他也可以分享它。 解决方案
您可以嵌入 Spring SAML扩展(产品构建在顶部的OpenSAML)到您的应用程序中。它可以使您充当SAML 2.0服务提供商。
您可以在 http://saml-federation.appspot.com/ ,它显示了连接到SSO Circle IDP的Spring SAML示例应用程序。
Shibboleth不提供可嵌入到应用程序中的SAML SP组件。 Shibboleth SP作为Apache或IIS Web服务器的插件,不能与Google App Engine一起使用。您可以将Spring SAML作为SAML 2.0 WebSSO的示例如果您想自己写,请遵循实施。 最新动态文档可在Spring回购协议中找到,相关资源位于 GitHub 。
I am developing an application on Google App Engine in java. In this application I have to implement SSO using SAML2. My google app engine application will act as service provider and identity provider will be a separate server. I have just to write the SP side of SSO. I am new to SAML and did much google on SAML and come to basic flow of user authentication in SSO. I found opensaml library that can be used to handle SAML messages between Idp and SP. I also found Shibboleth which is the implementation of opensaml library. I am very confuse on the decision of choosing opensaml or Shibboleth. can anyone suggest me on choosing opensaml or Shibboleth and if some one have found any tutorial on SP implementation of SSO in Google app engine he can also share it.
You can embed Spring SAML Extension (product built on top of OpenSAML) into your application. It will enable you to act as a SAML 2.0 Service Provider.
You can see a working demo of such approach at http://saml-federation.appspot.com/ which shows a Spring SAML sample application connected to SSO Circle IDP.
Shibboleth doesn't provide a SAML SP component which can be embedded into applications. The Shibboleth SPs act as plugins to Apache or IIS web servers and cannot be used with Google App Engine.
You can also see the Spring SAML as an example of SAML 2.0 WebSSO implementation to follow in case you'd like to write it youself. Latest documentation is available in Spring repos, sources are at GitHub.
这篇关于使用Shibboleth与Google App Engine java一起实施SSO的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
