如何在现有的tomcat Web应用程序上实现SSO [英] How to Implement SSO on existing tomcat web application
问题描述
我有一个tomcat 7设置,其上部署了oldApp.war和newApp.war。这两个应用程序共享数据库中用户的相同登录凭据。
I have a tomcat 7 setup with oldApp.war and newApp.war deployed on it. Both the applications share the same login credentials for users on the database.
我可以使用 https:// localhost / oldApp 和 https访问应用程序: localhost / newApp 分别。
我的oldApp是一个Spring MVC java应用程序,当用户登录到oldApp时,我希望有一个链接,将用户带入newApp而不需要登录信息。
My oldApp is a Spring MVC java application and when the user is logged into the oldApp I want to have a link which will take the user into the newApp without asking for the login credentials.
我想知道如何实施SSO来做到这一点。我最好不要运行任何外部服务来处理这个问题。
I want to know how to implement SSO to do this. I preferably don't want to run any external service to handle this.
提前致谢。
推荐答案
您可以通过多种不同的方式实施SSO:
You can implement SSO in many different ways:
- Oauth 2 - http://oauth.net/2/
- SAML 2 - https:// www。 oasis-open.org/committees/tc_home.php?wg_abbrev=security
- Oauth 2 - http://oauth.net/2/
- SAML 2 - https://www.oasis-open.org/committees/tc_home.php?wg_abbrev=security
SAML 2.0有许多Identity /服务提供者角色。
SAML 2.0 has many implementations for Identity/Service provider roles.
对于IDP实施列表,我可以指向此stackoverflow帖子:
https://stackoverflow.com/a/761774/126414
For an IDP implementations list I can point you to this stackoverflow post: https://stackoverflow.com/a/761774/126414
如果您打算实施服务提供商,那么一个很好的春季延伸:
http://静态.springsource.org /弹簧安全/网站/讯号分配延长sions / saml / index.html
If you are planning to implement a service provider there is a nice spring extension: http://static.springsource.org/spring-security/site/extensions/saml/index.html
这篇关于如何在现有的tomcat Web应用程序上实现SSO的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
