5

我正在开发一个需要对 2 个网站进行跨域(非子域)身份验证的单点登录项目。

我在这里和网络上搜索了其他人所说的内容,并尝试使用 DotNetOpenAuth,但我无法理解它,文档也没有太大帮助。所以我转向OneLogin,它似乎提供了我想要的东西,但同样缺乏文档。我想我必须同时使用它们,但我无法连接拼图的各个部分。

我越来越接近实现我自己的基于Web 应用程序的单点登录企业安全性的 SSO 解决方案,但我希望避免这种情况,因为它比使用现有解决方案需要更多时间并且更容易出错。

因此,现在为所有大师提出一些问题:

  1. 您能否阐明如何使用 DotNetOpenAuth 在 OneLogin 中对用户进行身份验证?
  2. 我在哪里可以获得更多 OneLogin 的示例?
  3. 对于那些尝试过 VS2010 项目模板的人来说,DotNetOpenAuth 是编译还是缺少 RelyingPartyLogic.dll?我在哪里可以得到那个?

谢谢你的帮助!

4

1 回答 1

4

DotNetOpenAuth supports OpenID, OAuth, and InfoCard. The OneLogin SAML toolkit is for web based-sso with SAML. These two libraries will not work together.

For more information on the OneLogin .NET toolkit I can recommend this article https://onelogin.zendesk.com/entries/20186386-introduction-to-onelogin-s-saml-toolkits

DotNetOpenAuth will help you do what you want to do provided you can support OpenID from your 2 websites; however, my recommendation is for you to look into the SAML family of protocols (wikipedia has a good article on this) You need to implement an identity provider (the site that authenticates you), and the consumer (the site you access).

You might want to look at a comparison between OpenID and SAML in order to choose which is better for you. Here is further reading that can help with that: https://onelogin.zendesk.com/entries/270738-openid-or-saml-for-enterprise-sso

于 2012-09-24T22:57:38.613 回答