openid | 易学教程

How to add claims to access token get from IdentityServer3 using resource owner flow with javascript client

阅读更多关于 How to add claims to access token get from IdentityServer3 using resource owner flow with javascript client

问题 I use the resource owner flow with IdentityServer3 and send get token request to identity server token endpoint with username and password in javascript as below: function getToken() { var uid = document.getElementById("username").value; var pwd = document.getElementById("password").value; var xhr = new XMLHttpRequest(); xhr.onload = function (e) { console.log(xhr.status); console.log(xhr.response); var response_data = JSON.parse(xhr.response); if (xhr.status === 200 && response_data.access

App Engine remote_api with OpenID

阅读更多关于 App Engine remote_api with OpenID

问题 I've recently tried to switch my app engine app to using openID, but I'm having an issue authenticating with remote_api. The old authentication mechanism for remote_api doesn't seem to work (which makes sense) - I'm getting a 'urllib2.HTTPError: HTTP Error 302: Found', which I assume is appengine redirecting me to the openid login page I've set up. I guess I'm missing something fairly obvious. Currently my remote_api script has the following in it - remote_api_stub.ConfigureRemoteDatastore

Using OpenID to log into multiple domains: Is this plan feasable?

阅读更多关于 Using OpenID to log into multiple domains: Is this plan feasable?

问题 For example: We're running a two community sites on two domains (call them example.com and example.net ). We want to be able to expand that to more domains later. We want to allow multiple types of login (OpenID, Facebook, Twitter, standard username/password). We want someone who's logged into one site to automatically be logged into the other(s). In other words, it's a bit similar to the StackExchange network. In this case, would this plan work? Set up example.com and example.net (and any

Integrate yahoo, Google and openid through android and iPhone application?

阅读更多关于 Integrate yahoo, Google and openid through android and iPhone application?

I am designing an app for iPhone and android in which I have to integrate facebook, twitter, yahoo, gmail, openId. I had integrated facebook and twitter, but how to go for yahoo, gmail and openId? How to login these through app and get the user information? Please do show me a way to implement this. Any tutorial may help. Thanks. To integrate gmail may this url's help you Google's documentation Introduction about integrating gmail with iphone Examples to integrate with iphone Api's for integrating blogger,google analytics etc For yahoo you can use this String YAHOO_RESOURCE_URL = "http:/

OpenID Connect will eventually replace SAML as the dominant protocol for SSO?

阅读更多关于 OpenID Connect will eventually replace SAML as the dominant protocol for SSO?

问题 I have seen in the some articles, It is said that OpenID Connect would replace SAML as the dominant protocol for SSO. I am not sure how openID connect would handle the session management capabilities with different service providers and how it could be used to implement single logout? Currently, Are there are IDM servers (open source or commercial) that supports OpenID connect as a SSO IDP (as replacement for SAML2 SSO IDP)? 回答1: PingFederate [disclaimer: as it says in my name, I work for

OpenId via Curl

阅读更多关于 OpenId via Curl

问题 How can I do OpenId based authentication using Curl? At first place can I do it? Regards, Allahbaksh 回答1: I suppose you are talking about the curl command line, not the library. I have not tried, but according to what I know of OpenID and curl, it should be possible. However, not fully automated. You'll have to "parse" the content of the identity provider and of the content provider login pages if you want to be realy restful and generic. If you know where you're going and don't mind to

How to create and add users to a group in Jenkins for authentication?

阅读更多关于 How to create and add users to a group in Jenkins for authentication?

问题 I choose to use "Jenkins's own user database" security realm for user login as I couldn't use LDAP in my company. And Google's OpenID has issue when you decided to change the hostname or port number to something else. And I use "Project-based Matrix Authorization Strategy" schema for my security. But I don't seem to able to create my own group, and add users to the group to manage the permission. 回答1: According to this posting by the lead Jenkins developer, Kohsuke Kawaguchi, in 2009, there

What are the different options for social authentication on Appengine - how do they compare?

阅读更多关于 What are the different options for social authentication on Appengine - how do they compare?

[This question is intended as a means to both capture my findings and sanity check them - I'll put up my answer toute suite and see what other answers and comments appear.] I spent a little time trying to get my head around the different social authentication options for (python) Appengine. I was particularly confused by how the authentication mechanisms provided by Google can interact with other social authentication mechanisms. The picture is complicated by the fact that Google has nice integration with third party OpenID providers but some of the biggest social networks are not OpenID

DotNetOpenAuth: Webforms, Getting Started

阅读更多关于 DotNetOpenAuth: Webforms, Getting Started

问题 I am trying to figure out how to get DotNetOpenAuth(http://www.dotnetopenauth.net/) working in my webforms app I don't understand where to begin. I have an OpenIDSelector on my Login.aspx that lets you choose google or Yahoo. You can choose one, then a popup comes up, and lets you login. Once you login the program hangs because it is trying to do something with a database ??? Can't I just use some control(like the OpenIDSelector) and get back that the user was authenticated, get their

Stateless RESTful API and 3rd party authentication

阅读更多关于 Stateless RESTful API and 3rd party authentication

I want to use 3rd party authentication (OpenID, maybe OAuth but I guess OAuth is meant for authorization ) so that user can login easily. But does authenticating on every request means I call the 3rd party (eg. Google) many times even if I don't need any thing from it? For example, I use OpenID authentication but the API I use is something internal (eg. /api/tasks/add). Let's fix understanding issues first. OpenID and OAuth are a bit different. There is a simple way to memorize that different: OpenID is for humans. Simple example: you want to skip boring registration step and let user reuse