关于系统SSO配置,如何实现认证对接?
管理员您好,如何通过Oauth服务端为o2oa完成授权?相关的配置文件如何配置?有没有相应的示例可以参照一下呢?期待您的答复!多谢! 将O2OA作为OAth2认证服务器,相关客户端配置信息,比如将openmetting作为客户端接入O2OA系统:
http://www.o2oa.net:20020/x_file_assemble_control/jaxrs/file/4f87b3e3-0268-42f5-885a-fe6298bd185f/download/stream
{
"enable": false,
"clientId": "openmeeting",
"mapping": {
"loginName": "mobile",
"name": "name",
"email": "(person.getName()+'@xxx.xxx.xxx')"
}
} 将O2OA作为OAth2接入的客户端,接入已经提供的认证服务器,比如将O2OA作为客户端接入微信,实现使用微信登录O2OA系统:
http://www.o2oa.net:20020/x_file_assemble_control/jaxrs/file/26a707ae-8af4-4e28-94f1-bc9b806c8457/download/stream
{
"enable": true,
"name": "weixin",
"displayName": "微信登陆",
"icon": xxxxx这里是图片的base64编码",
"clientId": "wxebxxxxxxxxxxxxxxxx",
"clientSecret": "b05xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx",
"authAddress": "https://open.weixin.qq.com/connect/qrconnect",
"authParameter": "appid={$client_id}&response_type=code&scope=snsapi_login&state=state",
"authMethod": "GET",
"tokenAddress": "https://api.weixin.qq.com/sns/oauth2/access_token",
"tokenParameter": "appid={$client_id}&secret={$client_secret}&code={$code}&grant_type=authorization_code",
"tokenMethod": "GET",
"tokenType": "json",
"infoAddress": "https://api.weixin.qq.com/sns/oauth2/refresh_token",
"infoParameter": "appid={$client_id}&grant_type=refresh_token&refresh_token={$refresh_token}",
"infoMethod": "GET",
"infoType": "json",
"infoCredentialField": "openid",
"infoScriptText": "",
"bindingEnable": true,
"bindingField": "open1Id"
} 我的理解是:
把o2oa作为OAth2认证服务器, 也就是其他系统主动访问o2oa系统。
如果把o2oa作为门户, 很多时候其他是把o2oa作为oauth2的 认证服客户端。
页:
[1]