Difference between revisions of "HowTo:Integrate UBIK in an SSO Environment"
(Created page with "Single Sign On (SSO) allows an end-user to interact with multiple services without logging in more than once. This page shows how to integrate {{UBIK}} into such an SSO envi...") |
(→Authorization) |
||
| Line 20: | Line 20: | ||
== Authorization == | == Authorization == | ||
When a UBIK object is synchronized between client and server, the {{{UBIK}}} customizing can interact with external systems. There, we might require authorization, and we need to make sure the client provides a respective token. In order to do so, we have to identify the specific authorization use-cases: | When a UBIK object is synchronized between client and server, the {{{UBIK}}} customizing can interact with external systems. There, we might require authorization, and we need to make sure the client provides a respective token. In order to do so, we have to identify the specific authorization use-cases: | ||
| − | + | * For which types of objects (meta classes) do I need to interact with external systems, requiring SSO authorization? | |
| − | + | * For which synchronization operations (e.g., update, commit, create, etc.) do I need authorization? | |
| − | + | * Which IdP endpoint is used in this case? | |
For each resulting combination we have to create an [[SYSCLS_EXTERNALAUTHCONFIG|External Auth Config]] object and give it to the client in the infrastructure list. | For each resulting combination we have to create an [[SYSCLS_EXTERNALAUTHCONFIG|External Auth Config]] object and give it to the client in the infrastructure list. | ||
| + | |||
| + | [[Category:How-To|Integrate UBIK in an SSO Environment]] | ||
= Studio = | = Studio = | ||
Revision as of 11:50, 13 July 2021
Single Sign On (SSO) allows an end-user to interact with multiple services without logging in more than once.
This page shows how to integrate UBIK® into such an SSO environment.
