消息必须包含授权令牌
WSS还提供可扩展的机制,以便将安全令牌与含有各种身份验证及授权格式和机制的消息相关联。
WSS also provides an extensible mechanism for associating security tokens with messages that accommodates a variety of authentication and authorization formats and mechanisms.
对于身份验证和授权检查,需要提供安全令牌。
For Authentication and Authorization checks a security token needs to be supplied.
可信的授权机构颁发一份已签名的安全令牌,当中包含一套声明(或者说是凭据)用于应用程序进行验证。
A trusted authority (Issuer) issues a signed security token containing a set claims (credentials) which is given to the application for validation.
SaaS提供者将使用这个由承租者的联合服务器所颁发的安全令牌进行授权。
The security token issued by the tenant's federation server will be used by the SaaS provider for authorization.
Kerberos还以管理令牌或凭据的形式提供了一种授权系统。
Kerberos also provides a system for authorization in the form of administering tokens or credentials.
该作业将运行,因为John的凭据自动作为安全令牌传播到管理子系统,并用于向作业证明他的身份和授权。
The job will run because John's credential is automatically propagated as a security token to the administrative subsystem, and used to authenticate and authorize him for the job.
我们的目标是演示如何支持消息级安全令牌的集成,以在WebSphereApplicationServer上结合使用JEE授权框架。
Our goal is to demonstrate how to enable the integration of the message-level security tokens for use with the JEE authorization framework on WebSphere Application Server.
原因在于John的安全令牌来自作业管理器领域,而John的访问ID未获得部署管理器的授权。
The reason is that John's security token is from the job manager realm, and John's access ID has not been authorized for the deployment manager.
在Maximumidletime字段中,输入会话可空闲的最长时间,超过这个时间后,ConnectionManager将清理会话的认证令牌,迫使客户端重新授权。
In the maximum idle time field, enter the maximum time that a session can be idle before the Connection Manager clears the session's authentication token, forcing the client to re-authorize.
令牌向经过身份验证的应用程序授权,以向Flickr上传内容。
The token authorizes the authenticated application to upload to Flickr.
每个令牌授权在特定的时间内(比如接下来的2个小时)访问特定站点(视频编辑网站)的特定资源(自上周末以来的视频)。
Each token grants access to a specific site (a video editing site) for specific resources (just videos from last weekend) and for a defined duration (the next 2 hours).
而且,在这个模型中,授权数据已经与认证数据分隔开了,这样,授权数据就应该不用嵌入认证令牌中了。
Also in this model, authorization data has been separated from the authentication information so authorization data should not be embedded in authentication tickets.
演示安全令牌已授权应用的一种方式是,添加采用相关联密钥(来自于占有证据令牌)的数字签名。
One way to demonstrate authorized use of a security token is to include a digital signature using the associated secret key (from a proof-of-possession token).
安全令牌可以“推送到”消息中或者在消息中携带安全令牌,也可以通过引用表示安全令牌,以便接收方从授权机构“拉取”该声明。
Security tokens can be "pushed," or carried, in a message, or expressed by a reference so the receiver can "pull" the claim from the authority.
获取作业时,令牌用于对管理子系统或部署管理器进行身份验证和授权。
When a job is fetched, the token is used to authenticate and authorize against the administrative subsystem or the deployment manager.
一组已核准的声明通常表示为安全令牌(经过数字签名或受到授权机构加密保护)。
A set of endorsed claims is usually represented as a security token that is digitally signed or cryptographically protected by the authority.
安全令牌声明可由授权机构核准或不核准。
Security token claims can be endorsed by an authority or left unendorsed.
授权过程后,客户端收到一个访问令牌。
After the authorization process, the client receives an access token.
如果John向第二个基本节点或部署管理器单元提交作业,作业将失败,因为他的安全令牌在这两个环境中未获授权。
If John were to submit a job against the second base node or the deployment manager cell, the job will fail because his security token is not authorized in these two environments.
这种机制由Web服务用来对请求者进行更多质询,以确保消息不过时,以及验证安全令牌的使用是否已经授权。
This is used by a Web service for additional challenges to a requester to ensure message freshness and verification that the use of a security token is authorized.
在本文中,我们将描述如何配置WebSphere来选择SOAP消息的安全令牌作为JEE principal,后者可用于作出授权决策。
In this article, we'll describe how to configure WebSphere to select which security token of the SOAP message as a JEE principal that can be used for authorization decisions.
在与客户的访问令牌访问权限有关联范围,它定义了访问授权的客户拥有资源所有者的程度(用户的)资源。
The access permissions associated with the client's access token have a scope, which defines the degree of access authorization the client has for the resource owner's (the end user's) resources.
成功注册了应用程序后,您将获得一个使用者密钥、使用者机密和3 个URL(请求令牌URL、访问令牌 URL 和授权 URL)。
Once you have registered your application successfully, you will get a consumer key, a consumer secret, and three URLs (request token URL, access token URL, and authorize URL).
注册成功后,您将获得一个使用者密钥、使用者机密(secret)和3个URL(请求令牌url、访问令牌url和授权url)。
If your registration is successful, you will get a consumer key, a consumer secret, and three URLs (the request token URL, access token URL, and authorize URL).
我可以返回客户机的访问令牌,用它来计算每个请求前授权头吗?
Could I return the access token to the client and have use it to calculate an Authorization header before each request?
我可以返回客户机的访问令牌,用它来计算每个请求前授权头吗?
Could I return the access token to the client and have use it to calculate an Authorization header before each request?
应用推荐