Only if no explicit logon data is provided the code should try handling SSO.
只有在没有提供显式的登录数据的情况下,代码才应该尝试处理SSO。
We will add support for all types of logon data including SSO based on REMOTE_USER.
我们将添加对所有登录数据类型的支持并实现基于 REMOTE_USER 的SSO。
There are four possible ways to pass logon data in a request to the authentication provider.
把请求中的登录数据传递给身份验证提供者有四种方法。
This will allow for decisions on the contents of the deducted logon data for each type individually.
这样就可以针对每个类型分别对登录数据的内容做出决策。
This provider will consume some token and deduct logon data consumable by an Authentication provider from it.
这种提供者接受某个令牌并从中推导出身份验证提供者可使用的登录数据。
Only once a single request contains all the required logon data the provider will actually try to authenticate the request.
只有在单一请求包含所有必需的登录数据的情况下,提供者才会真正开始尝试验证请求。
Only if one of either username or password is populated the code will proceed to verify the logon data or even issue a visa.
只有在username或password之一非空的情况下,代码才会检验登录数据或颁发visa。
To this snippet we want to add support for the 4th type of logon data, the trusted environment variable, in this example REMOTE_USER.
我们希望在这段代码中添加对第四类登录数据(可信的环境变量,在此示例中是REMOTE_USER)的支持。
To support SSO the provider must implement support for the 4th type of logon data, the environment variables as mentioned in Section 2.3.1 - logon data.
要想支持SSO,提供者必须实现对第四类登录数据的支持,即2.3.1节—登录数据中提到的环境变量。
Each type of logon data has a matching function of the IBiBusHeader2 class to be used to retrieve it from the request which is passed to the logon function.
每个登录数据类型在IBiBusHeader 2类中有一个对应的函数,用于从传递给logon函数的请求中获取登录数据。
An IBM Cognos 8 authentication provider will investigate some (for some providers configurable) HTTP variable or cookie which holds logon data suitable for SSO.
IBMCognos8身份验证提供者会检查某个HTTP变量(对于某些提供者可配置)或cookie以获得SSO所需的登录数据。
For this document we will only discuss the first step of identifying the type of logon data, the rest is specific to the authentication source being supported and hence off topic.
对于本文档,我们只讨论第一步(识别登录数据的类型),其他步骤因支持的身份验证源而异,因此超出了范围。
A proven practice for handling the identification of logon data type is to use nested if statements which will check for Trusted Credentials, Credentials, Forms and finally for SSO.
对于识别登录数据类型,一种已经证明有效的做法是使用嵌套的IF语句检查可信凭证、凭证和表单,最后检查sso。
A Visa maintains the user's security context, that is the logon data (whatever was used to authenticate to IBM Cognos 8), and his identity (the groups and roles he's a member of).
visa维护用户的安全上下文,即登录数据(用来向IBMCognos8验证身份的数据)和用户的身份(用户所属的组和角色)。
In the next step the logon data is passed to a full IBM Cognos 8 authentication provider using the REMOTE_USER standard header which most out of the box authentication Providers support for SSO.
在下一步中,使用标准的remote_user头把登录数据传递给一个完整的IBMCognos8身份验证提供者,大多数开箱即用的身份验证提供者都支持remote_user头。
If neither username nor password get assigned values retrieved from logon data the code will throw a UserRecoverable exception which will lead to displaying a logon screen if a browser is the client.
如果username和password都没有赋值为从登录数据获取的值,代码会抛出userrecoverable Exception;如果客户机是浏览器,就会显示登录屏幕。
Whenever you logon, register, or enter private information, such as credit card data, ensure your browser is communicating with the server using SSL.
当您登录、注册或者输入个人信息时,比如信用卡数据,确保您的浏览器是使用ssl来与服务器进行通信的。
To allow a user to retrieve only specific data based on their logon information, we can use the following expression in the Query Subject filter.
要基于用户登录信息限制用户只能检索特定数据,可以在QuerySubject过滤器中使用以下表达式。
Connection TAB, specify the server name, logon ID, and password for your data source and database on the server.
“连接”选项卡上,指定数据源的服务器名称、登录ID和密码以及服务器上的数据库。
Connection TAB, specify the server name, logon ID, and password for your data source and database on the server.
“连接”选项卡上,指定数据源的服务器名称、登录ID和密码以及服务器上的数据库。
应用推荐