针对目前在数字化校园多个应用服务系统中,对每个系统独立的进行身份验证和授权,从而形成“信息孤岛”的问题,提出基于单点登录的统一身份认证平台的研究与实现.系统在传统的基于LDAP和单点登录技术的基础上,设计采用票据的认证方式和跨域Cookie验证技术,实现系统只需要一次主动身份验证就可以访问不同应用服务系统的授权资源,平台在东北石油大学数字化校园建设中测试运行,具有较高的安全性和可行性.%Aiming at problem of forming "information island" when conducting independent identity authentication and authorization to each system in multiple application service system of digital campus, the research and implementation of uniform identity authentication platform based on single sign-on is proposed. On the basis of LDAP and single sign-on technology, the design of the system uses bill authentication method and cross domain Cookie sharing technology, which can access authorization for all applications through a user authentication. The platform is conducted trial operation in digital campus construction of Northeast Petroleum University, and it has higher security and feasibility.
展开▼
