摘要
针对银行内部各应用系统的账号整合问题,以及为外部第三方应用授权的问题,设计了基于Central Authentication Service(CAS)协议和Open Authorization(OAuth)框架的统一认证授权系统。首先给出了系统的总体设计,然后对其认证授权流程做了详细说明,最后结合实战对每一步进行了验证分析。该设计为银行内部应用系统的账号整合和为外部第三方应用授权提供了技术路线,以最终实现银行的统一认证授权系统建设。
Aiming at the problems of account integration of internal applications in the bank and authorization for external third-party applications,this paper designs a unified authentication and authorization system based on Central Authentication Service(CAS)protocol and Open Authorization(OAuth)framework.Firstly it gives the overall design of the system,then explains its authentication and authorization process in detail,finally with a demonstration,each step is verified and analyzed.It provides a technical route for the bank to integrate account for internal applications and work as a third-party authorizer for external applications,and finally to implement the unified authentication and authorization system.
作者
李强
Li Qiang(CEC GienTech Technology Co.,Ltd.,Hangzhou 310000,China)
出处
《信息技术与网络安全》
2021年第6期83-88,共6页
Information Technology and Network Security
关键词
统一认证授权
CAS
OAUTH
单点登录
第三方授权
账号管理
unified authentication and authorization
CAS
OAuth
SSO
third-party authorization
account management
