KNF:SSO notificatie middels een redirect/en: verschil tussen versies

Uit Kennisnet Developers Documentatie
Naar navigatie springen Naar zoeken springen
(Nieuwe pagina aangemaakt met 'The SSO notification cookie can be placed, after the user has logged in on the schoolportal, with an redirect to Entree Federation. ==Config redirect URL== The r...')
 
 
(7 tussenliggende versies door 2 gebruikers niet weergegeven)
Regel 1: Regel 1:
  +
{{Talen}}
The SSO notification cookie can be placed, after the user has logged in on the schoolportal, with an redirect to Entree Federation.
 
   
 
The SSO notification cookie can be placed, after the user has logged in on the schoolportal, with an redirect to Entree Federation.
   
==Config redirect URL==
 +
==Config redirect URL ==
The redirect URL had 4 parts:
 +
The redirect URL parts:
  +
* '''production''': <nowiki>https://ssonot.entree.kennisnet.nl/?id=<identifier van de IdP>&url=<url-encoded ELO URL>&redirectUri=<url-encoded redirect URL></nowiki>
# The Entree Federatie URL where the redirect will be redirected to.
  
#* For '''productie''': https://ssonot.aselect.entree.kennisnet.nl/openaselect/profiles/entree
 +
* '''staging''': <nowiki>https://ssonot.entree-s.kennisnet.nl/?id=<identifier van de IdP>&url=<url-encoded ELO URL>&redirectUri=<url-encoded redirect URL></nowiki>
 
* id: The unique identifier of the Identity Provider as known in Entree Federatie. This is the entity ID of the IdP and can be found here: https://engine.entree.kennisnet.nl/sso/wayfsearch
#* For '''staging''': https://ssonot.aselect-s.entree.kennisnet.nl/openaselect/profiles/entree
  
 
* url: The URL (url-encoded) of the serveraddress where it comes from.
# The unique identifier of the Identity Provider as known in Entree Federatie. This is the entity ID of the IdP and can be found here: https://aselect.entree.kennisnet.nl/openaselect/sso/wayfsearch2?type=getAll&spCode
  
 
* redirectURI: (url-encoded), this is the URL where the users goes to after the redirect. In most cases this is the same place, but if needed it can be somewhere else. This has to be an address owned by the school, it can't be the address of the Service Provider.
# The URL (url-encoded) of the serveraddress where it comes from.
 
# The redirectURI (url-encoded), this is the URL where the users goes to after the redirect. In most cases this is the same place, but if needed it can be somewhere else. This has to be an address owned by the school, it can't be the address of the Service Provider.
 
   
The redirect URL will look like this:<br>
 +
The redirect URL looks like this:<br>
''<nowiki>https://ssonot.aselect.entree.kennisnet.nl/openaselect/profiles/entree?id=<identifier van de IdP>&url=<url-encoded ELO URL>&redirectUri=<url-encoded redirect URL></nowiki>''
 +
''<nowiki>https://ssonot.entree.kennisnet.nl/?id=<identifier van de IdP>&url=<url-encoded ELO URL>&redirectUri=<url-encoded redirect URL></nowiki>''
   
  +
==Whitelist==
 
Important: Before you can use the SSO notification, the URL needs to be added to the whitelist. You can send the URL via an ticket [https://support.kennisnet.org/Tickets/Submit Kennisnet].
  
Important: Before you can use the SSO notification, the URL needs to be added to the whitelist. You can send the URL via an ticket [https://support.kennisnet.org/Tickets/Submit Kennisnet].
   
==Examlple==
 +
==Example==
 
In the example, this is the IdP identifier ''<nowiki>http://authenticate.example.org</nowiki>'', and this is de URL where the redirects starts ''<nowiki>http://www.example.org</nowiki>'' and this is the url where the user will be redirected to afthe the cookie is set ''<nowiki>http://www.kennisnet.nl</nowiki>''.<br>
  
In the example, this is the IdP identifier ''<nowiki>http://authenticate.example.org</nowiki>'', and this is de URL where the redirects starts ''<nowiki>http://www.example.org</nowiki>'' and this is the url where the user will be redirected to afthe the cookie is set ''<nowiki>http://www.kennisnet.nl</nowiki>''.<br>
''<nowiki>https://ssonot.aselect.entree.kennisnet.nl/openaselect/profiles/entree?id=http://authenticate.example.org&url=http%3A%2F%2Fwww.example.org&redirectUri=http%3A%2F%2Fwww.kennisnet.nl</nowiki>''
 +
''<nowiki>https://ssonot.entree.kennisnet.nl/?id=http://authenticate.example.org&url=http%3A%2F%2Fwww.example.org&redirectUri=http%3A%2F%2Fwww.kennisnet.nl</nowiki>''
   
 
[[Categorie:Entree Federatie]]
  
[[Categorie:Entree Federatie]]

Huidige versie van 8 mei 2023 om 13:44

Nl.gif Nederlands En.gif English

The SSO notification cookie can be placed, after the user has logged in on the schoolportal, with an redirect to Entree Federation.

Config redirect URL

The redirect URL parts:

  • production: https://ssonot.entree.kennisnet.nl/?id=<identifier van de IdP>&url=<url-encoded ELO URL>&redirectUri=<url-encoded redirect URL>
  • staging: https://ssonot.entree-s.kennisnet.nl/?id=<identifier van de IdP>&url=<url-encoded ELO URL>&redirectUri=<url-encoded redirect URL>
  • id: The unique identifier of the Identity Provider as known in Entree Federatie. This is the entity ID of the IdP and can be found here: https://engine.entree.kennisnet.nl/sso/wayfsearch
  • url: The URL (url-encoded) of the serveraddress where it comes from.
  • redirectURI: (url-encoded), this is the URL where the users goes to after the redirect. In most cases this is the same place, but if needed it can be somewhere else. This has to be an address owned by the school, it can't be the address of the Service Provider.

The redirect URL looks like this:
https://ssonot.entree.kennisnet.nl/?id=<identifier van de IdP>&url=<url-encoded ELO URL>&redirectUri=<url-encoded redirect URL>

Whitelist

Important: Before you can use the SSO notification, the URL needs to be added to the whitelist. You can send the URL via an ticket Kennisnet.

Example

In the example, this is the IdP identifier http://authenticate.example.org, and this is de URL where the redirects starts http://www.example.org and this is the url where the user will be redirected to afthe the cookie is set http://www.kennisnet.nl.
https://ssonot.entree.kennisnet.nl/?id=http://authenticate.example.org&url=http%3A%2F%2Fwww.example.org&redirectUri=http%3A%2F%2Fwww.kennisnet.nl

Overgenomen van "https://developers.wiki.kennisnet.nl/index.php?title=KNF:SSO_notificatie_middels_een_redirect/en&oldid=12689"