概述
Casdoor can be configured to support user login to the UI using identities from external identity providers that support SAML 2.0. In this configuration, Casdoor never stores any credentials for the users.
Now, Casdoor supports multiple SAML application providers. Icons of the providers will be displayed on the login page after being added to Casdoor. Here are the providers that Casdoor supports:
| 阿里云 IDaaS | Keycloak | Custom |
|---|---|---|
 |  |  |
| ✅ | ✅ | ✅ |
条款
- 身份提供商(IDP)——储存身份数据库并向Cassdoor提供身份和认证服务的服务。
- Service Provider (SP) - The service that provides resources to the end user, in this case, the Casdoor deployment.
- 申述消费者服务——身份提供者提出的SAML断言的消费者。
SAML 集成工作方式
When using SAML SSO, users log into Casdoor via the identity provider without ever passing credentials to Casdoor. 进展情况见下图表。
