Ç¥ÁØÈ­ Âü¿©¾È³»

TTAÀÇ Ç¥ÁØÇöȲ

Ȩ > Ç¥ÁØÈ­ °³¿ä > TTAÀÇ Ç¥ÁØÇöȲ

Ç¥ÁعøÈ£ TTAE.IF-RFC7522 ±¸Ç¥ÁعøÈ£
Á¦°³Á¤ÀÏ 2018-12-19 ÃÑÆäÀÌÁö 23
ÇѱÛÇ¥ÁØ¸í °ø°³ÀÎÁõ 2.0 Ŭ¶óÀ̾ðÆ® ÀÎÁõ ¹× Àΰ¡ ½ÂÀÎÀ» À§ÇÑ SAML 2.0 ÇÁ·ÎÆÄÀÏ
¿µ¹®Ç¥Áظí Security Assertion Markup Language (SAML) 2.0 Profile for OAuth 2.0 Client Authentication and Authorization Grants
Çѱ۳»¿ë¿ä¾à ÀÌ Ç¥ÁØÀº SAML 2.0 º£¾î·¯ ÁÖÀåÀ» »ç¿ëÇÏ¿© °ø°³ ÀÎÁõ (OAuth) 2.0 ¾×¼¼½º ÅäÅ«À» ¿äûÇÏ°í Ŭ¶óÀ̾ðÆ® Å©¸®µ§¼È·Î »ç¿ëÇÏ´Â È®Àå ½ÂÀΠŸÀÔÀ» Á¤ÀÇÇϱâ À§ÇØ °ø°³ ÀÎÁõ ÁÖÀå ÇÁ·¹ÀÓ¿öÅ©[RFC7521]¸¦ ±¸Ã¼È­ÇÑ´Ù. ÀÌ ¹®¼­´Â »ç¿ëÀÚ°¡ Àΰ¡ ¼­¹ö¿¡°Ô Á÷Á¢ÀûÀÎ ½ÂÀÎ ´Ü°è ¾øÀÌ, Ŭ¶óÀ̾ðÆ®°¡ SAML ÁÖÀåÀ¸·Î ±âÁ¸ÀÇ ½Å·Ú °ü°è¸¦ È°¿ëÇÏ°íÀÚ ÇÒ ¶§ SAML ÁÖÀåÀ» »ç¿ëÇÏ¿© ¾×¼¼½º ÅäÅ«À» ¿äûÇÏ´Â ¹æ¹ýÀ» Á¤ÀÇÇÑ´Ù. ¶ÇÇÑ SAML ÁÖÀåÀ» Ŭ¶óÀ̾ðÆ® ÀÎÁõ ¸ÞÄ¿´ÏÁòÀ¸·Î »ç¿ëÇÏ´Â ¹æ¹ýÀ» Á¤ÀÇÇÑ´Ù.
¿µ¹®³»¿ë¿ä¾à he standard profiles the OAuth Assertion Framework [RFC7521] to define an extension grant type that uses a SAML 2.0 Bearer Assertion to request an OAuth 2.0 access token as well as for use as client credentials. The standard defines how a SAML Assertion can be used to request an access token when a client wishes to utilize an existing trust relationship, expressed through the semantics of the SAML Assertion, without a direct user approval step at the authorization server. It also defines how a SAML Assertion can be used as a client authentication mechanism.
±¹Á¦Ç¥ÁØ
°ü·ÃÆÄÀÏ TTAE.IF-RFC7522.pdf TTAE.IF-RFC7522.pdf            

ÀÌÀü
Ȧ·Î±×·¥ ±¤ÇÐ ¼ÒÀÚÀÇ È¸Àý È¿À² ÃøÁ¤ Áöħ
´ÙÀ½
½Ç°¨ µðÁöÅÐ ÈÞ¸Õ Ç°ÁúÆò°¡ ÇÁ·¹ÀÓ¿öÅ© - Á¦1ºÎ: Æò°¡ ¾ÆÅ°ÅØó¿Í Áú¹® ¸ñ·Ï