红帽全球峰会2.5. RH-SSO 7.3
以下变化已从 RH-SSO 7.2 变为 RH-SSO 7.3。
2.5.1. 授权服务的更改
复制链接链接已复制到粘贴板!
添加了对 UMA 2.0 的支持。这个 UMA 规范版本引进了一些有关从服务器获取权限的方式的重要变化。
以下是 UMA 2.0 支持的主要变化。详情请查看授权服务指南。
- 已删除授权 API
- 在 UMA 2.0 (UMA 1.0)之前,客户端应用程序使用授权 API 从服务器获取权限,格式为 RPT。UMA 规范的新版本删除了授权 API,它也已从 Red Hat Single Sign-On 中删除。在 UMA 2.0 中,RPTs 现在可以使用特定的授权类型从令牌端点获取。详情请查看授权服务指南。
- 已删除权利 API
- 随着 UMA 2.0 的推出,我们决定利用令牌端点和 UMA 授权类型从 Red Hat Single Sign-On 获取 RPT,并避免有不同的 API。Entitlement API 提供的功能相同,仍然可以获得一组一个或多个资源和范围的权限(如果没有提供资源或范围)。详情请查看授权服务指南。
- 对 UMA Discovery 端点的更改
- UMA Discovery 文档已更改 ,请参阅授权服务指南。
- 对 Red Hat Single Sign-On Authorization JavaScript 适配器的更改
Red Hat Single Sign-On Authorization JavaScript 适配器(keycloak-authz.js)已更改,以满足 UMA 2.0 引入的更改,同时保持与之前相同的行为。主要变化是如何调用
授权和权利方法,它们现在预期是表示授权请求的特定对象类型。这个新对象类型通过支持 UMA grant 类型支持的不同参数,提供了从服务器获取权限的更大的灵活性。详情请查看授权服务指南。One of the main changes introduced by this release is that you are no longer required to exchange access tokens with RPTs in order to access resources protected by a resource server (when not using UMA). Depending on how the policy enforcer is configured on the resource server side, you can just send regular access tokens as a bearer token and permissions will still be enforced.
One of the main changes introduced by this release is that you are no longer required to exchange access tokens with RPTs in order to access resources protected by a resource server (when not using UMA). Depending on how the policy enforcer is configured on the resource server side, you can just send regular access tokens as a bearer token and permissions will still be enforced.Copy to Clipboard Copied! Toggle word wrap Toggle overflow - Red Hat Single Sign-On Authorization Client Java API 的更改
-
当升级到 Red Hat Single Sign-On Authorization Client Java API 的新版本时,您会注意到一些表示类被移到
org.keycloak:keycloak-core中。
'%20d='M201.5%20305.5c-13.8%200-24.9-11.1-24.9-24.6%200-13.8%2011.1-24.9%2024.9-24.9%2013.6%200%2024.6%2011.1%2024.6%2024.9%200%2013.6-11.1%2024.6-24.6%2024.6zM504%20256c0%20137-111%20248-248%20248S8%20393%208%20256%20119%208%20256%208s248%20111%20248%20248zm-132.3-41.2c-9.4%200-17.7%203.9-23.8%2010-22.4-15.5-52.6-25.5-86.1-26.6l17.4-78.3%2055.4%2012.5c0%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.3%2024.9-24.9s-11.1-24.9-24.9-24.9c-9.7%200-18%205.8-22.1%2013.8l-61.2-13.6c-3-.8-6.1%201.4-6.9%204.4l-19.1%2086.4c-33.2%201.4-63.1%2011.3-85.5%2026.8-6.1-6.4-14.7-10.2-24.1-10.2-34.9%200-46.3%2046.9-14.4%2062.8-1.1%205-1.7%2010.2-1.7%2015.5%200%2052.6%2059.2%2095.2%20132%2095.2%2073.1%200%20132.3-42.6%20132.3-95.2%200-5.3-.6-10.8-1.9-15.8%2031.3-16%2019.8-62.5-14.9-62.5zM302.8%20331c-18.2%2018.2-76.1%2017.9-93.6%200-2.2-2.2-6.1-2.2-8.3%200-2.5%202.5-2.5%206.4%200%208.6%2022.8%2022.8%2087.3%2022.8%20110.2%200%202.5-2.2%202.5-6.1%200-8.6-2.2-2.2-6.1-2.2-8.3%200zm7.7-75c-13.6%200-24.6%2011.1-24.6%2024.9%200%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.1%2024.9-24.6%200-13.8-11-24.9-24.9-24.9z'/%3e%3c/svg%3e){kind=small}