Add sso plugin

[sy sin <si...@gmail.com>]

Do we need to make a unified login plugin?

But we need to prove whether it has any meaning.

Re: Add sso plugin

[YuI <yu...@apache.org>]

I do not recommend adding this feature. I think the SSO is more business.
We do not know users' configuration in their system. They can use Oauth2,
only JWT, their custom rules. So, ShenYu must decrypt the token, and
restore login users' information.

sy sin <si...@gmail.com> 于2021年6月9日周三 下午10:50写道：

> Jwt plug-in or oauth plug-in have some similarities in themselves,
> but they have different architecture designs when judging permissions.
> So I think all plugins have some similarities more or less.
>
> Therefore all plug-ins have their own unique places.
> It is these unique places that constitute Shenyu's plug-in ecology.
> I think the documentation can be improved and users can choose.
>
>  Of course others have better suggestions, please let me know, Thanks !
>
> tzzz z <zh...@gmail.com> 于2021年6月9日周三 下午6:52写道：
>
> > now, i'm doing oauth2 plugin, cas is the standard process of sso, i think
> > if shenyu add sso plugin, this plugin
> > might be implement the entire process of cas or integration cas
> framework,
> > maybe it's conflicts with the oauth2 plugin,
> > so I think the sso feature can build on top of oauth2 plugin.
> > If you have other better ideas, let me know, thank you.
> >
> > sy sin <si...@gmail.com> 于2021年6月9日周三 下午5:48写道：
> >
> > > Do we need to make a unified login plugin?
> > >
> > > But we need to prove whether it has any meaning.
> > >
> >
>

Re: Add sso plugin

[tingting <fi...@apache.org>]

I think a unified login plugin is very difficult to achieve,since @tzzz is
doing  oauth2 ,other needs can expand on  oauth2

翟伟 <zh...@163.com> 于2021年6月10日周四 下午12:46写道：

>
>
> I think SSO is better integrated into oauth2, and @tzzz z is doing this now
>
>
>
>
> On 06/10/2021 12:30，tzzz z<zh...@gmail.com> wrote：
> What you said makes sense, but what I said before is that CAS is the
> standard process of SSO. The sso plug-in of Shenyu should only provide
> plug-ins of the cas process standard, without any customization features,
> and is considered universal only if it meets the specification . Although
> oauth2 can also implement sso, it and cas are indeed two different but
> standardized, so I think if you want to add sso plug-ins, you should add
> plug-ins that conform to the cas specification. But whether you choose to
> re-implement the cas specification or integrate a framework that conforms
> to the cas specification, it is not an easy task, otherwise I think it
> would be nice to expand on oauth2
>
> sy sin <si...@gmail.com> 于2021年6月9日周三 下午10:50写道：
>
> Jwt plug-in or oauth plug-in have some similarities in themselves,
> but they have different architecture designs when judging permissions.
> So I think all plugins have some similarities more or less.
>
> Therefore all plug-ins have their own unique places.
> It is these unique places that constitute Shenyu's plug-in ecology.
> I think the documentation can be improved and users can choose.
>
> Of course others have better suggestions, please let me know, Thanks !
>
> tzzz z <zh...@gmail.com> 于2021年6月9日周三 下午6:52写道：
>
> now, i'm doing oauth2 plugin, cas is the standard process of sso, i think
> if shenyu add sso plugin, this plugin
> might be implement the entire process of cas or integration cas
> framework,
> maybe it's conflicts with the oauth2 plugin,
> so I think the sso feature can build on top of oauth2 plugin.
> If you have other better ideas, let me know, thank you.
>
> sy sin <si...@gmail.com> 于2021年6月9日周三 下午5:48写道：
>
> Do we need to make a unified login plugin?
>
> But we need to prove whether it has any meaning.
>
>
>
>

Re: Add sso plugin

[翟伟 <zh...@163.com>]

I think SSO is better integrated into oauth2, and @tzzz z is doing this now




On 06/10/2021 12:30，tzzz z<zh...@gmail.com> wrote：
What you said makes sense, but what I said before is that CAS is the
standard process of SSO. The sso plug-in of Shenyu should only provide
plug-ins of the cas process standard, without any customization features,
and is considered universal only if it meets the specification . Although
oauth2 can also implement sso, it and cas are indeed two different but
standardized, so I think if you want to add sso plug-ins, you should add
plug-ins that conform to the cas specification. But whether you choose to
re-implement the cas specification or integrate a framework that conforms
to the cas specification, it is not an easy task, otherwise I think it
would be nice to expand on oauth2

sy sin <si...@gmail.com> 于2021年6月9日周三 下午10:50写道：

Jwt plug-in or oauth plug-in have some similarities in themselves,
but they have different architecture designs when judging permissions.
So I think all plugins have some similarities more or less.

Therefore all plug-ins have their own unique places.
It is these unique places that constitute Shenyu's plug-in ecology.
I think the documentation can be improved and users can choose.

Of course others have better suggestions, please let me know, Thanks !

tzzz z <zh...@gmail.com> 于2021年6月9日周三 下午6:52写道：

now, i'm doing oauth2 plugin, cas is the standard process of sso, i think
if shenyu add sso plugin, this plugin
might be implement the entire process of cas or integration cas
framework,
maybe it's conflicts with the oauth2 plugin,
so I think the sso feature can build on top of oauth2 plugin.
If you have other better ideas, let me know, thank you.

sy sin <si...@gmail.com> 于2021年6月9日周三 下午5:48写道：

Do we need to make a unified login plugin?

But we need to prove whether it has any meaning.

Re: Add sso plugin

[tzzz z <zh...@gmail.com>]

What you said makes sense, but what I said before is that CAS is the
standard process of SSO. The sso plug-in of Shenyu should only provide
plug-ins of the cas process standard, without any customization features,
and is considered universal only if it meets the specification . Although
oauth2 can also implement sso, it and cas are indeed two different but
standardized, so I think if you want to add sso plug-ins, you should add
plug-ins that conform to the cas specification. But whether you choose to
re-implement the cas specification or integrate a framework that conforms
to the cas specification, it is not an easy task, otherwise I think it
would be nice to expand on oauth2

sy sin <si...@gmail.com> 于2021年6月9日周三 下午10:50写道：

> Jwt plug-in or oauth plug-in have some similarities in themselves,
> but they have different architecture designs when judging permissions.
> So I think all plugins have some similarities more or less.
>
> Therefore all plug-ins have their own unique places.
> It is these unique places that constitute Shenyu's plug-in ecology.
> I think the documentation can be improved and users can choose.
>
>  Of course others have better suggestions, please let me know, Thanks !
>
> tzzz z <zh...@gmail.com> 于2021年6月9日周三 下午6:52写道：
>
> > now, i'm doing oauth2 plugin, cas is the standard process of sso, i think
> > if shenyu add sso plugin, this plugin
> > might be implement the entire process of cas or integration cas
> framework,
> > maybe it's conflicts with the oauth2 plugin,
> > so I think the sso feature can build on top of oauth2 plugin.
> > If you have other better ideas, let me know, thank you.
> >
> > sy sin <si...@gmail.com> 于2021年6月9日周三 下午5:48写道：
> >
> > > Do we need to make a unified login plugin?
> > >
> > > But we need to prove whether it has any meaning.
> > >
> >
>

Re: Add sso plugin

[sy sin <si...@gmail.com>]

Jwt plug-in or oauth plug-in have some similarities in themselves,
but they have different architecture designs when judging permissions.
So I think all plugins have some similarities more or less.

Therefore all plug-ins have their own unique places.
It is these unique places that constitute Shenyu's plug-in ecology.
I think the documentation can be improved and users can choose.

 Of course others have better suggestions, please let me know, Thanks !

tzzz z <zh...@gmail.com> 于2021年6月9日周三 下午6:52写道：

> now, i'm doing oauth2 plugin, cas is the standard process of sso, i think
> if shenyu add sso plugin, this plugin
> might be implement the entire process of cas or integration cas framework,
> maybe it's conflicts with the oauth2 plugin,
> so I think the sso feature can build on top of oauth2 plugin.
> If you have other better ideas, let me know, thank you.
>
> sy sin <si...@gmail.com> 于2021年6月9日周三 下午5:48写道：
>
> > Do we need to make a unified login plugin?
> >
> > But we need to prove whether it has any meaning.
> >
>

Re: Add sso plugin

[tzzz z <zh...@gmail.com>]

now, i'm doing oauth2 plugin, cas is the standard process of sso, i think
if shenyu add sso plugin, this plugin
might be implement the entire process of cas or integration cas framework,
maybe it's conflicts with the oauth2 plugin,
so I think the sso feature can build on top of oauth2 plugin.
If you have other better ideas, let me know, thank you.

sy sin <si...@gmail.com> 于2021年6月9日周三 下午5:48写道：

> Do we need to make a unified login plugin?
>
> But we need to prove whether it has any meaning.
>

Re: Add sso plugin

[XiaoYu <xi...@apache.org>]

Hi

Shenyu already have the jwt plugin and the outh2 plugin in the works.

Unified login plugin？

I guess this is very difficult to achieve uniformity, because there is no
uniform standard
But outh2 is a standard, so outh2 plugin we can do.

Do others have better suggestions?

Thanks!


sy sin <si...@gmail.com> 于2021年6月9日周三 下午5:48写道：

> Do we need to make a unified login plugin?
>
> But we need to prove whether it has any meaning.
>