以SAML為基礎的單一登入系統

Abstract

在網際網路快速發展的今日世界中，各企業為了能夠快速的提供適當的服務給使用者，因此產生Web service的技術。而使用者在要求服務前需要有一定的認證授權機制，SAML即為用來解決此問題的規範。

但以目前一般的認證系統而言，當使用者登入一個提供服務網站時，總是需要再重新輸入帳號密碼一次，因此會造成使用者需要記錄多組帳號密碼的麻煩。而在本篇論文中，提出了一個單一登入系統，讓使用者只需要登入一次即可到各個服務網站得到其需要的服務，藉此讓使用者在操作此系統時可以更加方便且快速，增加其使用的意願。

In the world today the internet network develop very fast. Because many enterprises in order to server fast and proper service to users, they produce the technology of Web service. The user needs certain authentication and authorization mechanism before demanding for service. SAML is the specification that can solve this problem.

But as general authentication system, when user logins a web service, the user always need to retype ID and password once again, this will lead to the fact that the user has the trouble recording many group's ID and passwords. In this thesis, we propose a single sign on (SSO) system, users only need to login once and can reach the service website to get services they want. The users can be more convenient, fast, and increasing using will while operating this system.