I implement a SSO with NTLM and passthru, and it works if our client had joined into domain. As in our code we will check if there is a "Authorization header" in the reques开发者_JAVA技巧t header. And the problem is:
If our client joined domain, then in our application, I can receive the Authentication header which contain NTLM ...
If our client didn't join domain and login buy key in the username and password, no Authorization header are received, so I can not authorized them.
My problem is : How can I make all the client can send Authorization header all the time even though they didn't join domain ?
If 'Authorization" header is missing in request, you should respond with HTTP status 401 along with "WWW-Authenticate" response header to force clients to login and send "Authorization" request header.
![Interactive visualization of a graph in python [closed]](https://www.devze.com/res/2023/04-10/09/92d32fe8c0d22fb96bd6f6e8b7d1f457.gif)
加载中,请稍侯......
精彩评论