Upgrade to Pro — share decks privately, control downloads, hide ads and more …

OpenID Connect 1.0 with Spring Security #jjug_ccc #jjug_ccc_b / oidc-with-spring-security

Masatoshi Tada
May 23, 2021
Technology
1
1.1k

OpenID Connect 1.0 with Spring Security #jjug_ccc #jjug_ccc_b / oidc-with-spring-security

OpenID Connect 1.0は、OAuth 2.0をベースとした認証プロトコルです。このセッションでは次の内容をわかりやすく解説します。

- OpenID Connect 1.0の概要とフロー
- なぜOAuthは「認可」でOpenID Connectは「認証」なのか
- Spring Securityの利用方法

このセッションは中級者向けです。次の知識を前提として解説します。

- OAuth 2.0の認可コードグラントのフローを説明できる
- Spring Security 5.xのOAuth 2.0機能を使ったことがある(既に非推奨となっている「Spring Security OAuth2」ではありません)

Masatoshi Tada

May 23, 2021
Tweet

More Decks by Masatoshi Tada

See All by Masatoshi Tada
プロになるためのSpring上級知識 #jsug / advanced-spring-for-professionals
masatoshitada
3
1.5k
Flaskのセキュリティどうしてます?アクセス制御ライブラリCasbin入門! #pycharity / flask-authz-with-casbin
masatoshitada
0
740
今こそ知りたいSpring DI×AOP / spring-di-aop-for-every-developers
masatoshitada
4
1.7k
OAuth 2.0 with Spring Security #jjug_ccc #jjug_ccc_b / oauth2-with-spring-security
masatoshitada
4
1.5k
基礎から分かる!アプリケーション開発者のためのKubernetes入門 / kubernetes-basics-for-application-developers
masatoshitada
10
3.3k
2時間で分かる!Kubernetesとは何なのか / what-is-kubernetes
masatoshitada
0
820
Introduction to Resilience4j
masatoshitada
2
930
SpringOne Platform 2019報告会 -概要、Resilience4j、LT- #jsug / springone-platform-2019
masatoshitada
0
870
From Hystrix To Resilience4j
masatoshitada
1
870

Other Decks in Technology

See All in Technology
Impressions of the Ruby Kaigi
suzukahr
1
5k
AI in Action
charmichokshi
0
170
[春のDojo祭り'23] いまからでも遅くない!データベース超入門 ハンズオン編
leekwangsoo1995
2
320
NAB Show 2023 動画技術関連レポート / NAB Show 2023 Report
cyberagentdevelopers
PRO
1
120
心理的安全性に対して個人とチームで取り組んできたこと
hiro_torii
1
690
Turbinando Microsserviços com Distributed Cache
jordihofc
1
320
【Oracle Cloud ウェビナー】Oracle Databaseはクラウドに移行するべきか否か 全10ケースをご紹介 (2023年5月24日)
oracle4engineer
PRO
1
100
AWSに関するOSS活動で得た貢献までの壁を越えるコツ
bun913
0
300
どうしてもcgoから逃げられなくなったあなたに知ってほしいcgoの使い方入門
sakiengineer
1
490
ブロックテーマでどう変わる?新しいWordPressのWebサイト制作
tbshiki
0
140
2023.06.01_LangChain/Llamaindex/Whisperを使ったアプリケーション開発のまとめと展望
pharma_x_tech
0
430
Go1.20からサポートされるtree構造のerrの紹介と、treeを考慮した複数マッチができるライブラリを作った話/introduction of tree structure err added since go 1_20
convto
0
150

Featured

See All Featured
JavaScript: Past, Present, and Future - NDC Porto 2020
reverentgeek
39
3.7k
Fireside Chat
paigeccino
18
2.1k
Ruby is Unlike a Banana
tanoku
93
9.7k
Music & Morning Musume
bryan
37
4.8k
Templates, Plugins, & Blocks: Oh My! Creating the theme that thinks of everything
marktimemedia
16
1.3k
Exploring the Power of Turbo Streams & Action Cable | RailsConf2023
kevinliebholz
0
1.4k
Dealing with People You Can't Stand - Big Design 2015
cassininazir
351
21k
A Philosophy of Restraint
colly
195
15k
Streamline your AJAX requests with AmplifyJS and jQuery
dougneiner
130
8.9k
Facilitating Awesome Meetings
lara
35
4.8k
Learning to Love Humans: Emotional Interface Design
aarron
264
38k
The Language of Interfaces
destraynor
149
21k

Transcript

  1. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    0QFO*%$POOFDU
    XJUI4QSJOH4FDVSJUZ
    ג
    ΧαϨΞϧଟాਅහ
    ೥݄೔
    ++6($$$4QSJOH
    1

    View Slide

  2. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ͜ͷηογϣϯʹ͍ͭͯ
    ▸ 0QFO*%$POOFDUʢҎԼ0*%$ʣ͓Αͼ

    4QSJOH4FDVSJUZͷؔ࿈ػೳΛ

    ෼͔Γ΍͘͢ղઆ͠·͢
    ▸ αϯϓϧίʔυ
    ▸ IUUQTHJUIVCDPN.BTBUPTIJ5BEBPJEDXJUI
    TQSJOHTFDVSJUZ
    2

    View Slide

  3. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ඞཁͳલఏ஌ࣝ
    ▸ ͜ͷηογϣϯ͸ʲதڃऀ޲͚ʳͰ͢
    ▸ ҎԼͷલఏ஌͕ࣝඞཁͰ͢
    ▸ 0"VUIͷ"VUIPSJ[BUJPO$PEF(SBOU'MPXΛ

    આ໌Ͱ͖Δ
    ▸ 4QSJOH4FDVSJUZͷ0"VUIػೳΛ࢖ͬͨ͜ͱ͕͋Δ
    ▸ /PUl4QSJOH4FDVSJUZ0"VUIz
    3

    View Slide

  4. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ؀ڥ
    ▸ +%, ;VMV$PNNVOJUZ NBD04 "3.

    ▸ 4QSJOH4FDVSJUZ
    ▸ 4QSJOH#PPU
    ▸ ,FZDMPBL
    4

    View Slide

  5. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ͜ͷηογϣϯͷ݁࿦
    ▸ "VUI԰͞ΜͷຊΛ

    ಡΜͰ͍ͩ͘͞ʂʂʂ
    ▸ ҎԼʮ"VUI԰ຊʯ
    ▸ IUUQT
    BVUIZBCPPUIQN
    JUFNT
    5

    View Slide

  6. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    0"VUIͷجૅΛ஌Γ͍ͨํ͸ʜ
    6
    https://www.slideshare.net/masatoshitada7/oauth-20spring-security-51-121418814

    View Slide

  7. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    4QSJOH4FDVSJUZͷ0"VUIػೳͷ࢓૊ΈΛ஌Γ͍ͨํ
    ͸ʜ
    7
    https://speakerdeck.com/masatoshitada/oauth2-with-spring-security

    View Slide

  8. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ࣗݾ঺հ
    ▸ ଟాਅහʢ[email protected]ʣ
    ▸ ݚमτϨʔφʔ!ΧαϨΞϧ
    ▸ +BWB4QSJOH1ZUIPO(P

    .JDSPTFSWJDFT,VCFSOFUFT
    ▸ 7.XBSFೝఆߨࢣ
    ▸ ೔ຊ4QSJOHϢʔβձελοϑ
    8

    View Slide

  9. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    גࣜձࣾΧαϨΞϧ
    ▸ ଞࣾʹ͸ແ͍৭ʑͳϓϩάϥϛϯάݴޠͷ

    ݚमΛఏڙ͍ͯ͠·͢ʂ
    9

    View Slide

  10. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    🎉1ZUIPOݚमϦϦʔε🎉
    10
    1ZUIPOೖ໳

    جຊจ๏ɺϥΠϒϥϦͷར༻ɺ8FCεΫϨΠϐϯά

    ʢ೔ؒʣ
    'MBTLʹΑΔ1ZUIPO8FCΞϓϦέʔγϣϯ։ൃ

    %#ΞΫηεɺ3&45ɺ+BWB4DSJQU࿈ܞɺηΩϡϦςΟ

    ʢ೔ؒʣ

    View Slide

  11. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    4QSJOHݚम͍Ζ͍Ζ
    11
    7.XBSF5BO[Vೝఆ4QSJOH$PSF5SBJOJOH

    ϋΠϨϕϧͳ4QSJOHͷجૅ

    ʢ೔ؒʣ
    7.XBSF5BO[Vೝఆ4QSJOH$MPVE%FWFMPQFS

    4QSJOH$MPVEʹΑΔϚΠΫϩαʔϏε։ൃ

    ʢ೔ؒʣ
    جૅ͔Βͷ4QSJOH#PPU

    8FCɺ%#ΞΫηεɺ3&45ɺηΩϡϦςΟ

    ʢ೔ؒʣ

    View Slide

  12. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ໨࣍
    ▸ 0"VUIͷ෮शͱʮ0"VUIೝূʯͷ໰୊఺
    ▸ 0QFO*%$POOFDUʹΑΔೝূ
    ▸ 4QSJOH4FDVSJUZͰͷར༻
    ▸ ·ͱΊ
    12

    View Slide

  13. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ໨࣍
    ▸ 0"VUIͷ෮शͱʮ0"VUIೝূʯͷ໰୊఺
    ▸ 0QFO*%$POOFDUʹΑΔೝূ
    ▸ 4QSJOH4FDVSJUZͰͷར༻
    ▸ ·ͱΊ
    13

    View Slide

  14. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ೝূͱೝՄ
    ▸ ೝূʢ"VUIFOUJDBUJPO"VUI/ "VUI$ʣ
    ▸ ௨৴ͷ૬ख͕୭ʢԿʣͰ͋Δ͔Λ֬ೝ͢Δ͜ͱ
    ▸ ೝՄʢ"VUIPSJ[BUJPO"VUI;ʣ
    ▸ ͱ͋Δಛఆͷ৚݅ʹରͯ͠ɺϦιʔεΞΫηεͷݖݶ
    Λ༩͑Δ͜ͱ
    14
    @daisuke_m͞ΜʮΑ͘Θ͔ΔೝূͱೝՄʯΑΓҾ༻

    https://dev.classmethod.jp/articles/authentication-and-authorization/

    View Slide

  15. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    0*%$ͱ͸
    l0QFO*%$POOFDU͸

    0"VUIϓϩτίϧͷ্ʹ

    γϯϓϧͳΞΠσϯςΟςΟϨΠϠʔΛ

    ෇༩ͨ͠΋ͷͰ͋Δz
    15
    OpenID Connect Core 1.0ͷ೔ຊޠ༁ΑΓҾ༻

    http://openid-foundation-japan.github.io/openid-connect-core-1_0.ja.html#Introduction
    0"VUIϕʔεͷೝূϓϩτίϧ

    View Slide

  16. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    0"VUIͱ͸
    ▸ ೝՄͷྲྀΕΛنఆͨ͠ϓϩτίϧ
    ▸ 3'$ ೔ຊޠ൛΋͋Δ

    ▸ 0"VUIͱ͸ผ෺
    ▸ 4USVUTͱ4USVUT͘Β͍ҧ͏
    ▸ ೝূϓϩτίϧ0QFO*%$POOFDU

    ͷϕʔεʹͳ͍ͬͯΔ
    16

    View Slide

  17. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ΞΫηετʔΫϯͱ͸
    ▸ ΫϥΠΞϯτ͕ϦιʔεαʔόʔʹΞΫηε͢Δࡍʹ

    ඞཁͳ੾ූʢ㱠*%ΧʔυʣͷΑ͏ͳ΋ͷ
    ▸ "VUIPSJ[BUJPOϦΫΤετϔομʔʹ෇Ճ͢Δ
    ▸ Authorization: Bearer ΞΫηετʔΫϯ
    ▸ ࢓༷Ͱ͸ϑΥʔϚοτະࢦఆ͕ͩɺ֓Ͷ࣍ͷछྨ
    ᶃ ϥϯμϜͳจࣈྻʢ0QBRVF5PLFOʣ
    ᶄ +85ʢ+40/8FC5PLFOɺޙड़ʣ
    17

    View Slide

  18. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    0QBRVF5PLFO
    ▸ ϥϯμϜͳจࣈྻΛΞΫηετʔΫϯʹ͢Δ
    ▸ ྫɿkjew834wkmfw89cy98j
    ▸ ΞΫηετʔΫϯࣗମʹϢʔβʔ໊΍

    ΫϥΠΞϯτ໊ͳͲͷ৘ใ͸ؚ·Ε͍ͯͳ͍
    ▸ 5PLFO*OUSPTQFDUJPOͳͲͰೝՄαʔόʔʹ

    ໰͍߹ΘͤΕ͹৘ใΛऔಘՄೳ
    18

    View Slide

  19. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    +85 +40/8FC5PLFOδϣοτ

    ▸ ϔομʔ +40/
    ɺϖΠϩʔυ +40/
    ɺॺ໊Λ

    ͦΕͧΕ#BTF63-ͰΤϯίʔυͯ͠ʮʯͰ࿈݁
    ▸ +40/ͳͷͰ༷ʑͳ৘ใΛؚΊΒΕΔ
    ▸ ॺ໊ʹϔομʔʴϖΠϩʔυΛʮʯͰ࿈݁ͯ͠

    ɹɹɹೝՄαʔόʔͷൿີ伴Ͱ҉߸Խ
    ▸ ॺ໊ΛೝՄαʔόʔͷެ։伴Ͱ෮߸Խͯ͠

    ϔομʔʴϖΠϩʔυͱҰக͍ͯ͠Ε͹ɺ

    վ᜵͞Ε͍ͯͳ͍ͱ෼͔Δ
    19

    View Slide

  20. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    +85ͷߏ଄
    20
    eyJhbGciOiJSUzI1NiIsInR5cCIgOiAiSldUIiwia2lkIiA6ICJzbGcyMG9uOVg2c
    zZFOExmNDZfQmRuaExHQy1xZnIyMVlvWE9nQVFKRlIwIn0
    .eyJqdGkiOiI4YzUyN
    mMzZC03OTA0LTQ2MWItOGU5ZS1jNDE5YTQ1NmFlNDMiLCJleHAiOjE1Mzg4MTM0Mj
    YsIm5iZiI6MCwiaWF0IjoxNTM4ODEzMTI2LCJpc3MiOiJodHRwOi8vbG9jYWxob3N
    0OjkwMDAvYXV0aC9yZWFsbXMvaGVsbG8tYXBpIiwiYXVkIjoidHJhaW5pbmc2LWZy
    b250LXNlcnZpY2UiLCJzdWIiOiIxYWI5Yjg4Ny0yNDRhLTRjZTktYTBjMy1iZTc2Z
    GE4NzZiMTQiLCJ0eXAiOiJCZWFyZXIiLCJhenAiOiJ0cmFpbmluZzYtZnJvbnQtc2
    VydmljZSIsImF1dGhfdGltZSI6MCwic2Vzc2lvbl9zdGF0ZSI6IjA4MjU3OTFlLTE
    3ODQtNGQxMC1hMjYyLTAzM2U4YmE3OWViMCIsImFjciI6IjEiLCJhbGxvd2VkLW9y
    aWdpbnMiOlsiaHR0cDovL2xvY2FsaG9zdDo4MDgwIl0sInJlYWxtX2FjY2VzcyI6e
    yJyb2xlcyI6WyJvZmZsaW5lX2FjY2VzcyIsInVtYV9hdXRob3JpemF0aW9uIl19LC
    JyZXNvdXJjZV9hY2Nlc3MiOnsiYWNjb3VudCI6eyJyb2xlcyI6WyJtYW5hZ2UtYWN
    jb3VudCIsIm1hbmFnZS1hY2NvdW50LWxpbmtzIiwidmlldy1wcm9maWxlIl19fSwi
    c2NvcGUiOiJoZWxsbzpyZWFkIHByb2ZpbGUiLCJwcmVmZXJyZWRfdXNlcm5hbWUiO
    iJ1c2VyIn0
    .fH8s3HaOFjC1CiZeWUP2O1AB2ruDPh9VRnFqSkRoM2zCTpqWgrkiQ
    BKW3r9RQAD_gsZCi3G7s0tQSCmuAMoht7gLgH9rFKzdKhuKiISeDUF7v2baPva8fH
    VN8zP1YF84XnVxq-zVThXLBdDgTRXWWI0_RG6x-
    vJVDRv00gvDwPPvA3WxxIGcekuEjl3ChQhFHozDiEglAlN-
    vlkDV2IvxVtON4GJ1UAwIj9uTpyAoIVY8oOy_0mMuevzxBSXk2HUxWr2Vrvhj3c2a
    RrchCOHPsDELtX0CmEBj_bU38d1XbHL30Ar7PWGvpPeSkM3mIykR-
    osPDSXJwq8gUSAda0JeQ
    ϔομʔ
    ϖΠϩʔυ
    ిࢠॺ໊

    View Slide

  21. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ϖΠϩʔυΛσίʔυ͢Δͱ
    21
    jwt.io Λར༻
    είʔϓ໊΍
    Ϣʔβʔ໊

    View Slide

  22. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    5XJUUFSͷྫͰొ৔ਓ෺·ͱΊ
    22
    UXJUUFSDPN
    ͜Μʹͪ͸

    ָ͠Έͩͳʔ
    Ϧιʔε

    Φʔφʔ
    ΫϥΠΞϯτ
    Ϧιʔεαʔόʔ
    ೝՄαʔόʔ
    ೝՄ
    ΞΫηε

    τʔΫϯ

    ෇༩
    ΞΫηε

    τʔΫϯ
    ͭͿ΍͖
    ※ຊ౰͸Twitter͸OAuth 1.0Λ࢖͍ͬͯ·͢

    View Slide

  23. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    άϥϯτλΠϓʢΞΫηετʔΫϯͷऔಘํ๏ʣ
    ᶃ ೝՄίʔυ
    ▸ ओʹαʔόʔαΠυ8FCΞϓϦέʔγϣϯ
    ᶄ ΠϯϓϦγοτʢඇਪ঑ʣ
    ▸ ओʹΫϥΠΞϯταΠυ8FCΞϓϦέʔγϣϯ
    ᶅ ϦιʔεΦʔφʔύεϫʔυΫϨσϯγϟϧʢඇਪ঑ʣ
    ▸ ओʹެࣜͷεϚϗΞϓϦͳͲ
    ᶆ ΫϥΠΞϯτΫϨσϯγϟϧ
    ▸ ΫϥΠΞϯτࣗ਎ͷ৘ใऔಘ
    23

    View Slide

  24. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ೝՄίʔυʹΑΔΞΫηετʔΫϯऔಘ
    24
    ೝՄαʔόʔ
    ΫϥΠΞϯτ
    Ϧιʔε

    Φʔφʔ
    8FC

    ϒϥ΢β˞
    ˞8FCϒϥ΢β͸ɺ࢓༷ॻͰ͸ʮϢʔβʔΤʔδΣϯτʯͱهࡌ͞Ε͍ͯ·͢
    ᶃॳճΞΫηε

    View Slide

  25. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ೝՄίʔυʹΑΔΞΫηετʔΫϯऔಘ
    25
    ೝՄαʔόʔ
    ΫϥΠΞϯτ
    Ϧιʔε

    Φʔφʔ
    8FC

    ϒϥ΢β˞
    ˞8FCϒϥ΢β͸ɺ࢓༷ॻͰ͸ʮϢʔβʔΤʔδΣϯτʯͱهࡌ͞Ε͍ͯ·͢
    ᶃॳճΞΫηε
    ᶄೝՄΤϯυϙΠϯτʹϦμΠϨΫτ

    View Slide

  26. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ೝՄίʔυʹΑΔΞΫηετʔΫϯऔಘ
    26
    ೝՄαʔόʔ
    ΫϥΠΞϯτ
    Ϧιʔε

    Φʔφʔ
    8FC

    ϒϥ΢β˞
    ˞8FCϒϥ΢β͸ɺ࢓༷ॻͰ͸ʮϢʔβʔΤʔδΣϯτʯͱهࡌ͞Ε͍ͯ·͢
    ᶃॳճΞΫηε
    ᶄೝՄΤϯυϙΠϯτʹϦμΠϨΫτ
    ᶅೝՄը໘

    View Slide

  27. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ೝՄίʔυʹΑΔΞΫηετʔΫϯऔಘ
    27
    ೝՄαʔόʔ
    ΫϥΠΞϯτ
    Ϧιʔε

    Φʔφʔ
    8FC

    ϒϥ΢β˞
    ˞8FCϒϥ΢β͸ɺ࢓༷ॻͰ͸ʮϢʔβʔΤʔδΣϯτʯͱهࡌ͞Ε͍ͯ·͢
    ᶃॳճΞΫηε
    ᶄೝՄΤϯυϙΠϯτʹϦμΠϨΫτ
    ᶅೝՄը໘
    ᶆೝՄ
    ϦιʔεΦʔφʔͷ
    Ϣʔβʔ໊ʴύεϫʔυΛ
    ೖྗ͢Δ͜ͱ͕ଟ͍
    ˠ0"VUI͕ೝূͰ͋Δͱ
    צҧ͍͠΍͍͢

    View Slide

  28. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ೝՄίʔυʹΑΔΞΫηετʔΫϯऔಘ
    28
    ೝՄαʔόʔ
    ΫϥΠΞϯτ
    Ϧιʔε

    Φʔφʔ
    8FC

    ϒϥ΢β˞
    ˞8FCϒϥ΢β͸ɺ࢓༷ॻͰ͸ʮϢʔβʔΤʔδΣϯτʯͱهࡌ͞Ε͍ͯ·͢
    ᶃॳճΞΫηε
    ᶇೝՄίʔυൃߦʴϦμΠϨΫτ
    ᶄೝՄΤϯυϙΠϯτʹϦμΠϨΫτ
    ᶅೝՄը໘
    ᶆೝՄ

    View Slide

  29. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ೝՄίʔυʹΑΔΞΫηετʔΫϯऔಘ
    29
    ೝՄαʔόʔ
    ΫϥΠΞϯτ
    Ϧιʔε

    Φʔφʔ
    8FC

    ϒϥ΢β˞
    ˞8FCϒϥ΢β͸ɺ࢓༷ॻͰ͸ʮϢʔβʔΤʔδΣϯτʯͱهࡌ͞Ε͍ͯ·͢
    ᶃॳճΞΫηε
    ᶇೝՄίʔυൃߦʴϦμΠϨΫτ
    ᶈೝՄίʔυ
    ᶄೝՄΤϯυϙΠϯτʹϦμΠϨΫτ
    ᶅೝՄը໘
    ᶆೝՄ

    View Slide

  30. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ೝՄίʔυʹΑΔΞΫηετʔΫϯऔಘ
    30
    ೝՄαʔόʔ
    ΫϥΠΞϯτ
    Ϧιʔε

    Φʔφʔ
    8FC

    ϒϥ΢β˞
    ˞8FCϒϥ΢β͸ɺ࢓༷ॻͰ͸ʮϢʔβʔΤʔδΣϯτʯͱهࡌ͞Ε͍ͯ·͢
    ᶃॳճΞΫηε
    ᶇೝՄίʔυൃߦʴϦμΠϨΫτ
    ᶈೝՄίʔυ
    ᶉΞΫηετʔΫϯ
    ᶄೝՄΤϯυϙΠϯτʹϦμΠϨΫτ
    ᶅೝՄը໘
    ᶆೝՄ

    View Slide

  31. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ΞΫηετʔΫϯΛར༻ͨ͠ϦιʔεΞΫηε
    31
    ೝՄαʔόʔ
    ΫϥΠΞϯτ
    Ϧιʔε

    Φʔφʔ
    8FC

    ϒϥ΢β
    ੥ٻॻ࡞੒

    ࢿྉ༣ૹ
    Ϧιʔε

    αʔόʔ
    ᶃϦΫΤετ

    View Slide

  32. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ΞΫηετʔΫϯΛར༻ͨ͠ϦιʔεΞΫηε
    32
    ೝՄαʔόʔ
    ΫϥΠΞϯτ
    Ϧιʔε

    Φʔφʔ
    8FC

    ϒϥ΢β
    ੥ٻॻ࡞੒

    ࢿྉ༣ૹ
    Ϧιʔε

    αʔόʔ
    ᶃϦΫΤετ
    ᶄϦιʔεʹΞΫηε

    XJUIΞΫηετʔΫϯ

    View Slide

  33. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ΞΫηετʔΫϯΛར༻ͨ͠ϦιʔεΞΫηε
    33
    ೝՄαʔόʔ
    ΫϥΠΞϯτ
    Ϧιʔε

    Φʔφʔ
    8FC

    ϒϥ΢β
    ੥ٻॻ࡞੒

    ࢿྉ༣ૹ
    Ϧιʔε

    αʔόʔ
    ᶃϦΫΤετ
    ᶅΞΫηε

    ɹτʔΫϯ

    ɹݕূ
    ᶄϦιʔεʹΞΫηε

    XJUIΞΫηετʔΫϯ
    ΞΫηετʔΫϯ͕
    +85ܗࣜͷ৔߹͸ෆཁ

    View Slide

  34. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ΞΫηετʔΫϯΛར༻ͨ͠ϦιʔεΞΫηε
    34
    ೝՄαʔόʔ
    ΫϥΠΞϯτ
    Ϧιʔε

    Φʔφʔ
    8FC

    ϒϥ΢β
    ੥ٻॻ࡞੒

    ࢿྉ༣ૹ
    Ϧιʔε

    αʔόʔ
    ᶃϦΫΤετ
    ᶅΞΫηε

    ɹτʔΫϯ

    ɹݕূ
    ᶆݕূ݁ՌΛฦ͢
    ᶄϦιʔεʹΞΫηε

    XJUIΞΫηετʔΫϯ
    ΞΫηετʔΫϯ͕
    +85ܗࣜͷ৔߹͸ෆཁ

    View Slide

  35. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ΞΫηετʔΫϯΛར༻ͨ͠ϦιʔεΞΫηε
    35
    ೝՄαʔόʔ
    ΫϥΠΞϯτ
    Ϧιʔε

    Φʔφʔ
    8FC

    ϒϥ΢β
    ੥ٻॻ࡞੒

    ࢿྉ༣ૹ
    Ϧιʔε

    αʔόʔ
    ᶃϦΫΤετ
    ᶅΞΫηε

    ɹτʔΫϯ

    ɹݕূ
    ᶆݕূ݁ՌΛฦ͢
    ᶇݕূ݁ՌΛ

    ɹ֬ೝ
    ᶄϦιʔεʹΞΫηε

    XJUIΞΫηετʔΫϯ

    View Slide

  36. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ΞΫηετʔΫϯΛར༻ͨ͠ϦιʔεΞΫηε
    36
    ೝՄαʔόʔ
    ΫϥΠΞϯτ
    Ϧιʔε

    Φʔφʔ
    8FC

    ϒϥ΢β
    ੥ٻॻ࡞੒

    ࢿྉ༣ૹ
    Ϧιʔε

    αʔόʔ
    ᶃϦΫΤετ
    ᶅΞΫηε

    ɹτʔΫϯ

    ɹݕূ
    ᶆݕূ݁ՌΛฦ͢
    ᶈϨεϙϯε
    ᶇݕূ݁ՌΛ

    ɹ֬ೝ
    ᶄϦιʔεʹΞΫηε

    XJUIΞΫηετʔΫϯ

    View Slide

  37. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ΞΫηετʔΫϯΛར༻ͨ͠ϦιʔεΞΫηε
    37
    ೝՄαʔόʔ
    ΫϥΠΞϯτ
    Ϧιʔε

    Φʔφʔ
    8FC

    ϒϥ΢β
    ੥ٻॻ࡞੒

    ࢿྉ༣ૹ
    Ϧιʔε

    αʔόʔ
    ᶃϦΫΤετ
    ᶅΞΫηε

    ɹτʔΫϯ

    ɹݕূ
    ᶆݕূ݁ՌΛฦ͢
    ᶈϨεϙϯε
    ᶉϨεϙϯε
    ᶇݕূ݁ՌΛ

    ɹ֬ೝ
    ᶄϦιʔεʹΞΫηε

    XJUIΞΫηετʔΫϯ

    View Slide

  38. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ʮ0"VUIೝূʯ͸Կ͕໰୊ʁ
    ▸ ΫϥΠΞϯτʹ͸ɺΞΫηετʔΫϯ͕ࣗ෼Ѽͯʹ

    ൃߦ͞Εͨ΋ͷ͔֬ೝ͢Δज़͕ͳ͍
    ▸ ѱҙͷ͋ΔΫϥΠΞϯτຢ͸ϦιʔεΦʔφʔ޲͚ʹ

    ൃߦ͞ΕͨΞΫηετʔΫϯʹࠩ͠ସ͑ΒΕͯ΋ؾ͚ͮͳ͍
    ▸ ΞΫηετʔΫϯΛ+85ʹͯͦ͠ͷதʹΫϥΠΞϯτ໊Λ

    ؚΊΕ͹ɺ্هͷ֬ೝ͸Մೳ
    ▸ ͨͩ͠0"VUIͰ͸߲໨໊ͳͲ͕ඪ४Խ͞Ε͍ͯͳ͍
    ▸ ଞʹ΋৭ʑ͋Δɾɾɾ͸ͣ
    38

    View Slide

  39. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ͜ͷষͷ·ͱΊ
    ▸ 0*%$ͷલʹ0"VUIΛ͔ͬ͠Γཧղ͠·͠ΐ
    ͏
    ▸ ѱҙͷ͋ΔΫϥΠΞϯτຢ͸ϦιʔεΦʔφʔ
    ͷΞΫηετʔΫϯʹࠩ͠ସ͑ΒΕͯ΋ɺ

    ΫϥΠΞϯτ͸ؾ͚ͮͳ͍ͷͰʮ0"VUIೝূʯ
    ͸ةݥ
    39

    View Slide

  40. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ໨࣍
    ▸ 0"VUIͷ෮शͱʮ0"VUIೝূʯͷ໰୊఺
    ▸ 0QFO*%$POOFDUʹΑΔೝূ
    ▸ 4QSJOH4FDVSJUZͰͷར༻
    ▸ ·ͱΊ
    40

    View Slide

  41. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    <࠶ܝ>0*%$ͱ͸
    l0QFO*%$POOFDU͸

    0"VUIϓϩτίϧͷ্ʹ

    γϯϓϧͳΞΠσϯςΟςΟϨΠϠʔΛ

    ෇༩ͨ͠΋ͷͰ͋Δz
    41
    OpenID Connect Core 1.0ͷ೔ຊޠ༁ΑΓҾ༻

    http://openid-foundation-japan.github.io/openid-connect-core-1_0.ja.html#Introduction
    0"VUIϕʔεͷೝূϓϩτίϧ

    View Slide

  42. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    0*%$ͱ͸
    0QFO*%$POOFDU

    ʹ0"VUI*%τʔΫϯ

    6TFS*OGPΤϯυϙΠϯτ
    42
    Auth԰ຊΑΓҾ༻

    https://authya.booth.pm/items/1550861
    0"VUIʹɺೝূ༻ͷ*%τʔΫϯͱ

    ඪ४ͷϢʔβʔ৘ใ"1*ΛՃ͑ͨ΋ͷ

    View Slide

  43. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ొ৔ਓ෺໊ͷରԠ
    43
    ͜Μʹͪ͸

    ָ͠Έͩͳʔ
    3FTPVSDF0XOFS

    &OE6TFS
    $MJFOU

    3FMZJOH1BSUZ 31

    3FTPVSDF4FSWFS

    6TFS*OGP&OEQPJOU
    "VUIPSJ[BUJPO4FSWFS

    0QFO*%1SPWJEFS 01
    ˞
    ※Ұൠʹ͸ʮID Provider (IdP)ʯͱ΋ݺ͹Ε·͕͢ɺ

    ɹ࢓༷ॻͰ͸ʮOpenID Provider (OP)ʯͱॻ͔Ε͍ͯ·͢

    View Slide

  44. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ࠓճͷαϯϓϧΞϓϦͷߏ੒
    ▸ 3FMZJOH1BSUZʹ4QSJOH4FDVSJUZͰ࡞੒ͨ͠

    ɹɹɹɹɹɹɹΞϓϦ
    ▸ 0QFO*%1SPWJEFSʹ,FZDMPBL
    ▸ 6TFS*OGP&OEQPJOUʹ,FZDMPBL
    44

    View Slide

  45. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    %&.0
    45

    View Slide

  46. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    *%τʔΫϯͱ͸
    ▸ Ϣʔβʔ໊ͳͲͷ৘ใؚ͕·Εͨ+85
    ▸ 01͔ΒΞΫηετʔΫϯͱҰॹʹ෇༩͞ΕΔ
    46

    View Slide

  47. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    *%τʔΫϯͷऔಘ
    47
    0QFO*%1SPWJEFS
    3FMZJOH1BSUZ
    &OE6TFS
    8FC

    ϒϥ΢β˞
    ˞8FCϒϥ΢β͸ɺ࢓༷ॻͰ͸ʮϢʔβʔΤʔδΣϯτʯͱهࡌ͞Ε͍ͯ·͢
    ᶃॳճΞΫηε
    ᶇೝՄίʔυൃߦʴϦμΠϨΫτ
    ᶈೝՄίʔυ
    ᶉΞΫηετʔΫϯʴ*%τʔΫϯ
    ᶄೝՄΤϯυϙΠϯτʹϦμΠϨΫτ
    ᶅೝՄը໘
    ᶆೝՄ
    ΞΫηετʔΫϯͱҰॹʹ
    *%τʔΫϯ͕౉͞ΕΔ

    View Slide

  48. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    *%τʔΫϯͷத਎
    48
    https://jwt.io/ Λར༻
    σίʔυ݁Ռ
    +85

    View Slide

  49. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    *%τʔΫϯͷத਎
    49
    https://jwt.io/ Λར༻
    Ϣʔβʔ৘ใ
    ͦͷଞ΋Ζ΋Ζ

    View Slide

  50. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    *%τʔΫϯϖΠϩʔυ಺ͷॏཁDMBJN
    50
    claim આ໌
    iss Issuer Identi
    fi
    erʢOPΛද͢URLɺޙड़ʣ
    sub End-UserͷࣝผࢠʢOP಺ͰͷηογϣϯIDʣ
    aud OAuth 2.0ͰͷΫϥΠΞϯτID
    iat OP͕JWTΛൃߦͨ࣌͠ࠁʢ1970-01-01͔Βͷඵ਺ʣ
    exp IDτʔΫϯͷ༗ޮظݶʢiat͔Βͷඵ਺ʣ

    View Slide

  51. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ͦͷଞͷओͳඪ४DMBJN
    51
    ▸ OBNF
    [email protected]
    [email protected]
    [email protected]
    ▸ OJDLOBNF
    [email protected]
    ▸ FNBJM
    [email protected]
    fi
    FE
    ▸ CJSUIEBUF
    [email protected]
    [email protected]@WFSJ
    fi
    FE
    ▸ BEESFTT

    View Slide

  52. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ඪ४ͷείʔϓ
    52
    scope આ໌
    openid OIDCར༻࣌ʹඞਢ
    pro
    fi
    le (Optional) nameɺfamily_nameͳͲΛऔಘՄೳ
    email (Optional) emailɾemail_veri
    fi
    edΛऔಘՄೳ
    address (Optional) addressΛऔಘՄೳ
    phone (Optional) phone_numberɾphone_number_veri
    fi
    edΛऔಘՄೳ

    View Slide

  53. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    *%τʔΫϯऔಘޙɺ31͕֬ೝ͢΂͖ओͳ͜ͱ
    ▸ BVEʹ31ࣗ਎ͷΫϥΠΞϯτ*%ؚ͕·ΕΔ
    ▸ *%τʔΫϯ͕ɺѱҙͷ͋ΔଞͷΫϥΠΞϯτ͔Β

    ྲྀ༻͞Εͨ΋ͷͰͳ͍
    ▸ ݱࡏ࣌ࠁJBUFYQ
    ▸ *%τʔΫϯ͕ظݶ੾ΕͰͳ͍
    53

    View Slide

  54. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    <ٙ໰>ඞཁ߲໨ΛؚΜͩ+85ΛΞΫηετʔΫϯʹ͢Ε͹

    ɹɹɹ0"VUIೝূ͸0,ͳͷͰ͸ʁ🤔
    ▸ ͨͿΜ0,ͩͱࢥ͍·͢ʢࣗ৴ແ͠ʣ
    ▸ ҎԼ͕0*%$ͷҙٛͩͱߟ͍͑ͯ·͢
    ▸ 0"VUIͷ࢓༷Λվมͤͣͦͷ··׆͔ͨ͜͠ͱ
    ▸ +85ʹؚ·ΕΔ΂͖߲໨Λඪ४Խͨ͜͠ͱ
    54

    View Slide

  55. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    6TFS*OGPΤϯυϙΠϯτ΁ͷΞΫηε
    55
    $ curl -X GET -H "Authorization: Bearer ΞΫηετʔΫϯ" \


    http://UserInfoΤϯυϙΠϯτ | jq


    {


    "sub": "19736c99-d864-4876-8234-388ccfc0cdc8",


    "email_verified": false,


    "name": "John Doe",


    "preferred_username": "user",


    "given_name": "John",


    "family_name": "Doe",


    "email": "[email protected]"


    }
    ▸ ΞΫηετʔΫϯ͕ඞཁ

    View Slide

  56. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    0*%$%JTDPWFSZ
    ▸ 31͕01ͱͷ΍ΓͱΓʹඞཁͳ৘ใΛ

    औಘ͢ΔͨΊͷ࢓༷
    ▸ 0QUJPOBMͳͷͰ01΍31͕ରԠͯ͠ͳ͍Մೳੑ
    ΋͋Γ
    ▸ ,FZDMPBL΍4QSJOH4FDVSJUZ͸ରԠ͍ͯ͠Δ
    56

    View Slide

  57. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    *TTVFS
    ▸ 01Λද͢63-
    ▸ ,FZDMPBLͷ৔߹͸

    IUUQ*1ΞυϨεBVUISFBMNTϨϧϜ໊
    ▸ ΞΫηε͢Δͱ͜Μͳ৘ใ͕औಘͰ͖Δ
    57

    View Slide

  58. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    τʔΫϯΤϯυϙΠϯτͳͲͷऔಘ
    ▸ *TTVFS63-ͷޙʹ

    XFMMLOPXOPQFOJEDPO
    fi
    HVSBUJPO

    Λଓ͚Δ
    58

    View Slide

  59. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ͜ͷষͷ·ͱΊ
    ▸ 0*%$0"VUI*%τʔΫϯ

    ɹɹɹɹ6TFS*OGPΤϯυϙΠϯτ
    ▸ *%τʔΫϯ͸
    ▸ +85ܗࣜ
    ▸ ΞΫηετʔΫϯͱҰॹʹฦ͞ΕΔ
    ▸ ΫϥΠΞϯτ*%ͳͲͷ߲໨໊͕ඪ४Ͱఆٛ͞Ε͍ͯΔ
    ▸ 0*$%%JTDPWFSZͰ৭Μͳ63-ΛऔಘՄೳ
    59

    View Slide

  60. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ໨࣍
    ▸ 0"VUIͷ෮शͱʮ0"VUIೝূʯͷ໰୊఺
    ▸ 0QFO*%$POOFDUʹΑΔೝূ
    ▸ 4QSJOH4FDVSJUZͰͷར༻
    ▸ ·ͱΊ
    60

    View Slide

  61. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    4QSJOH4FDVSJUZͰͷ0*%$ར༻
    ▸ 31ͷػೳʢԼهʣ͕ఏڙ͞Ε͍ͯΔ
    ▸ *%τʔΫϯʢʴΞΫηετʔΫϯʣΛऔಘ
    ▸ औಘޙʹ*%τʔΫϯΛݕূʢࣗಈʣ
    ▸ 6TFS*OGPΤϯυϙΠϯτʹΞΫηεʢࣗಈʣ
    ▸ 31*OJUJBUFE-PHPVU
    61

    View Slide

  62. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ඞཁͳϥΠϒϥϦ
    62



    org.springframework.boot





    spring-boot-starter-oauth2-client






    0*%$ػೳ΋ؚ·Ε͍ͯΔ

    View Slide

  63. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    BQQMJDBUJPOZNM
    63
    spring.security.oauth2.client.registration.hello:


    provider: ೚ҙͷ໊લ .registrationͷޙʹ΋ࢦఆ͢Δ



    client-id: ΫϥΠΞϯτ*%
    client-secret: ΫϥΠΞϯτγʔΫϨοτ


    client-name: ೚ҙͷ໊લ ը໘දࣔͰ࢖ΘΕΔ



    client-authentication-method: ΫϥΠΞϯτೝূํ๏
    authorization-grant-type: άϥϯτλΠϓ


    redirect-uri: ϦμΠϨΫτΤϯυϙΠϯτͷ63-


    scope: ͜ͷΞϓϦͷείʔϓΛΧϯϚ۠੾ΓͰࢦఆ
    ˞εϖʔεͷ౎߹্Ͱ:".-ܗࣜͰॻ͍͍ͯ·͕͢ɺݸਓతʹ͸QSPQFSUJFT೿Ͱ͢
    0"VUIͷ৔߹ͱ
    ॻ͖ํ͸શ͘ಉ͡

    View Slide

  64. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    BQQMJDBUJPOZNMʢଓ͖ʣ
    64
    spring.security.oauth2.client.provider.hello:


    user-name-attribute: 6TFS*OGP+40/ͷϢʔβʔ໊Λද͢ଐੑ໊
    issuer-uri: ೝՄαʔόʔͷ*TTVFS*EFOUJ
    fi
    FS
    01͕0*%$%JTDPWFSZରԠͷ৔߹ɺ
    ଞͷ߲໨͸ෆཁ

    View Slide

  65. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    +BWB$PO
    fi
    H
    65
    @EnableWebSecurity


    public class SecurityConfig extends WebSecurityConfigurerAdapter {


    @Override


    protected void configure(HttpSecurity http) throws Exception {


    http.oauth2Login()


    ...


    }


    }
    0"VUIͷ৔߹ͱಉ͡

    View Slide

  66. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    3FTU5FNQMBUFͷλΠϜΞ΢τઃఆ
    ▸ ৄࡉ͸(JU)VC্ͷιʔείʔυɺ

    ͓ΑͼԼهͷࢿྉΛࢀর
    66
    https://speakerdeck.com/masatoshitada/oauth2-with-spring-security

    View Slide

  67. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    31*OJUJBUFE-PHPVUͷར༻
    ▸ 31ͰͷϩάΞ΢τޙʹɺ

    ϒϥ΢βΛ01ͷ[email protected]@FOEQPJOUʹ

    ϦμΠϨΫτͤͯ͞ɺ01͔Β΋ϩάΞ΢τ͢Δ
    ▸ 63-͸01$PO
    fi
    HVSBUJPO*OGPSNBUJPOͰऔಘՄೳ
    ▸ OidcClientInitiatedLogoutSuccessHand
    lerΛઃఆ
    67

    View Slide

  68. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    31*OJUJBUFE-PHPVUͷར༻
    @EnableWebSecurity


    public class SecurityConfig extends WebSecurityConfigurerAdapter {


    @Autowired


    private ClientRegistrationRepository clientRegistrationRepository;


    private LogoutSuccessHandler oidcLogoutSuccessHandler() {


    // RP-Initiated LogoutΛߦ͏LogoutSuccessHandler


    OidcClientInitiatedLogoutSuccessHandler handler =


    new OidcClientInitiatedLogoutSuccessHandler(


    this.clientRegistrationRepository);


    // OP͔ΒͷϩάΞ΢τޙʹϦμΠϨΫτ͞ΕΔURLΛࢦఆ


    // {baseUrl}ͰRPͷϕʔεURLʢྫ: http://localhost:8080ʣΛઃఆՄೳ


    handler.setPostLogoutRedirectUri("{baseUrl}");


    return handler;


    }

    View Slide

  69. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    31*OJUJBUFE-PHPVUͷར༻
    69
    @Override


    protected void configure(HttpSecurity http) throws Exception {


    ...


    http.logout(logout -> logout


    .logoutSuccessHandler(oidcLogoutSuccessHandler())


    );


    }


    }

    View Slide

  70. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    *%τʔΫϯͷऔಘ
    70
    @Controller


    public class HogeController {


    @GetMapping("/hoge")


    public String hoge(OAuth2AuthenticationToken authentication) {


    OidcUser oidcUser = (OidcUser) authentication.getPrincipal();


    String idToken = oidcUser.getIdToken().getTokenValue();


    ...


    }


    }
    ίϯτϩʔϥʔϝιουͷҾ਺ʹ
    OAuth2AuthenticationTokenΛ

    ࢦఆ͢Δ͚ͩ

    View Slide

  71. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    Ϋϥεߏ଄
    71

    View Slide

  72. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ͜ͷষͷ·ͱΊ
    ▸ ࢖͍ํ͸΄΅0"VUIͷ৔߹ͱಉ͡
    ▸ 31*OJUJBUFEϩάΞ΢τͰ01͔Β΋ϩάΞ΢τ
    Մೳ
    72

    View Slide

  73. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ໨࣍
    ▸ 0"VUIͷ෮शͱʮ0"VUIೝূʯͷ໰୊఺
    ▸ 0QFO*%$POOFDUʹΑΔೝূ
    ▸ 4QSJOH4FDVSJUZͰͷར༻
    ▸ ·ͱΊ
    73

    View Slide

  74. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ຊηογϣϯͷ·ͱΊ
    ▸ ʮ0"VUIೝূʯ͸ةݥ
    ▸ 0*%$0"VUI*%τʔΫϯ

    ɹɹɹɹ6TFS*OGPΤϯυϙΠϯτ
    ▸ 4QSJOH4FDVSJUZͰ31Λ؆୯ʹ࣮૷Ͱ͖Δ
    74

    View Slide

  75. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ࢀߟॻ੶
    75

    View Slide

  76. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    0*%$ؔ࿈࢓༷ॻ
    ▸ 0QFO*%$POOFDU$PSF
    [email protected]
    ▸ 0QFO*%$POOFDU%JTDPWFSZ
    [email protected]
    ▸ 0QFO*%$POOFDU31*OJUJBUFE-PHPVU
    ▸ IUUQTPQFOJEOFUTQFDTPQFOJEDPOOFDU
    [email protected]
    76

    View Slide

  77. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ଞʹ΋͍ΖΜͳ࢓༷͕͋ΔͬΆ͍
    77
    https://openid.net/connect/
    ϩάΞ΢τͷ࢓༷ͱ͔
    ؾʹͳͬͯ·͢👀

    View Slide

  78. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    4QSJOH4FDVSJUZ3FGFSFODF
    ▸ IUUQTEPDTTQSJOHJPTQSJOHTFDVSJUZTJUF
    EPDTDVSSFOUSFGFSFODFIUNMPBVUI
    ▸ 0*%$ػೳͷ͜ͱ͸0"VUIػೳͷઆ໌ʹೖΓ
    ࠞͬͯ͡ΔͷͰɺͪΐͬͱ୳ͮ͠Β͍
    78

    View Slide

  79. (C) CASAREAL, Inc. All rights reserved.
    [email protected]
    ͝ਗ਼ௌ͋Γ͕ͱ͏͍͟͝·ͨ͠ʂ
    79

    View Slide