Can i achieve single sign on with openid -

-

i have been reading lot on single sign on , openid have checked documentation openid , single sign on on below link

single sign on

http://rashidi.zin.my/geek-talks/2009/06/30/php-mysql-curl-single-sign-on-with-multiple-domains.html
http://www.opengroup.org/security/sso/sso_intro.htm
http://www.authenticationworld.com/single-sign-on-authentication/
http://merbist.com/2012/04/04/building-and-implementing-a-single-sign-on-solution/
https://wiki.queensu.ca/display/itsd/single+sign-on
https://github.com/jasny/sso#readme
https://lw.microstrategy.com/msdz/msdl/940/docs/mergedprojects/websdk/topics/sso/sso_single_sign-on.htm

openid

http://openidexplained.com/
http://openid.net/pres/protocolflow-1.1.png -- flow diagram
http://wiki.openid.net/w/page/12995226/run%20your%20own%20identity%20server

simple concept understood on single sign on can explained below

user hits domain1.com.
domain1.com sees there's no session cookie.
domain1.com redirects sso.com
sso.com presents login page, , take credentials
sso.com sets session cookie user
sso.com redirects domain1 special url (like domain1.com/ssologin)
ssologin url contains parameter "signed" sso.com. simple base64 of encrypting loginid using shared secret key.
domain1.com takes encrypted token, decrypts it, uses new login id log in user.
domain1 sets session cookie user.

now, next case.

user hits domain2.com, follows domain1 , redirects sso.com
sso.com has cookie user, not present login page
sso.com redirects domain2.com encrypted information domain2.com logs in user.

openid concept got can explained as

openid allows use existing account sign in multiple websites, without needing create new passwords. openid way of identifying no matter web site visit.

now problem after reading lot of documentation, not sure able achieve single sign on using openid , important me know before start code.
there way can upload database openid authentication, users not need go through drill again.

i appreciate if has implemented earlier or has reference me make clear

yes, openid give single signon across web applications may live in different domains. note openid 2.0 (which subject of links point to) deprecated , followed openid connect, see: http://openid.net/specs/openid-connect-core-1_0.html#introduction

there number of product , libraries can use build on: http://openid.net/developers/libraries/


Comments

Post a Comment

Popular posts from this blog

javascript - Chart.js (Radar Chart) different scaleLineColor for each scaleLine -

-
Image
i try , create radar chart using chart.js has various colours each scaleline, or coloured between scalelines. wondering if possible? from: to: i have working graph, though there doesn't seem method change individual scale lines. kind regards leigh you can extend radar chart type this, so chart.types.radar.extend({ name: "radaralt", initialize: function (data) { chart.types.radar.prototype.initialize.apply(this, arguments); var originalscaledraw = this.scale.draw; var ctx = this.chart.ctx; this.scale.draw = function () { var linewidth = this.linewidth; // bypasses line drawing in originalscaledraw this.linewidth = linewidth; originalscaledraw.apply(this, arguments); ctx.linewidth = this.linewidth; var scale = this; // draw chart.helpers.each(scale.ylabels, function (label, index) { // color of ...
Read more

apache - Error with PHP mail(): Multiple or malformed newlines found in additional_header -

-
suddenly have started receiving above error without changes having been made script. host 1and1 (i know...) the script still works fine on different server, , suspicion there must have been server config change has lead this, although hosts plead ignorance. there's no information on above error @ in google can find - have ideas? server running apache if helps. had similar problem. came out of blue. no php code changed. what changed: php upgraded 5.5.25-1 5.5.26. a security risk in php mail() function has been fixed , newlines in additional_headers allowed no more. because newlines mean: starts email message (and surely don't want inject newlines through headers followed evil message). what have worked fine, e.g. having newlines after headers or passing whole message additional_headers , function no more. solution : sanitize headers. no multiple newlines in additional_headers argument. these count "multiple or malformed newlines":...
Read more

java - Android – MapFragment overlay button shadow, just like MyLocation button -

-
Image
i'm struggling add shadow custom overlay button on google map. goal make custom button google's mylocation button. here's how app looks now: layout.xml <relativelayout xmlns:android="http://schemas.android.com/apk/res/android" xmlns:tools="http://schemas.android.com/tools" xmlns:map="http://schemas.android.com/apk/res-auto" android:layout_height="match_parent" android:layout_width="match_parent" style="@style/apptheme"> <fragment android:layout_width="match_parent" android:layout_height="match_parent" android:id="@+id/map" tools:context=".mapsactivity" android:name="com.google.android.gms.maps.supportmapfragment" android:layout_alignparentend="true" android:layout_alignparentstart="true" android:layout_alignparentbottom="true" ...
Read more