tags:

views:

508

answers:

3
Q: 

Sharing authentication between ASP.NET and WordPress

Hi,

I'm in a situation where I need to auto-auth users between an ASP.NET website and WordPress. The idea is once you're logged into the ASP.NET website and if you browse the WP pages your logged in automagically and vice versa.

In ASP.NET I can auth users against WP database but that's all I can think of, so the question is.

-How to enable this by-directional authentication scheme?

-Zubair

A: 

There are two different server side scripts and it is hard to create by-directional authentication. Since WP uses cookies, you might try to authenticate users against cookies. creating a mechanism that check if there is valid WP cookies in users machine and then read from cookies to authenticate users.

Mohamed  2009-09-14 11:12:07
+1  A: 

I had a similar problem, where I had an ASP.net application (third party) and a PHP application (built in-house). I have modified the ASP.net application with just a few lines of code, so that it worked like this:

  1. User logs to the ASP.net application
  2. The ASP.net application sets a session cookie (this is automatic)
  3. Modification: the ASP.net adds a row to the database with the session ID (which is in the cookie) and the username
  4. The PHP application reads the ASP.net session cookie and gets the session ID
  5. The PHP application searches the DB for the session ID and if it is found, it automatically associates the session with the username found

I also added an expiry time for the sessions, to minimize impersonation possibilies...

Palantir  2009-09-14 12:02:08
This seems doable specially since both .NET and WP are hosted under the same domain so I presume cookie sharing is easier.Since I got no experience in PHP I need to know- how to read ASP.NET session cookies in PHP (sample)?- I saw that WP sets an auth-cookie at login something like '$ABC$XYZ$ABCDEFGHIJKL..', how can ASP.NET read it to pre-auth the same user?
Zubair Ahmed  2009-09-15 05:34:41
Here is the overview about cookies. You will also need to figure out the current username and add it to a db table, but it is not a difficult task. http://www.php.net/manual/en/features.cookies.php(PS: if you like my answer, please vote it up, or mark it as accepted)
Palantir  2009-09-15 06:34:32
Thanks for help, I think I've found a solution to auto-auth users from ASP.NET -> WP, for the other way around we've decided to put a link to login.aspx page. I'll share the PHP code soon.
Zubair Ahmed  2009-09-16 06:08:21
A: 

Hi Zubair, would be great if you are still agreeable in sharing the code for the community I have the same problem don't want to reinvent the wheel. regards, sport at onesportevent.com

eagle779  2010-03-02 22:05:10

related questions

IDE suggestions: Eclipse IDE vs. Zend Studio ( confused )
MySQL/Apache Error in PHP MySQL query
Lightweight IDE for Linux
What PHP framework would you choose for a new application and why?
Why is my ternary expression not working?
How can I get at the matches when using preg_replace in PHP?
Mechanisms for tracking DB schema changes
Wordpress theme development offline tools
Using object property as default for method property
How can I get the authenticated user name under Apache using plain HTTP authentication and PHP?
Make XAMPP/Apache serve file outside of htdocs
How do you debug PHP scripts?
PHP Variables passed by value or by reference?
Best way to implement unit testing in PHP
Connect PHP to an AS/400
Best way to access Exchange using PHP?
PHP Session Security
How do I access a remote form in php?
What's the best way to generate a tag cloud from an array? (using h1 through h6 for sizing)
Apache/PHP: error_log per Virtual Host?
How do I track file downloads with apache/PHP
How would you access Object properties from within an object method?
Flat File Databases in PHP
Best way to allow plugins for a PHP application
Latest information on PHP upcoming releases