tags:

views:

62

answers:

1
Q: 

What's the best practice for single sign on at one web server?

We have some apps written in classic ASP, ASP.NET and PHP. They are all in one same web server. We want to transfer between the apps who is currently log in or none, we do not need to transfer everything in the session object. What is the best way?

We need secure and high performance. Thanks.

A: 

If you are looking at a secure single-sign-on solution, something like Shibboleth will come to mind. It uses Security Assertional Markup Language (SAML) to perform user authentication and attribute exchange. It works independently of the application language and injects environment variables into the app.

sybreon  2009-10-30 01:51:53

related questions

Web framework programming mindset
ASP.NET - asp:xxx Controls versus standard HTML
From Desktop to Web browser considerations
Which PHP Framework will get me to a usable UI the fastest?
Best practice for integrating TDD with web application development?
How to Manage Web Development?
When is a file just a file?
Recommendations for browser add-on tools to help with development
REALLY Simple Website--How Basic Can You Go?
Convince Firefox to send an If-Modified-Since header over HTTPS
What do the getUTC* methods on the date object do?
Planning and Building a mobile enabled site for your main site.
Firebug for IE
Javascript and PHP - Login Script with hidden buttons
Firebug won't display console feeds for some of my sites
Displaying ad content from Respose.WriteFile()/ Response.ContentType
How can I detect if a browser is blocking an popup?
How to Test Web Code?
What PHP framework would you choose for a new application and why?
How do you disable browser Autocomplete on web form field / input tag?
What is Progressive Enhancement?
In HTML, how to word-break on a dash?
The Definitive Guide To Website Authentication
How do you test layout design across multiple browsers/OSs?
How much of the Web build process do you/should you automate?