tags:

views:

486

answers:

1
+1  Q: 

Question on Google Provisioning API and SSO Password change propagation

Hey all, I'm using the Google Apps Provisioning API to synchronize user data with our internal database (MySQL). For every new user created through our site's backend, a corresponding user in created in the GoogApp system. Change is passwords are also synchronized accordingly.

I'm about to implement SSO, so that logins performed on our website automatically makes the user login into the google apps too.

My question is what happens IF the user happens to change his/her password using the Account > Settings in the googapps interface, instead of our own backend? Our system has no way of knowing about the change! Is there a way in Prov API or SSO with which I can turn off the password changing mechanism in googapp engine and let the user do it ONLY through our backend?

Anyone who's used / setup a similar system, please shed some light on it.

Thanks, m^e

+2  A: 

When you have SSO enabled in your Google Apps domain you have to provide a "change password" URL, that way when the users tries to go "Setting"->"Change Password" they will be redirected to your custom URL and make the password change in your backend.

dcifuen  2009-07-09 19:14:18
I discovered the same a couple of days back while fiddling with the GA control panel. What I couldn't figure out is, in all the docs, it says that this enables the password changing for GA WebApps. But does that include the mail service too? Coz that is my primary concern. Thanks for your reply :)
miCRoSCoPiC_eaRthLinG  2009-07-10 11:52:49
You are right, it's only for webapps. For IMAP/POP/API access then you'll need to provide the password stored in Google Apps. You can include, in your change password application, the logic for synchronizing the password with Google Apps through the Provisioning API.
dcifuen  2009-07-21 13:01:40
Thanks. That helped clear a lot of doubts.
miCRoSCoPiC_eaRthLinG  2009-11-11 07:23:07

related questions

What's safe for a C++ plug-in system?
Timezone lookup from latitude longitude
Working with Common/Utility Libraries
Best Screencasting Program For Windows That Has An API
Notification API for windows
Error handling / error logging in C++ for library/app combo
Who provides a WHOIS API?
Spread vs MPI vs zeromq?
How should I build a good (web) API
How do I recover from an unchecked exception?
Protecting API Secret Keys in a Thick Client application
How do I find the 'temp' directory in Linux?
Best practices for development environment and API dev?
How to detect which blog API
Where do I find information about Blog APIs and how to use them?
Javascript Load Order
How do you spawn another process in C?
Google Analytics Access with C#
Parameter Binding: What happens under the hood?
Picasa Plugin
Is there an API that allows you to find out how many sites link to yours?
Is there any kind of non text interface to MySQL?
looking for a GPS with a good API
API Yahoo India Maps
GUI Programming APIs