hi, can somebody explain steps i should follow to implement SSO on php based website. e.g user logs in to www.siteA.com and when he goes to www.siteB.com he should be already logged in. (in my case). how siteB would identify user? does user has to enter openid again? ...
According to RFC 2109, the value of a cookie "is opaque to the user agent and may be anything the origin server chooses to send, possibly in a server-selected printable ASCII encoding." As a consequence of this, different languages/platforms/server send a different cookie value even when the original value is the same. For example, C#/...
I am required to implement SSO between Liferay and a number of PHP-based systems. Database used is MySQL. CAS will authenticate through Liferay user database, as well as through user database from System A and System B. The reason why each system use different user database is because they were developed by different teams, perhaps diff...
Hi, I need to implement a SSO between a custom Asp.Net application and a SharePoint site. The asp .net Application has custom authentication and the sharepoint has windows authentication. I have already read about using forms authentication in both applications but i can not use forms authentication in Sharepoint. Is this possible? Any ...
Hello, We want to implement SSO functionality in our organization, but we're not really sure what our options are, and what the benefits / disadvantages for the different solutions might be. -We have multiple old ASP(Active Server Pages) sites which should use SSO -We have multiple ASP.net web-Applications which should use SSO -We wa...
Hi, I've got the following setup: IE7 on the desktop in a corporate environment, capable of Kerberos/NTLM authentication IIS6 with integrated windows authentication (Kerberos/NTLM) enabled Enfold Proxy (basically, URL-rewriting/proxying) plugin in IIS enabled, proxies to a Python web application (using Paste and WSGI) This setup pro...
Client requires major applications to provide users with “single sign on” authentication feature based on the corporate solution (Active Directory). This means the business application trusts the credentials provided by the browser and does not request user to provide standard login/password pair. The server/browser trust is built on Win...
As I'm sure many companies do/want to do, mine is looking into implementing a single sign on solution across all of its internal web applications. All users of the company have an AD account and thus the authentication will be done through Active Directory. Nevertheless, many users use Unix and many Windows users don't use IE so Integr...
I need to implement a CAS Proxy Granting Ticket System. So I need to understand the system. There is a good doc here, but I have no idea about the proxyCallback I need. Could someone explain me that ? ...
How do I implement Integrated windows authentication using ASP.Net kerberos protocol & LDAP in IIS? ...
I'm trying to use CAS for SSO between Liferay and a PHP webapp. I installed JASIG CAS webapp, created a certificate with keytools and configured Liferay through its administrative GUI (Setting>Authentication>CAS tab) as follows: When I click on "Sign in" in Liferay menu I'm forwarded to the CAS login page (with the "dirty trick" user...
We have a WinForms application that uses SQL server to store its data. To authenticate the application users, we are using SQL Server to do the authentication. The user must have a username/password that exists on the database server to be able to log in. So far so good. Now one of our customers wants us to implement single sign on. T...
How would I go about getting the Windows user credentials from a Swing application? I am working on an internal (corporate) Swing application. Currently the user has to login to the application using a login screen, which then connects to an app server which authenticates the user against the company LDAP server. Since the user has alr...
Hello Friends, We've discussed SSO before. I would like to re-enhance the conversation with defined requirements, taking into consideration recent new developments. In the past week I've been doing market research looking for answers to the following key issues: The project should should be: Requirements SSO solution for web applic...
Dear all, I'm researching about Single Sign On (SSO), using google,yahoo and openID account to login in my site. Some professional can tell me which is method to implement it. API OR LIBRARY to work with it. Thanks Nguyen ...
I've noticed that there is a very dramatic difference in the user experience for sign on with different relying parties. I've implemented a few relying parties myself, so I already have a few ideas, but I'm curious to hear from other people about what worked, what didn't. Empirical evidence (OpenID login stats before/after) would be id...
I have a single sign-on solution, meaning that the user will login to one site and be redirected to another. When I redirect the user I want to pass along a key that can be used to verify the user's authentication status. Most of the examples of single sign-on I read show the login site passing the encrypted key has a query string val...
I have a webpage that I only want a specific group to log into. I work at a college and we use Active Directory accounts and only a certain group can access this php page (on apache server). I know I can restrict access with some PHP code, but I want to accomplish seamless login. Everyone uses IE7 at work (which are configured to pass...
Hi, We are looking into a solution for this problem: We host a ASP.NET web app externally on a dedicated web server which is on its own domain. We have a client who use the web app exclusively, and want SSO using their windows credentials to automatically authenticate into the web application without having to log on. This client has u...
I will launch soo a new iPhone app and want to off-load the forums to my actual FogBugz On Demand account. However, I discover that FOD have no facility to integrate Single sing-on. I use django and have the option to use open-id, but not know if exist a way to make this happend. Obviously, I could hack a simple forums like the one on...