Forums / Discussions / Using a SSO in eZ Publish

Wednesday 23 December 2009 2:23:38 am - 6 replies

» Read full tutorial

Introduction

Sometimes, during a web application development, you need to interface with your client's software(s) and/or websites in order to keep a common and coherent session within its applicative environment. To do this, it is often useful to use a special tool : SSO (Single Sign On). This article illustrates one way of integrating an eZ Publish based web application into an existing SSO architecture

Author Message

SEBBANE Alexandre

Saturday 26 December 2009 11:18:01 am

I have just publish a little example for sso_handler : bpce_acces. It consists of an SSO Handeler based on client IP.

Paris, France

Jianjun Hu

Saturday 26 December 2009 3:28:39 pm

I'm looking forward your article.

OnlyBlue

☆..·°∴°.☆°°.☆°.
°∴ °☆ .·enjoy star° .·★°∴°
∴°.°★ .·°
  ミ☆°∴°.★☆° ∴·°
°.☆° .·∴° 

Is it a pleasure after all to practice in due time what one has learnt?

Nicolas OTTAVI

Tuesday 06 July 2010 1:40:15 am

Hi,

Thanks for this tutorial, I have implemented a SSO and it works fine. But it seems the SSOHandler is called everytime a page is loaded. I am wondering if I am doing something wrong, as I think the call is need only when the current user is Anonymous.

Is there a way to stop the SSOHandler call when a user is already logged in ?

Or should I put this "logic" in the SSOHandler::handleSSOLogin() method?

Thanks for the answer.
Nico O

Jérôme Vieilledent

Tuesday 06 July 2010 3:15:18 am

Hi Nicolas

SSOHandler will be called every time a page is loaded if your user is not logged in, as SSO is handled in eZUser::instance() method.

Once your user is logged in, it won't be called any more. So maybe you should add some logic in your SSOHandler::handleSSOLogin() in order not to call your login webservice (or other SSO stuffs) if you are not logging in.

Gaetano Giunta

Tuesday 06 July 2010 8:26:14 am

Otoh if you want also SingleSignOff, your code should be called on every page, for both logged-in and anon users. eZ Publish does not currently support that afair, but it is a requirement seldom see in real life...

Principal Consultant International Business
Member of the Community Project Board

Hamadou BABA

Wednesday 09 February 2011 9:30:14 am

Hi Nicolas,

I could learn from this forum that you're successful in implementing SSO. That isn't my case. I would greatly appreciate if you can post me the code you implemented. I used the SPNEGO projet but I'm still unable to get it working as designed for.

Thanking you in advance.

You must be logged in to post messages in this topic!