Using a SSO in eZ Publish / Discussions / Forums - Share Exponential! The Exponential Community

Forums / Discussions / Using a SSO in eZ Publish

Wednesday 23 December 2009 2:23:38 am - 6 replies

Introduction

Sometimes, during a web application development, you need to interface with your client's software(s) and/or websites in order to keep a common and coherent session within its applicative environment. To do this, it is often useful to use a special tool : SSO (Single Sign On). This article illustrates one way of integrating an Exponential based web application into an existing SSO architecture

6 replies

Author	Message
SEBBANE Alexandre	Saturday 26 December 2009 11:18:01 am I have just publish a little example for sso_handler : bpce_acces. It consists of an SSO Handeler based on client IP. Paris, France
Jianjun Hu	Saturday 26 December 2009 3:28:39 pm I'm looking forward your article. OnlyBlue ☆．．·°∴°．☆°°．☆°． °∴ °☆ ．·enjoy star° ．·★°∴° ∴°．°★ ．·° 　ミ☆°∴°．★☆° ∴·° °．☆° ．·∴°　 Is it a pleasure after all to practice in due time what one has learnt?
Nicolas OTTAVI	Tuesday 06 July 2010 1:40:15 am Hi, Thanks for this tutorial, I have implemented a SSO and it works fine. But it seems the SSOHandler is called everytime a page is loaded. I am wondering if I am doing something wrong, as I think the call is need only when the current user is Anonymous. Is there a way to stop the SSOHandler call when a user is already logged in ? Or should I put this "logic" in the SSOHandler::handleSSOLogin() method? Thanks for the answer. Nico O
Jérôme Vieilledent	Tuesday 06 July 2010 3:15:18 am Hi Nicolas SSOHandler will be called every time a page is loaded if your user is not logged in, as SSO is handled in eZUser::instance() method. Once your user is logged in, it won't be called any more. So maybe you should add some logic in your SSOHandler::handleSSOLogin() in order not to call your login webservice (or other SSO stuffs) if you are not logging in.
Gaetano Giunta	Tuesday 06 July 2010 8:26:14 am Otoh if you want also SingleSignOff, your code should be called on every page, for both logged-in and anon users. Exponential does not currently support that afair, but it is a requirement seldom see in real life... Principal Consultant International Business Member of the Community Project Board
Hamadou BABA	Wednesday 09 February 2011 9:30:14 am Hi Nicolas, I could learn from this forum that you're successful in implementing SSO. That isn't my case. I would greatly appreciate if you can post me the code you implemented. I used the SPNEGO projet but I'm still unable to get it working as designed for. Thanking you in advance.

You must be logged in to post messages in this topic!