durusmail: quixote-users: Single-signon in Quixote
Single-signon in Quixote
2005-02-02
Ksenia Marasanova
2005-02-02
Titus Brown
2005-02-02
Ksenia Marasanova
2005-02-02
Titus Brown
Quixote + SQLObject Sessions (was Single-signon in Quixote)
2005-02-02
Charles Brandt
Re: Quixote + SQLObject Sessions (was Single-signon in Quixote)
2005-02-02
Jorge Luiz Godoy Filho
2005-02-02
Ksenia Marasanova
2005-02-09
Ksenia Marasanova
2005-02-09
Nigel King
2005-02-09
Mario Ruggier
2005-02-02
Dave Warnock
2005-02-02
Ksenia Marasanova
2005-02-02
David Warnock
2005-02-02
Ken Kennedy
2005-02-02
Ksenia Marasanova
2005-02-03
C. Hudley
2005-02-03
Bud P. Bruegger
Single-signon in Quixote
Ksenia Marasanova
2005-02-02
> Basically the user is doing a slightly special login to site B. Instead
> of passing username and password it passes username and the id of the
> site they are currently logged onto. Site B can then call that site to
> check this is true instead of checking the password itself.

If I don't misunderstand it I think it is not very secure... If
someone logs onto Site A, and when hi is still there I use his
username and site_id (which is the same for all) to go to another
site, I am authenticated?


--
Ksenia
reply