First, great set of modules. Very easy to setup... took me about 10 mins once I found the tutorial.
Is it possible for a user to log in to the SSO server site and then be allowed to access another site without having to sign in a second time?
What I'd like to try and accomplish is have a user page with a list of sites that user can access (in other words, a list of sites that user "owns"). In this list there would be a link that would log them into that site. Since they have already authenticated with the server I was hoping that there would be some way to avoid having to log in a second time when they clink into one of their sites.
If this feature doesn't already exist, I'd like to suggest it. I'm not much of module developer (yet), but I'd be interested in doing what I can.
Comments
Comment #1
fuzzy76 commentedI am also wondering about this. I can't imagine it would be that hard to implement. But I am wondering if this could be done as an add-on module, or if the maintainers know about any internal workings that might require this to be done inside the module?
Comment #2
branana commentedHi there, this is slightly harder to get working because the SSO setup works on session cookies, and in the scenario where the sso client site is not on the same domain as the sso server at all, it is difficult to set a cookie (also the cookie set from a different domain will get blocked by most security/browser security settings) most of the time.
It might not work very reliably at all. I think we would have to use some kind of authentication token system like OAuth or something to get it to work in the manner you described. I'm going to look into it.
Comment #3
eMuse_be commentedHi branana,
I am also looking for this (and looking into this). I have found some ways. Is it possible to set up a chat meeting ?
Comment #4
jpstrikesback commentedOld school follow...any progress or further thoughts developed on this?
Comment #5
branana commentedSame-subdomain cookie based login is in 1.3. Should be up by the time you read this message.
Comment #6
branana commentedComment #7
jpstrikesback commentedCool! I'm looking for differing domains (oAuth?) but cross subdomain sessions is great as well!
Comment #8
fuzzy76 commentedShouldn't this be marked as completed then? Or perhaps moved to 6.x-1.x, since that version is still missing this functionality.