Home > Others

CAS cross-domain single sign-on principle

Source: Internet
Author: User
Tags cas ticket
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

The same domain name to achieve single sign-on is too simple, because a system and B system domain name is the same, when access a time log in, when Access B, because the same domain name, the browser will take the cookies,cookies in the ticket information, Access B naturally no longer login.

However, if the a system and the B system domain name is different, how the CAS has been in access to a system when the login, in the access to the B system will not have to re-login it. At this time to access the B system, because the domain name is different, the browser does not have the cookies stored with the ticket information Ah, OK at this time the CAS implementation of single sign-on principle is this, please look at the picture:

Note: In cas4.2.7, this cross-domain single sign-on feature requires you to enable the HTTPS protocol, the above figure you need to realize that in the figure of the 9th step, then access to B system, because it is a cross-domain, and is the first access, ticket is empty, and after a series of redirects, plus parameters, you find that the user did nothing However, in the 13th step to access the B system, has been brought with effective ticket, because this series of redirects to the user is transparent, users feel that they did nothing to achieve the B system access.


Transferred from: https://blog.csdn.net/pucao_cug/article/details/70216109

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
ade single sign on adfs single sign on sailpoint single sign on single sign on software verizon single sign on oauth2 single sign on um single sign on

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More