Two single-point login designs and two single-point Login
Single Sign-On Design
SSO stands for Single Sign On. SSO is used in multiple application systems. Users only need to log on once to access all mutually trusted application systems. It includes a mechanism for ing the main logon to other applications for the login of the same user. It is one of the most popular solutions for enterprise business integration.
Nowadays, many enterprise-level applications basically implement the single-point login function, which improves the user experience. You do not need to log on multiple times. Well, let's talk about it. Today I mainly introduce two single-point login designs.
First: the simplest single-point login design, such:
: When directly accessing various business systems, the system will judge whether the session exists during page loading. If the session does not exist, the system will pass (HttpContext. current. response. redirect) the URL is redirected to the sso for single-point login. ashx page.
Sso for single-point login. when the ashx page receives a request, it obtains the user information of the single point login session. If the session information is lost, it directly jumps to the single point login logon page, otherwise, the session login information is obtained and jumped back to the original business system page through the url.
The business system page receives the url Login User ID, obtains permissions based on the user ID, assigns values to the session, and continues to access various pages of the operating business system.
Type 2: single-point login design,
: After logging on to the system by clicking "Single login", a ticket will be generated and stored in the client cookie.
When accessing the business system, determine whether the current user session of the Business System is lost. If the current user session is lost, use webService to transmit ticket to the point ticket logon system and try to obtain the login user information.
Access continues
The logon page to jump to the order logon system is not obtained.