Design and implementation of a single sign-on (SSO) component

1 Introduction

1.1 Writing Purpose

A detailed description of the design idea and implementation of the single sign-on component (SSO) is the basic document for future maintenance and expansion of the component. The intended reader is a system designer, system developer, and system maintenance person to implement a single sign-on (SSO) system.

A detailed description of the design idea and implementation of the single sign-on component (SSO) is the basic document for future maintenance and expansion of the component. The intended reader is a system designer, system developer, and system maintenance person to implement a single sign-on (SSO) system.

1.2 Background

Description

Name of the software system to be developed; Jillzhang SSO component

The task of this project is Jillzhang, developers for Jillzhang, user integration needs platform for the development and design staff.

1.3 Definition

SSO is the abbreviation for single Sign, which is used primarily for user consolidation.

Certification Center: The Certification center is the user registration, member site management, user login, authentication login information, save login information, issued a login authentication center site.

Member sites: Member sites are compliance with the Certification center rules, access to the certification center of the unified user site.

Registration site: If you want to become a member site, you must first in the Certification Center site registration, registration, Certification Center will save the registration site configuration information, and the configuration information to the registration site. The registration site also needs to keep these configuration information for later use when interacting with the certification center.

Federated users: Users who are registered in the Certification center who can be shared by all member sites.

Logon request: Refers to the member site issued to the certification center with the site configuration of the user login request information.

Log out Request: The request that only the user sends to the authentication center requests to exit the login.

Logon request verification: Refers to the authentication center according to the stored site information to the member site login request information to verify the source and authenticity.

Logout Request verification: Refers to the authentication center in accepting requests from the member site, the request to the source and authenticity of the verification

Login reply: Refers to the authentication center to the authenticated login request to make the reply information. The reply contains the user's logon information.

Online federated users: refers to the number of federated users online in the member site.

Online federated user list: Refers to the list information of online federated users in the member site.

Login Site list: is maintained by the Certification center of the user's login site information, when the user log off, will traverse this list, log out individually.

1.4 reference materials

The design and implementation of this component refer to the following systems and books

Http://www.cnblogs.com/David-weihw/archive/2007/01/25/630621.html

The principle and technology of digital signature technology