How can I solve the SSO problem in PHP ??? Single sign-on, such as www.aaa.com and www.bbb.com. to achieve aaa login, the bbb website can also log on to the website to view a lot of information over the past two days. Basically, the user verification center is used to set up ticket, I implemented it. through the P3P cross-site consultation on the PHP SSO (single sign-on) solution ???
Single sign-on, such as www.aaa.com and www.bbb.com. after aaa logon, the bbb website must also be logged on.
I checked a lot of information on the Internet over the past two days.
Basically, the user verification center is used to set up ticket. I implemented the cross-site COOKIE transfer through P3P. but how can I verify the validity of this cookie? Php sso single sign-on
------ Solution --------------------
When you log on to www.aaa.com, set a token to cookie in the verification center and save the token.
Access the verification center with a token when entering www.bbb.com, and compare it with the saved token
------ Solution --------------------
You can try iframe for cross-origin communication. This seems to be the solution now!
Http://www.alloyteam.com/2012/08/lightweight-solution-for-an-iframe-cross-domain-communication/
------ Solution --------------------
Haha, to score ..
------ Solution --------------------
Reference:
How can I encrypt tokens in cookies? Is this encryption irreversible? Just compare with the verification center?
You can use a private key to create a token.
