Home > Developer > PHP

PHP SSO Single sign-on implementation method _php tips

Source: Internet
Author: User
Tags setcookie
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

The example in this article describes the SSO single Sign-on implementation method for PHP. Share to everyone for your reference. The specific analysis is as follows:

Here are a few details:
1, click the login to jump to the SSO login page and with the current application of the callback address
2, after the successful login to generate cookies and pass the cookie to the callback address
3, callback address to receive the SSO cookie and set up under the current domain and then jump back to apply 1 to complete the login
4, again in the application needs to login to embed an IFRAME for real-time detection of login status, the code is as follows:
index.php Application Page:

Copy Code code as follows:
<?php
Header (' content-type:text/html; Charset=utf-8 ');
$sso _address = ' http://XXXX.com/sso/login.php '; The domain name where you have SSO
$callback _address = ' http://'. $_server[' Http_host ']
. Str_replace (' index.php ', ', ', $_server[' script_name ')]
.' Callback.php '; Callback address for callback settings cookie

if (isset ($_cookie[' sign ')) {
Exit ("Welcome to {$_cookie[' sign ']} <a href=" Login.php?logout "> Exit </a>");
}else{
Echo ' You have not logged in <a href= '. $sso _address. ' Callback= '. $callback _address. ' " > Point this login </a> ';
}
?>
<iframe src= "<?php echo $sso _address >?callback=<?php echo $callback _address?>" frameborder= "0" width= "0" height= "0" ></iframe>

login.php SSO Login Page:
Copy Code code as follows:
<?php
Header (' content-type:text/html; Charset=utf-8 ');
if (Isset ($_get[' logout ')) {
Setcookie (' sign ', ', ',-300);
unset ($_get[' logout '));
Header (' location:index.php ');
}

if (isset ($_post[' username ')) && isset ($_post[' password ')) {
Setcookie (' sign ', $_post[' username '],0, ');
Header ("Location:". $_post[' callback '). "? sign={$_post[' username ']};
}

if (Emptyempty ($_cookie[' sign ')) {
?>

<form method= "POST" >
<p> User name: <input type= "text" name= "username"/></p>
<p> Password: <input type= "password" name= "password"/></p>
<input type= "hidden" name= "callback" value= "<?php Echo $_get[' callback '";?> "/>"
<input type= "Submit" value= "Login"/>
</form>


<?php
}else{
$query = Http_build_query ($_cookie);
echo "System detects that you have logged on to {$_cookie[' sign ']} <a href= ' {$_get[' callback ']}? {$query} "> Authorization </a> <a href="? Logout "> Exit </a>";
}
?>

The callback.php callback page is used to set Cross-domain cookies:
Copy Code code as follows:
<?php
Header (' content-type:text/html; Charset=utf-8 ');
if (Emptyempty ($_get)) {
Exit (' You are not logged in ');
}else{
foreach ($_get as $key => $val) {
Setcookie ($key, $val, 0, ");
}
Header ("location:index.php");
}
?>

Connect.php is used to detect the login status of the page, embedded in the page of the IFRAME:
Copy Code code as follows:
<?php
Header (' content-type:text/html; Charset=utf-8 ');
if (isset ($_cookie[' sign ')) {
$callback = UrlDecode ($_get[' callback '); unset ($_get[' callback ']);
$query = Http_build_query ($_cookie);
$callback = $callback. "? {$query} ";
}else{
Exit
}
?>

I hope this article will help you with your PHP program design.

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
saml based single sign on sso php single sign on active directory single sign on java adfs single sign on ade single sign on sailpoint single sign on single sign on software

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More