SSO single sign-on PHP implementation method (Laravel framework), ssolaravel_PHP tutorial

Source: Internet
Author: User
Tags php web development
SSO single sign-on PHP implementation method (Laravel framework), ssolaravel. SSO single sign-on PHP implementation method (Laravel framework), ssolaravelLaravel is a simple and elegant PHP Web Development Framework (PHPWebFramework ). It allows you to implement PHP (Laravel framework) and ssolaravel from the messy SSO single sign-on generation like noodles.

Laravel is a simple and elegant PHP Web development Framework ). It can free you from the messy code like a noodle; it can help you build a perfect web APP, and each line of code can be concise and expressive.

Simply put, I don't know whether I understand sso or not.

Assume that the three sites a.baidu.com B .baidu.com c.baidu.com

A.baidu.com.

B and c are used as clients (subsystems ).

B and c jump to a when they need to log on, and contain the source parameter to indicate the link to jump after login.

Site a is a common login method (user password verification). after the verification is successful, perform some processing. You need to generate a ticket. how can you create a ticket. And then stored in the Cache. If you have any questions, we will summarize them later. After successful login, you can directly jump to \ (url is enough.

 " php private function getTicketUrl(\)source){\(ticket = md5(time()+key); Cache::put(\)ticket, $user, 120);$url = $source . '?ticket=' . $ticket;return $url;}

Assume that station a has taken ticket to station B (B .baidu.com? Ticket = xxxxxxxxxxxxxxxx ")

Site B makes a global filter, accepts the ticket, and then requests site a to verify whether ticket is generated by site.

The B-site filter App \ Http \ Middleware \ CasAuthenticate code. here, you can determine whether ticket exists and send the request to site a for verification. If the user logs on, the user UID is obtained for login.

public function handle($request, Closure $next){$ticket = $request->input('ticket');if ($ticket) {$result = json_decode('http://a.baidu.com' . '/auth/check-ticket?ticket=' . $ticket), true);if ($result['state'] == "SUCCESS") {$request->session()->flush();Auth::loginUsingId($result['result']['uid']);return redirect(redirect()->getUrlGenerator()->current());}}return $next($request);} 

The logic is complete, but there are several questions.

1. I have no idea whether this is true or not. I wrote it based on the principle.

2. assume that site B is now redirected to Site c. because Site B is active frequently, sessions are always there, and the cache time of site a is likely to have expired. at this time, the site B is redirected to Site c, station c jumps to station a to determine the login, and the result shows that the login has expired. Therefore, this is a problem. We do not consider this problem because our business module has poor relevance and will not jump randomly. But this is indeed a problem for me. I have no idea.

For the PHP implementation method (Laravel framework) of SSO single sign-on, I would like to introduce you so much and hope to help you!

Articles you may be interested in:
  • . Net-based single sign-on (SSO) implementation solution
  • Php sso single sign-on implementation method
  • Asp.net simple method for implementing single sign-on (SSO)

Laravel (Laravel Framework) and ssolaravel Laravel are a simple and elegant PHP Web Development Framework (PHP Web Framework ). It can make you look at the messy form of noodles...

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.