標籤:use location dev dma bsp ssi ace dsp redirect
1.首先準備兩個虛擬網域名稱
127.0.0.1 www.openpoor.com127.0.0.1 www.myspace.com
2.在openpoor的根目錄下建立以下檔案
index.php檔案
<?php session_start(); ?> <!DOCTYPE html> <html> <head> <meta charset="UTF-8"/> <title>sync login</title> </head> <body> <?php if(empty($_SESSION[‘username‘])):?> hello,遊客;請先<a href="login.php">登入</a><a href="http://www.myspace.com/index.php">進入空間</a> <?php else: ?> hello,<?php echo $_SESSION[‘username‘]; ?>;<a href="http://www.myspace.com/index.php">進入空間</a> <?php endif; ?> <a href="http://www.openpoor.com/index.php">home</a> </body> </html>
login.php檔案
<?php session_start(); if(!empty($_POST[‘username‘])){ require ‘../Des.php‘; $_SESSION[‘username‘] = $_POST[‘username‘]; $redirect = ‘http://www.openpoor.com/index.php‘; header(‘Location:http://www.openpoor.com/sync.php?redirect=‘.urlencode($redirect).‘&code=‘.Des::encrypt($_POST[‘username‘],‘openpoor‘));exit; } ?> <!DOCTYPE html> <html> <head> <meta charset="UTF-8"/> <title>sync login</title> </head> <body> <form action="" method="post"> <input type="text" name="username" placeholder="使用者名稱"/> <input type="text" name="password" placeholder="密碼"/> <input type="submit" value="登入"/> </form> </body> </html>
sync.php檔案
<?php $redirect = empty($_GET[‘redirect‘]) ? ‘www.openpoor.com‘ : $_GET[‘redirect‘]; if(empty($_GET[‘code‘])){ header(‘Loaction:http://‘.urldecode($redirect)); exit; } $apps = array( ‘www.myspace.com/slogin.php‘ ); ?> <!DOCTYPE html> <html> <head> <meta charset="UTF-8"/> <?php foreach($apps as $v): ?> <script type="text/javascript" src="http://<?php echo $v.‘?code=‘.$_GET[‘code‘] ?>"></script> <?php endforeach; ?> <title>passport</title> </head> <body> <script type="text/javascript"> window.onload=function(){ location.replace(‘<?php echo $redirect; ?>‘); } </script> </body> </html>
3.在myspace的根目錄下建立如下檔案
slogin檔案 完成session的設定
<?php session_start(); header(‘Content-Type:text/javascript; charset=utf-8‘); if(!empty($_GET[‘code‘])){ require ‘../Des.php‘; $username = Des::decrypt($_GET[‘code‘],‘openpoor‘); if(!empty($username)){ header(‘P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"‘); $_SESSION[‘username‘] = $username; } } ?>
index.php
<?php session_start(); if(!empty($_SESSION[‘username‘])) { echo "歡迎來到".$_SESSION[‘username‘]."的空間"; }else{ echo "請先登入"; } ?>
4.Des.php的檔案內容如下
<?php /** *@see Yii CSecurityManager; */ class Des{ public static function encrypt($data,$key){ $module=mcrypt_module_open(‘des‘,‘‘, MCRYPT_MODE_CBC,‘‘); $key=substr(md5($key),0,mcrypt_enc_get_key_size($module)); srand(); $iv=mcrypt_create_iv(mcrypt_enc_get_iv_size($module), MCRYPT_RAND); mcrypt_generic_init($module,$key,$iv); $encrypted=$iv.mcrypt_generic($module,$data); mcrypt_generic_deinit($module); mcrypt_module_close($module); return md5($data).‘_‘.base64_encode($encrypted); } public static function decrypt($data,$key){ $_data = explode(‘_‘,$data,2); if(count($_data)<2){ return false; } $data = base64_decode($_data[1]); $module=mcrypt_module_open(‘des‘,‘‘, MCRYPT_MODE_CBC,‘‘); $key=substr(md5($key),0,mcrypt_enc_get_key_size($module)); $ivSize=mcrypt_enc_get_iv_size($module); $iv=substr($data,0,$ivSize); mcrypt_generic_init($module,$key,$iv); $decrypted=mdecrypt_generic($module,substr($data,$ivSize,strlen($data))); mcrypt_generic_deinit($module); mcrypt_module_close($module); $decrypted = rtrim($decrypted,"\0"); if($_data[0]!=md5($decrypted)){ return false; } return $decrypted; } } ?>
當在openpoor登入後將session資訊傳到其他網域名稱下的檔案下進行處理,以script標籤包含的形式進行運行。
5.此時訪問www.openpoor.com和www.myspace.com都是未登入狀態
登入後兩個網域名稱下都是登入狀態
到此我們實現了一個簡單的單點登入。
https://mp.weixin.qq.com/s/4h_SA1TUR7hJWO1MSS2jtg
使用php實現單點登入執行個體詳解