使用php實現單點登入執行個體詳解

來源:互聯網
上載者:User

標籤:use   location   dev   dma   bsp   ssi   ace   dsp   redirect   

1.首先準備兩個虛擬網域名稱

127.0.0.1  www.openpoor.com127.0.0.1  www.myspace.com

2.在openpoor的根目錄下建立以下檔案

index.php檔案

<?php  session_start();  ?>  <!DOCTYPE html>  <html>  <head>  <meta charset="UTF-8"/>  <title>sync login</title>  </head>  <body>  <?php if(empty($_SESSION[‘username‘])):?>  hello,遊客;請先<a href="login.php">登入</a><a href="http://www.myspace.com/index.php">進入空間</a>  <?php else: ?>  hello,<?php echo $_SESSION[‘username‘]; ?>;<a href="http://www.myspace.com/index.php">進入空間</a>  <?php endif; ?>    <a href="http://www.openpoor.com/index.php">home</a>  </body>  </html>  

login.php檔案

<?php  session_start();  if(!empty($_POST[‘username‘])){    require ‘../Des.php‘;    $_SESSION[‘username‘] = $_POST[‘username‘];    $redirect = ‘http://www.openpoor.com/index.php‘;    header(‘Location:http://www.openpoor.com/sync.php?redirect=‘.urlencode($redirect).‘&code=‘.Des::encrypt($_POST[‘username‘],‘openpoor‘));exit;  }  ?>  <!DOCTYPE html>  <html>  <head>  <meta charset="UTF-8"/>  <title>sync login</title>  </head>  <body>  <form action="" method="post">    <input type="text" name="username" placeholder="使用者名稱"/>    <input type="text" name="password" placeholder="密碼"/>    <input type="submit" value="登入"/>  </form>  </body>  </html> 

sync.php檔案

<?php  $redirect = empty($_GET[‘redirect‘]) ? ‘www.openpoor.com‘ : $_GET[‘redirect‘];  if(empty($_GET[‘code‘])){      header(‘Loaction:http://‘.urldecode($redirect));    exit;  }  $apps = array(    ‘www.myspace.com/slogin.php‘  );  ?>  <!DOCTYPE html>  <html>  <head>  <meta charset="UTF-8"/>  <?php foreach($apps as $v): ?>  <script type="text/javascript" src="http://<?php echo $v.‘?code=‘.$_GET[‘code‘] ?>"></script>  <?php endforeach; ?>  <title>passport</title>  </head>  <body>  <script type="text/javascript">  window.onload=function(){    location.replace(‘<?php echo $redirect; ?>‘);  }  </script>  </body>  </html>  

3.在myspace的根目錄下建立如下檔案

slogin檔案 完成session的設定

<?php  session_start();  header(‘Content-Type:text/javascript; charset=utf-8‘);  if(!empty($_GET[‘code‘])){    require ‘../Des.php‘;    $username = Des::decrypt($_GET[‘code‘],‘openpoor‘);    if(!empty($username)){      header(‘P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"‘);      $_SESSION[‘username‘] = $username;    }  }  ?>  

index.php

<?php  session_start();  if(!empty($_SESSION[‘username‘]))  {      echo "歡迎來到".$_SESSION[‘username‘]."的空間";  }else{      echo "請先登入";  }  ?>  

4.Des.php的檔案內容如下

<?php  /**  *@see Yii CSecurityManager;  */  class Des{    public static function encrypt($data,$key){        $module=mcrypt_module_open(‘des‘,‘‘, MCRYPT_MODE_CBC,‘‘);        $key=substr(md5($key),0,mcrypt_enc_get_key_size($module));        srand();        $iv=mcrypt_create_iv(mcrypt_enc_get_iv_size($module), MCRYPT_RAND);        mcrypt_generic_init($module,$key,$iv);        $encrypted=$iv.mcrypt_generic($module,$data);        mcrypt_generic_deinit($module);        mcrypt_module_close($module);        return md5($data).‘_‘.base64_encode($encrypted);    }    public static function decrypt($data,$key){            $_data = explode(‘_‘,$data,2);        if(count($_data)<2){      return false;        }        $data = base64_decode($_data[1]);              $module=mcrypt_module_open(‘des‘,‘‘, MCRYPT_MODE_CBC,‘‘);        $key=substr(md5($key),0,mcrypt_enc_get_key_size($module));        $ivSize=mcrypt_enc_get_iv_size($module);        $iv=substr($data,0,$ivSize);        mcrypt_generic_init($module,$key,$iv);        $decrypted=mdecrypt_generic($module,substr($data,$ivSize,strlen($data)));        mcrypt_generic_deinit($module);        mcrypt_module_close($module);        $decrypted = rtrim($decrypted,"\0");               if($_data[0]!=md5($decrypted)){      return false;        }        return $decrypted;    }  }  ?>  

當在openpoor登入後將session資訊傳到其他網域名稱下的檔案下進行處理,以script標籤包含的形式進行運行。


5.此時訪問www.openpoor.com和www.myspace.com都是未登入狀態

 

 

登入後兩個網域名稱下都是登入狀態

 

 

到此我們實現了一個簡單的單點登入。

https://mp.weixin.qq.com/s/4h_SA1TUR7hJWO1MSS2jtg

使用php實現單點登入執行個體詳解

相關文章

聯繫我們

該頁面正文內容均來源於網絡整理,並不代表阿里雲官方的觀點,該頁面所提到的產品和服務也與阿里云無關,如果該頁面內容對您造成了困擾,歡迎寫郵件給我們,收到郵件我們將在5個工作日內處理。

如果您發現本社區中有涉嫌抄襲的內容,歡迎發送郵件至: info-contact@alibabacloud.com 進行舉報並提供相關證據,工作人員會在 5 個工作天內聯絡您,一經查實,本站將立刻刪除涉嫌侵權內容。

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.