eZ Community » Forums » Discussions » Using a SSO in eZ Publish
expandshrink

Wednesday 23 December 2009 11:23:38 am - 7 replies

» Read full tutorial

Introduction

Sometimes, during a web application development, you need to interface with your client's software(s) and/or websites in order to keep a common and coherent session within its applicative environment. To do this, it is often useful to use a special tool : SSO (Single Sign On). This article illustrates one way of integrating an eZ Publish based web application into an existing SSO architecture

Saturday 26 December 2009 8:18:01 pm

I have just publish a little example for sso_handler : bpce_acces. It consists of an SSO Handeler based on client IP.

Sunday 27 December 2009 12:28:39 am

I'm looking forward your article.

OnlyBlue

Tuesday 06 July 2010 10:40:15 am

Hi,

Thanks for this tutorial, I have implemented a SSO and it works fine. But it seems the SSOHandler is called everytime a page is loaded. I am wondering if I am doing something wrong, as I think the call is need only when the current user is Anonymous.

Is there a way to stop the SSOHandler call when a user is already logged in ?

Or should I put this "logic" in the SSOHandler::handleSSOLogin() method?

Thanks for the answer.
Nico O

Tuesday 06 July 2010 12:15:18 pm

Hi Nicolas

SSOHandler will be called every time a page is loaded if your user is not logged in, as SSO is handled in eZUser::instance() method.

Once your user is logged in, it won't be called any more. So maybe you should add some logic in your SSOHandler::handleSSOLogin() in order not to call your login webservice (or other SSO stuffs) if you are not logging in.

Tuesday 06 July 2010 5:26:14 pm

Otoh if you want also SingleSignOff, your code should be called on every page, for both logged-in and anon users. eZ Publish does not currently support that afair, but it is a requirement seldom see in real life...

Wednesday 09 February 2011 6:30:14 pm

Hi Nicolas,

I could learn from this forum that you're successful in implementing SSO. That isn't my case. I would greatly appreciate if you can post me the code you implemented. I used the SPNEGO projet but I'm still unable to get it working as designed for.

Thanking you in advance.

Modified on Wednesday 09 February 2011 6:31:19 pm by Hamadou BABA

Thursday 02 January 2014 4:49:00 pm

Hi, 

I had implement this solution, and it works well but ... blunk.gif Emoticon
When error 404 is catch, handleSSOLogin is call and user is redirect on a login form.
I set 'error' policy for anonymous user.
Someone got an idea ?
Thanks
Pierre 

expandshrink

You must be logged in to post messages in this topic!

36 542 Users on board!

Forums menu

Proudly Developed with from