Stack Overflow
Stack Overflow

Questions tagged [single-sign-on]

Single sign-on, a system for sharing authentication credentials between different systems

The term single sign-on covers a wide range of mechanisms for sharing user authentication credentials and rights between different systems. The main purpose of a single sign-on system is to reduce the number of times a user has to enter their login details, usually username and password. and are popular single sign-on protocols.

7557 questions
197
votes
5 answers

SSO with CAS or OAuth?

I wonder if I should use the CAS protocol or OAuth + some authentication provider for single sign-on. Example Scenario: A User tries to access a protected resource, but is not authenticated. The application redirects the user to the SSO server. If…
deamon
  • 89,107
  • 111
  • 320
  • 448
164
votes
3 answers

Single sign-on flow using JWT for cross domain authentication

There is a lot of information on the web about using JWT (Json Web Token) for authentication. But I still didn't find a clear explanation of what the flow should be when using JWT tokens for a single sign-on solution in a multiple domains…
electrotype
  • 8,342
  • 11
  • 59
  • 96
122
votes
4 answers

Differences between SP initiated SSO and IDP initiated SSO

Can anyone explain to me what the main differences between SP initiated SSO and IDP initiated SSO are, including which would be the better solution for implementing single sign on in conjunction with ADFS + OpenAM Federation?
pbhle
  • 2,856
  • 13
  • 33
  • 40
113
votes
4 answers

Single Sign On across multiple domains

Our company has multiple domains set up with one website hosted on each of the domains. At this time, each domain has its own authentication which is done via cookies. When someone logged on to one domain needs to access anything from the other,…
Pascal
  • 4,127
  • 8
  • 33
  • 29
94
votes
5 answers

C# ASP.NET Single Sign-On Implementation

I am tasked with implementing single sign-on for our customers as part of our next release. The flow exists as follows: User logs into their school's main portal system using a student id/password provided to him/her by the school. User clicks…
Adam Levitt
  • 10,316
  • 26
  • 84
  • 145
87
votes
7 answers

How to re-authorize the OAuth Application 'Git Credential Manager'

I am part of an organization that uses SSO in Github. I don't have problem to access the repository through the web, it redirects me to SSO login and that's all. The problem started when I logged-in first to my personal repository on GitHub through…
E235
  • 11,560
  • 24
  • 91
  • 141
86
votes
4 answers

What is exactly RelayState parameter used in SSO (Ex. SAML)?

I am trying to understand SSO using SAML. I have come across the RelayState parameter and am very confused exactly why it comes first in SSO to send encoded URLs? What exactly does it mean? Please read the following from the Google Developer…
Oomph Fortuity
  • 5,710
  • 10
  • 44
  • 89
76
votes
4 answers

What are the different NameID format used for?

In SAML metadata file there are several NameID format defined, for…
performanceuser
  • 2,793
  • 5
  • 34
  • 44
74
votes
2 answers

Is it possible to check if an email is confirmed on Facebook?

Update This was reported to Facebook via https://www.facebook.com/whitehat/report/ on Dec 16th 2013 and Facebook responded on Dec 17th that the bug has long since been fixed. I have retested this with my Facebook account (that I still haven't…
nibarius
  • 4,007
  • 2
  • 38
  • 56
70
votes
3 answers

What's the difference between ADFS, WIF, WS Federation, SAML, and STS?

These are numerous technologies and buzzwords used for single sign-on with Microsoft services. Can someone explain ADFS, WIF, WS Federation, SAML, and STS (Security token service), including where and when each is being used.
Tiffany Harry
  • 777
  • 1
  • 8
  • 10
69
votes
3 answers

AdminTokenAction: FATAL ERROR: Cannot obtain Application SSO token

I was trying to install openam 12 war with apache tomcat agent as configured sso.But tried more than fifty times but am getting only error. If I change below property value as amAdmin from webagent,while calling the protected application in tomcat…
sunleo
  • 10,589
  • 35
  • 116
  • 196
69
votes
3 answers

SAML/ADFS node.js implementation guide?

I'd like to preface this by saying that until now, I hadn't even HEARD of SAML, much less developed a SSO strategy involving it. That, combined with the fact that I've barely been doing node for a year makes for a glorious newbie sandwich. …
SpacePope
  • 1,423
  • 1
  • 15
  • 21
64
votes
8 answers

Implementing Single Sign On (SSO) using Django

I would like to use Django for implementing Single Sign On (SSO) for multiple applications that we currently use. How can I implement this using Django?
tomrs
  • 891
  • 2
  • 8
  • 8
63
votes
5 answers

CAS vs. SAML vs. OAuth2

Before you put me down for asking too basic a question without doing any homework, I'd like to say that I have been doing a lot of reading on these topics, but I'm still confused. My needs seem simple enough. At my company, we have a bunch of Ruby…
Anjan
  • 1,613
  • 1
  • 19
  • 25
62
votes
2 answers

Single Sign-On in Microservice Architecture

I'm trying to design a green-field project that will have several services (serving data) and web-applications (serving HTML). I've read about microservices and they look like good fit. The problem I still have is how to implement SSO. I want the…
Ido Ran
  • 10,584
  • 17
  • 80
  • 143
1
2 3
99 100