0

I have integrated DotenetOpenAuth to login using google account.
Its working perfect. Can i achieve this with it ?
Once user logged in site1.com if user browse to site2.com the user get automatically logged in.

Rizwan Mumtaz
  • 3,875
  • 2
  • 30
  • 31

1 Answers1

0

DotNetOpenAuth includes a Samples directory. There are OpenIdWebRingSsoProvider and OpenIdWebRingSsoRelyingParty projects which, I believe, do exactly what you want to achieve. Though, you have to implement your own central SSO provider.

Dmytro Shevchenko
  • 33,431
  • 6
  • 51
  • 67
  • can you please elaborate `central SSO provider` – Rizwan Mumtaz Apr 13 '12 at 11:19
  • 1
    Have you tried looking into example projects? Well, my point is that for site2 to **know for sure** that a user is logged in to site1, I believe you have to implement some authentication providing party. I think you cannot just ask Google from site2 - "is this user logged in to site1?". That would be insecure. So when a user visits site2, it should redirect a user to site1's SSO provider which is similar to the one in the example project. Then SSO provider would check if the user is indeed who he claims to be and if he is logged in. On success, it will redirect the user back to site1. – Dmytro Shevchenko Apr 13 '12 at 11:24
  • does `DotenetOpenAuth` provides both `authentication` and `authorization` ? – Rizwan Mumtaz Apr 13 '12 at 13:18
  • If the answer helped you, mark it as accepted. Otherwise, consider asking more questions in the comments. – Dmytro Shevchenko Apr 13 '12 at 22:38