Stack Overflow
Stack Overflow

Questions tagged [single-sign-on]

Single sign-on, a system for sharing authentication credentials between different systems

The term single sign-on covers a wide range of mechanisms for sharing user authentication credentials and rights between different systems. The main purpose of a single sign-on system is to reduce the number of times a user has to enter their login details, usually username and password. and are popular single sign-on protocols.

7557 questions
61
votes
5 answers

Cross Domain Login - How to log a user in automatically when transferred from one domain to another

We offer a number of online services. We are required to develop a system which provides a quick/simple experience for users if they are transferred from one service (on domain1.com) to another service (on domain2.com). Is there a safe and secure…
smashedmercury
  • 901
  • 2
  • 9
  • 8
58
votes
4 answers

AADSTS9002325: Proof Key for Code Exchange is required for cross-origin authorization code redemption

I created a spa application owned by my organization only, but there was a problem when I requested code. How can I resolve it?
user14504804
  • 609
  • 1
  • 5
  • 6
57
votes
7 answers

Service providers with SAML version 2 for SSO accessible to public?

I'm wondering if there are any publicly available SAML version 2 SPs (Service Providers) that can be used to test SSO(Single Sign On) Salesforce and Google apps both have an SSO solution, but how to go get access to them and what is the cost for…
Joseph Weissman
  • 5,697
  • 5
  • 46
  • 75
47
votes
3 answers

How to integrate OAuth with a single page application?

When using OAuth (2) I need a redirection endpoint in my application that the OAuth-offering service can redirect to, once I have been authenticated. How do I handle this in a single page application? Of course, a redirect to the OAuth-offering…
Golo Roden
  • 140,679
  • 96
  • 298
  • 425
45
votes
10 answers

How can I restrict client access to only one group of users in keycloak?

I have a client in keycloak for my awx(ansible tower) webpage. I need only the users from one specific keycloak group to be able to log in through this client. How can I forbid all other users(except from one particular group) from using this…
lukasell
  • 761
  • 1
  • 8
  • 10
42
votes
3 answers

Best way to implement Single-Sign-On with all major providers?

I already did a lot of research on this topic and have implemented a lot of solutions myself. Including OpenID, Facebook Connect (using the old Rest API and the new Graph OAuth 2.0 API), Sign in with twitter (which has been upgraded to fully…
The Surrican
  • 29,118
  • 24
  • 122
  • 168
42
votes
3 answers

SAML simple example for beginners

I am beginner to the SAML v2.0 technology and I get the theory knowledge but I didn't find any examples on Google. Can anybody provide me with a step by step example for simple "SAML for v2.0". Upto now I've gone through the theory part,i.e.., it…
user2779075
  • 421
  • 1
  • 4
  • 4
41
votes
6 answers

How to build LDAP integration for my web app?

My company develops and sells a SaaS application that has hundreds of customers. Some of our customers have asked us to support LDAP integration for authenticating user accounts against their existing systems instead of having to create another…
chief_wampum
  • 539
  • 1
  • 6
  • 11
40
votes
3 answers

How to implement SAML SSO

How is SAML SSO typically implemented? I've read this (n.b. obsolete) about using SAML with Google Apps, and the wikipedia entry on SAML. The wikipedia entry talks about responding with forms containing details of the SAMLRequest and SAMLResponse.…
A_M
  • 7,693
  • 6
  • 33
  • 37
40
votes
2 answers

How to add Social login services from Google, Facebook, Yahoo etc. to my website?

I want to add the following buttons to my website for providing users with option to login using more services like Google, Facebook etc. Please answer the following questions: How can I add various services like this free of cost? (Please note…
sumit
  • 10,935
  • 24
  • 65
  • 83
39
votes
7 answers

Transparent user session over several sites (single sign-on + single sign-off)

I have several sites in different domains: example.com, example.org, mail.example.com and passport.example.org. All of the sites are having common look-and-feel and should share the same user base. And in such extreme case I still want all the sites…
drdaeman
  • 11,159
  • 7
  • 59
  • 104
36
votes
3 answers

How does SSO (Single Sign On) work

I'm trying to wrap my head around SSO. It's my understanding that SSO allows you to login once and get access to multiple apps (if you have rights). So, I log into App A. I establish a token. How does that token become available to App B so I do…
Tom Schreck
  • 5,177
  • 12
  • 68
  • 122
36
votes
1 answer

Custom Claim Handling Failed In Single Sign On

I am using the WSO2 Identity Server for Single Sign-On Implementations. In my demo applications, I am trying to get Custom claim attributes of authenticated Users from my own JDBC Database. I followed this blog of Pushpalanka. This worked fine for…
Tilakraj Jayswal
  • 471
  • 4
  • 10
36
votes
1 answer

Stackoverflow's use of localstorage for Authorization seems unsafe. Is this correct else how do we strengthen it?

I have been working on a Authentication and authorization module similar to how stackexchange is in place. Now I am sure they use a certain model of oAuth or a token generation server that authorizes uses to their various sites. I tried a little…
Shouvik
  • 11,350
  • 16
  • 58
  • 89
36
votes
5 answers

Automatic cookie single sign on on multiple domains - like google

I don't understand how google achieve the following mechanism of single sign on: I login in gmail for example (I suppose this creates a cookie withmy authorization) I open a new tab and direct type the url of "youtube" Then I enter youtube logged…
user1518048
  • 451
  • 2
  • 5
  • 4
1
2
3
99 100