ASP.NET Single Sign On 既問題

所有回覆

• 

  

  0

  登入以投票

  Hi Chi,

   

  The Single Sign On and Membership architectures in ASP.NET 2.0 is perfectly meet your requirement. The key is that you have to make the machineKey attributes of two web apps be the same, then users can just login once and access two web apps.

   

  These articles can help:

  • http://aspalliance.com/1545_Understanding_Single_SignOn_in_ASPNET_20.all
  • http://odetocode.com/Articles/427.aspx
  • http://odetocode.com/Articles/428.aspx

  Regards,

  Colt

   

  2008年5月26日 上午 02:09
• 

  

  0

  登入以投票

  HI Colt
  
  Thanks for your information, do you know if it will work on a web application which are on 2 different web server?
  
  I probably will try it out tomorrow.
  
  Thanks a lot
  

  2008年5月26日 下午 02:06
• 

  

  0

  登入以投票

  Sure. You can enable Single Sign On across multiple web apps and servers, it's common in web farm scenario and the key is to use the same machineKey.

   

  Regards,

  Colt

  2008年5月27日 上午 01:30
• 

  

  0

  登入以投票

  Hi Colt
  
  Sorry I am too dumb, I am not quite understand how to do the following part.
  
  from that article
  http://aspalliance.com/1545_Understanding_Single_SignOn_in_ASPNET_20.all
  
  #################
  Now you have to set some configuration in this web site. First you have to change loginUrl of your <forms> section, which will be used to redirect an anonymous user to "Login.aspx" web page. But this time it will redirect users to "Login.aspx" page in Aspalliance1 web site.
  
  Listing 5: Setting authentication element in web.config
  
  <authentication mode="Forms">
  <forms loginUrl="http://localhost/Aspalliance1/login.aspx" name=".ASPXAUTH"/>
  </authentication>
  ###################
  
  
  If I changed the loginUrl to another web site, I guess when the session time out and the user click on any link on "Aspalliance2 web site" it would redirect them to "Aspalliance1's login page. Is there any way I could get around it? So when the session timeout it just redirect back to Aspalliance1?
  
  Thanks very much for your help.

  2008年5月27日 上午 08:20
• 

  

  0

  登入以投票

  Hi Chi,
  

   

  ChiYau 寫信:

  So when the session timeout it just redirect back to Aspalliance1?

   

  Yes, anonymous users will be redirected back to Aspalliance1's Login.aspx page.

  2008年5月27日 下午 02:14
• 

  

  0

  登入以投票

  Hi Colt,
  
  Thanks for your information
  
  Is there any way, I could get around it? like to detect if it just a timeout, it will redirect back to the normal Login page? Otherwise redirect to another application's login page?
  
  Another question, I am wondering it there any way I could obtain the SESSION information as well?
  so I could pass the session between 2 applications? I tried it, and it does not seem to do it automatically
  
  Many thanks
  

  2008年5月27日 下午 03:07
• 

  

  0

  登入以投票

  Hi Chi,
  
  It is hard to say which solution is the best because it depends on the business scenario.
  For your case, you may create a generic login page in app1 or other central location.
  
  For the sharing of session info, you can take a look at SQL Session State management in ASP.NET, where you can store session information in DB and share session info across apps. FYI: http://blogs.msdn.com/toddca/archive/2007/01/25/sharing-asp-net-session-state-across-applications.aspx
  
  Regards,
  Colt
  

  2008年5月27日 下午 04:24
• 

  

  0

  登入以投票

  Hi Colt
  
  Thanks for your information, I think it will build a generic login page for my solution.
  
  Thanks a lot.
  
  Chi
  

  2008年5月28日 上午 10:57