Reputation: 2045
Keep User logged in across multiple applications on multiple servers
I am building a suite of applications using ASP.NET.
- Each application can be hosted on separate servers.
- All the applications share an integrated database.
- All applications require user authentication before use.
- I want to build the ability to transfer users from one application to another without having to relogin.
Is there a way to recognize that a user is logged in one application and allow quick navigation to another application on a different server?
Currently I am storing the password hashes in the database; but I wouldn't be opposed to other suggestions if they solve the problem.
Upvotes: 1
Views: 628
Answers (1)
Reputation: 11
Here is what I have done in the past.
Each application must share a forms authentication ticket. To do this the forms authentication cookie name must have the same name, the machineKeys must be the same, and the protection mode must be the same.
This works across domains, but does not work across IPs. What I do to get around this is to serialize the ticket info and store it in the database with the session id as the key. If a user is not authenticated the server will look for the session id in the database and rebuild the FA ticket if found.
Upvotes: 1
Related Questions
- Asp Net Identity shared between multiple applications
- Multiple .NET Applications Share Authentication
- how to enable single log in in one application hosted on multiple servers
- How to share same login between multiple websites asp.net
- Multiple ASP.NET web applications with common Login(authentication)
- ASP.NET Membership Database in multiple apps - stay logged in on multiple apps at the same time
- Is there a way to persist authentication from one web app to another, nested web app in ASP.NET?
- Separate ASP.NET Applications, Shared Sessions?
- Shared User Session for Multiple ASP.NET Websites
- Single signon from multiple applications