Reputation: 6101
Cross site authentication
I'm just wondering how cross-site authentication is handled for completely external companies? e.g. My site acts a "portal" onto another completely external site.
Is there a standard way of doing this so the user is not prompted to log in again?
I know with e.g. eBay-> PayPal you have to re-authenticate, but is this the only/most sensible way?
Upvotes: 4
Views: 3618
Answers (2)
Reputation: 41769
It's going to depend on what that other site uses as an authentication method.
Look at SAML (which in essence a way of saying to the other site that they can trust your assertion that this user is who you say he is). OpenID is another system doing much the same thing.
In general, this is federated identity management,
Upvotes: 3
Reputation: 35117
In my opinion the best way to do this is to create a third application which is responsible for authentication and permissions. I've written a blog entry about one such application I've created for my own pet projects.
http://www.netortech.com/Blog/Entry/12/Web-passport-services
Upvotes: 0
Related Questions
- Cross-domain authentication ASP.net MVC
- How to implement auth cross site?
- Authentication Across Sites
- How can I automatically authenticate a different site?
- Cross site HTTP authentication in JQuery
- Authenticating From Another Site
- Cross-site Windows and Forms authentication
- Login on site with other site creadentials in asp.net
- ASP.Net Cross-Site Authentication
- How to authenticate users on one site and pass credentials to other site? ( Windows Authentication, ASP.Net)