Re: [WebDNA] Authentication across domains
This WebDNA talk-list message is from 2009
It keeps the original formatting.
numero = 103544
interpreted = N
texte = Passing a user via an expiring link is possible.This method would be subject to hijacking though. Basically, onecould keep trying to access the second site using fake expiring linksuntil successful. Therefor you would want a sufficiently large randomspace to make serious brute force a requirement (do not use serialnumbers for example) and use another technique like IP blocking with afew unsuccessful attempts.BillOn Fri, Sep 4, 2009 at 1:33 PM, Patrick Junkroski
wrote:>> Hi, All ->> I have a situation that I can't find addressed in the archive.>> I have a client with two domains. Domain A has a domain-specific> username/password database that I use to set cookies for access. Domain B= is> authenticated by the realm (WebDNA group username and password). The clie=nt> would like it if his users could log in at Domain A and then have access =to> Domain B without logging in again; just a link that would carry them thro=ugh> to the other domain, already authenticated.>> Rather than duplicating the user DB and/or writing cookie code for Domain= B,> is there a way to give the people who have already logged in to Domain A> access to Domain B? =A0For instance, if I set a master name and password =in> the WebDNA group for Domain B, can I give users a link from Domain A that> sets the username and password in the MIME header, or through a TCPConnec=t> script of some kind?>> Thanks!>> -----> Patrick Junkroski> ---------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list .> To unsubscribe, E-mail to: > archives: http://mail.webdna.us/list/talk@webdna.us> old archives: http://dev.webdna.us/TalkListArchive/> Bug Reporting: http://forum.webdna.us/eucabb.html?page=3Dtopics&category==3D288>
Associated Messages, from the most recent to the oldest:
Passing a user via an expiring link is possible.This method would be subject to hijacking though. Basically, onecould keep trying to access the second site using fake expiring linksuntil successful. Therefor you would want a sufficiently large randomspace to make serious brute force a requirement (do not use serialnumbers for example) and use another technique like IP blocking with afew unsuccessful attempts.BillOn Fri, Sep 4, 2009 at 1:33 PM, Patrick Junkroski wrote:>> Hi, All ->> I have a situation that I can't find addressed in the archive.>> I have a client with two domains. Domain A has a domain-specific> username/password database that I use to set cookies for access. Domain B= is> authenticated by the realm (WebDNA group username and password). The clie=nt> would like it if his users could log in at Domain A and then have access =to> Domain B without logging in again; just a link that would carry them thro=ugh> to the other domain, already authenticated.>> Rather than duplicating the user DB and/or writing cookie code for Domain= B,> is there a way to give the people who have already logged in to Domain A> access to Domain B? =A0For instance, if I set a master name and password =in> the WebDNA group for Domain B, can I give users a link from Domain A that> sets the username and password in the MIME header, or through a TCPConnec=t> script of some kind?>> Thanks!>> -----> Patrick Junkroski> ---------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list .> To unsubscribe, E-mail to: > archives: http://mail.webdna.us/list/talk@webdna.us> old archives: http://dev.webdna.us/TalkListArchive/> Bug Reporting: http://forum.webdna.us/eucabb.html?page=3Dtopics&category==3D288>
William DeVaul
DOWNLOAD WEBDNA NOW!
Top Articles:
Talk List
The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...
Related Readings:
Help! WebCat2 bug (1997)
[AppendFile] problem (WebCat2b13 Mac .acgi) (1997)
different show next (1997)
ignore this test (1999)
[WebDNA] help with writefile (2012)
multiple search commands (1997)
[addlineitems] (1997)
RE: Multiple Stores and WebCatalog Prefs (1997)
[OT] Who's got a cool link (2002)
Help with Shipping Costs (1997)
Verisigns SDK (pay flo pro) (2002)
Add message to Order (1997)
Sort Order on a page search (1997)
Merry Christmas (1999)
Fufillment e-mail? (1998)
Setting up shop (1997)
ANother SHOWIF problem (1997)
Getting store builder store name (2005)
A note for NT4 users (1998)
purchase plugin (1996)