Re: [WebDNA] Authentication across domains

This WebDNA talk-list message is from

2009


It keeps the original formatting.
numero = 103544
interpreted = N
texte = Passing a user via an expiring link is possible. This method would be subject to hijacking though. Basically, one could keep trying to access the second site using fake expiring links until successful. Therefor you would want a sufficiently large random space to make serious brute force a requirement (do not use serial numbers for example) and use another technique like IP blocking with a few unsuccessful attempts. Bill On Fri, Sep 4, 2009 at 1:33 PM, Patrick Junkroski wrote: > > Hi, All - > > I have a situation that I can't find addressed in the archive. > > I have a client with two domains. Domain A has a domain-specific > username/password database that I use to set cookies for access. Domain B= is > authenticated by the realm (WebDNA group username and password). The clie= nt > would like it if his users could log in at Domain A and then have access = to > Domain B without logging in again; just a link that would carry them thro= ugh > to the other domain, already authenticated. > > Rather than duplicating the user DB and/or writing cookie code for Domain= B, > is there a way to give the people who have already logged in to Domain A > access to Domain B? =A0For instance, if I set a master name and password = in > the WebDNA group for Domain B, can I give users a link from Domain A that > sets the username and password in the MIME header, or through a TCPConnec= t > script of some kind? > > Thanks! > > ----- > Patrick Junkroski > --------------------------------------------------------- > This message is sent to you because you are subscribed to > the mailing list . > To unsubscribe, E-mail to: > archives: http://mail.webdna.us/list/talk@webdna.us > old archives: http://dev.webdna.us/TalkListArchive/ > Bug Reporting: http://forum.webdna.us/eucabb.html?page=3Dtopics&category= =3D288 > Associated Messages, from the most recent to the oldest:

    
  1. Re: [WebDNA] Authentication across domains ("Terry Wilson" 2009)
  2. Re: [WebDNA] Authentication across domains (Govinda 2009)
  3. Re: [WebDNA] Authentication across domains (Tom Duke 2009)
  4. Re: [WebDNA] Authentication across domains (Terry Wilson 2009)
  5. Re: [WebDNA] Authentication across domains (William DeVaul 2009)
  6. Re: [WebDNA] Authentication across domains (Bob Minor 2009)
  7. [WebDNA] Authentication across domains (Patrick Junkroski 2009)
Passing a user via an expiring link is possible. This method would be subject to hijacking though. Basically, one could keep trying to access the second site using fake expiring links until successful. Therefor you would want a sufficiently large random space to make serious brute force a requirement (do not use serial numbers for example) and use another technique like IP blocking with a few unsuccessful attempts. Bill On Fri, Sep 4, 2009 at 1:33 PM, Patrick Junkroski wrote: > > Hi, All - > > I have a situation that I can't find addressed in the archive. > > I have a client with two domains. Domain A has a domain-specific > username/password database that I use to set cookies for access. Domain B= is > authenticated by the realm (WebDNA group username and password). The clie= nt > would like it if his users could log in at Domain A and then have access = to > Domain B without logging in again; just a link that would carry them thro= ugh > to the other domain, already authenticated. > > Rather than duplicating the user DB and/or writing cookie code for Domain= B, > is there a way to give the people who have already logged in to Domain A > access to Domain B? =A0For instance, if I set a master name and password = in > the WebDNA group for Domain B, can I give users a link from Domain A that > sets the username and password in the MIME header, or through a TCPConnec= t > script of some kind? > > Thanks! > > ----- > Patrick Junkroski > --------------------------------------------------------- > This message is sent to you because you are subscribed to > the mailing list . > To unsubscribe, E-mail to: > archives: http://mail.webdna.us/list/talk@webdna.us > old archives: http://dev.webdna.us/TalkListArchive/ > Bug Reporting: http://forum.webdna.us/eucabb.html?page=3Dtopics&category= =3D288 > William DeVaul

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Help! WebCat2 bug (1997) [AppendFile] problem (WebCat2b13 Mac .acgi) (1997) different show next (1997) ignore this test (1999) [WebDNA] help with writefile (2012) multiple search commands (1997) [addlineitems] (1997) RE: Multiple Stores and WebCatalog Prefs (1997) [OT] Who's got a cool link (2002) Help with Shipping Costs (1997) Verisigns SDK (pay flo pro) (2002) Add message to Order (1997) Sort Order on a page search (1997) Merry Christmas (1999) Fufillment e-mail? (1998) Setting up shop (1997) ANother SHOWIF problem (1997) Getting store builder store name (2005) A note for NT4 users (1998) purchase plugin (1996)