From owner-freebsd-chat@FreeBSD.ORG Sat Feb 5 17:59:32 2005 Return-Path: Delivered-To: freebsd-chat@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D25DA16A4CE for ; Sat, 5 Feb 2005 17:59:32 +0000 (GMT) Received: from pd2mo3so.prod.shaw.ca (shawidc-mo1.cg.shawcable.net [24.71.223.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id 92A6143D2D for ; Sat, 5 Feb 2005 17:59:32 +0000 (GMT) (envelope-from flowers@users.sourceforge.net) Received: from pd2mr5so.prod.shaw.ca (pd2mr5so-qfe3.prod.shaw.ca [10.0.141.8]) by l-daemon (Sun ONE Messaging Server 6.0 HotFix 1.01 (built Mar 15 2004)) with ESMTP id <0IBG00IBA9Z8FS10@l-daemon> for freebsd-chat@freebsd.org; Sat, 05 Feb 2005 10:59:32 -0700 (MST) Received: from pn2ml7so.prod.shaw.ca ([10.0.121.151]) by pd2mr5so.prod.shaw.ca (Sun ONE Messaging Server 6.0 HotFix 1.01 (built Mar 15 2004)) with ESMTP id <0IBG005739Z83Q30@pd2mr5so.prod.shaw.ca> for freebsd-chat@freebsd.org; Sat, 05 Feb 2005 10:59:32 -0700 (MST) Received: from procyon.nekulturny.org (S0106000c41b2b9a3.cg.shawcable.net [68.144.45.143]) by l-daemon (iPlanet Messaging Server 5.2 HotFix 1.18 (built Jul 28 2003)) with ESMTP id <0IBG00K0T9Z76P@l-daemon> for freebsd-chat@freebsd.org; Sat, 05 Feb 2005 10:59:32 -0700 (MST) Date: Sat, 05 Feb 2005 10:59:31 -0700 From: Danny MacMillan In-reply-to: <41FF5990.14802.4B422A7D@localhost> To: Dan Langille Message-id: <20050205175931.GA680@procyon.nekulturny.org> MIME-version: 1.0 Content-type: text/plain; charset=us-ascii Content-disposition: inline References: <41F65A6A.23011.281B9A2A@localhost> <41FF5990.14802.4B422A7D@localhost> User-Agent: Mutt/1.5.6i cc: Ulf Zimmermann cc: freebsd-chat@freebsd.org Subject: Re: authenticating users between websites X-BeenThere: freebsd-chat@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Non technical items related to the community List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 05 Feb 2005 17:59:32 -0000 On Tue, Feb 01, 2005 at 10:27:28AM -0500, Dan Langille wrote: > On 25 Jan 2005 at 11:43, Ulf Zimmermann wrote: > > On Tue, Jan 25, 2005 at 02:40:42PM -0500, Dan Langille wrote: > > > I'm getting this request often and I'm not sure how to solve it. A > > > client will have two websites and wants users to be able to browse > > > freely between the websites after having logged into the primary > > > website. > > > > > > For example, I browse to a.example.org, log in, and continue > > > browsing. Then I browse over to b.example.org.... How can I be > > > automagically be authenticated on that other website? > > > > > > cheers > > > > If both sites are part of the same, you can set a cookie based on the > > domain. That is how sites usual do it. If you are concerned about > > someone modifying the cookie local on the client side, keep also some > > information about the cookie in a database which can be accessed by > > both sites. > > Unfortunately, I've just been informed: the two websites won't even > be in the same domain. This complicates matters. :) There are Single Sign-On solutions like SiteMinder and WebSeal. There are probably open source solutions, too. -- Danny