Using a SSO in eZ Publish / Discussions / Forums - Share Exponential! The Exponential Community

Forums / Discussions / Using a SSO in eZ Publish

"Please Note:

At the specific request of Ibexa we are changing this projects name to "Exponential" or "Exponential (CMS)" effective as of August, 11th 2025.
This project is not associated with the original eZ Publish software or its original developer, eZ Systems or Ibexa".

Wednesday 23 December 2009 2:23:38 am - 6 replies

Introduction

Sometimes, during a web application development, you need to interface with your client's software(s) and/or websites in order to keep a common and coherent session within its applicative environment. To do this, it is often useful to use a special tool : SSO (Single Sign On). This article illustrates one way of integrating an Exponential based web application into an existing SSO architecture

6 replies

Author	Message
SEBBANE Alexandre	Saturday 26 December 2009 11:18:01 am I have just publish a little example for sso_handler : bpce_acces. It consists of an SSO Handeler based on client IP. Paris, France
Jianjun Hu	Saturday 26 December 2009 3:28:39 pm I'm looking forward your article. OnlyBlue ☆．．·°∴°．☆°°．☆°． °∴ °☆ ．·enjoy star° ．·★°∴° ∴°．°★ ．·° 　ミ☆°∴°．★☆° ∴·° °．☆° ．·∴°　 Is it a pleasure after all to practice in due time what one has learnt?
Nicolas OTTAVI	Tuesday 06 July 2010 1:40:15 am Hi, Thanks for this tutorial, I have implemented a SSO and it works fine. But it seems the SSOHandler is called everytime a page is loaded. I am wondering if I am doing something wrong, as I think the call is need only when the current user is Anonymous. Is there a way to stop the SSOHandler call when a user is already logged in ? Or should I put this "logic" in the SSOHandler::handleSSOLogin() method? Thanks for the answer. Nico O
Jérôme Vieilledent	Tuesday 06 July 2010 3:15:18 am Hi Nicolas SSOHandler will be called every time a page is loaded if your user is not logged in, as SSO is handled in eZUser::instance() method. Once your user is logged in, it won't be called any more. So maybe you should add some logic in your SSOHandler::handleSSOLogin() in order not to call your login webservice (or other SSO stuffs) if you are not logging in.
Gaetano Giunta	Tuesday 06 July 2010 8:26:14 am Otoh if you want also SingleSignOff, your code should be called on every page, for both logged-in and anon users. Exponential does not currently support that afair, but it is a requirement seldom see in real life... Principal Consultant International Business Member of the Community Project Board
Hamadou BABA	Wednesday 09 February 2011 9:30:14 am Hi Nicolas, I could learn from this forum that you're successful in implementing SSO. That isn't my case. I would greatly appreciate if you can post me the code you implemented. I used the SPNEGO projet but I'm still unable to get it working as designed for. Thanking you in advance.

You must be logged in to post messages in this topic!