Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

php[architect]:
Single Sign On - You’re Probably Doing It Wrong
Aug 15, 2017 @ 18:28:32

The php[architect] site has a new post today sharing an article from their August 2017 issue by author (and member of thePHP.cc) Arne Blankerts: "Single Sign On - You’re Probably Doing It Wrong ".

Requiring users to log in individually to all the websites they need for their work is more than merely annoying: It wastes a lot of time and turns maintaining log-in credentials and permissions into a nightmare for the administrative staff. Let’s see if we can fix that with a single sign-on service.

The article talks about the basics of single sign on and what kind of benefits it brings to the table. They also talk about the single point of failure it introduces and some of the problems that can cause. The article then discusses the choices involved in implementing it: Should it support authentication, authorization or both? Should OAuth be involved? What about SAML? Other alternatives are also offered including JWTs, tokens/callbacks and client side certificates. The article ends with the suggestion that a proxied approach, one that authenticates on the first request but the session is then trusted by other services, is one of the better ways to go (but isn't without its own issues either).

tagged: singlesignon article phparchitect magazine arneblankerts security

Link: https://www.phparch.com/2017/08/single-sign-on-youre-probably-doing-it-wrong/

Project:
HybridAuth - Open Source Social-Sign-On Solution
Aug 18, 2011 @ 16:51:19

On Greepit.com there's a new post spotlighting a single handy library you can use in your PHP application to make authenticating with many of the popular social network providers simple - HybridAuth.

HybridAuth is an open source web-based authentication and authorisation solution that combines the strengths of several major social networks and Identity Providers services into one simple PHP Library. [...] This PHP Library for social services authentication supports many social platforms including Facebook, Twitter, Google, Yahoo, MySpace, LinkedIn, FourSquare, OpenID and many other Identity providers.

The library allows you to connect to the various services' authentication points in a standardized way. Supported providers include:

You can find out more about this library on its SourceForce project page.

tagged: singlesignon hybridauth project library

Link:


Trending Topics: