>> It looks like the visitor is redirected to the SSO server,
>> which does authentication and then redirects the user
>> back, probably with some identification URL variable.
Would this not mean that it was the SSO server that was authenticated to
use the external website and not the client?
Am I getting mixed up in the Oracle definition of an External App, i.e.
that an external app is one that you have actually partnered with and
you know there authentication mechanism?
>> Just use the system with a recording proxy and see for
>> yourself.
Only seen a presentation... have asked for access to a demo but they are
being a bit slow about it
Will be first thing to do on the list when we get access.
>>>> If the SSO Server is forcing the client to login... how do they do
it
>>>> transparently? And securely?
> Ask Oracle.
Oooh, we have searched the Oracle site for documentation on this and are
having trouble finding anything solid on it.
Oracle seem to be a bit cagey about this (having to ask questions about
this through someone else so it is a bit on the slow side)
>>>You might want to take a look at http://a-select.surfnet.nl/
Thank you... currently digesting now....
As far as I can see at the moment, all apps need to use A-Select API
though...
The Oracle version seems to promise that they can do it with any web app
with a HTML form...
I just cannot see the mechanism for this at all... [ see caveat about my
understanding of the Oracle definition of an 'External App' above ]
>From my understanding of it at the moment, If I had to code for it right
now, to allow a user this functionality:
- User enters portal
- User enters external app username, password and form location into
local admin interface
.... at some other time ....
- Clicks on external app link
- Portal makes up a form with the username and password
- _javascript_ submits the form to the external application log on
mechanism
- Client is authenticated onto external application
Which seems a complete abomination (crap in other words)..... Need to do
a lot more digging about this methinks.... :-\
--
-dc [ cf5, ora8.1.7, iis5 ]
[Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
