Hi, all:
Using cosign proxy cookie, user can be automatically authenticated to
secondary services (
http://webapps.itcs.umich.edu/cosign/index.php/Using_Proxy_Cookies).
I now have three services that are integrated in this sequence: serviceA ->
serviceB - > serviceC. I have questions as for how to pass the proxy
cookies.
Here are two proposed workflows:
# 1: ===============
1) User authenticate with serviceA , which will bring down a proxy cookie
for serviceB
2) Make a request to serviceB, attaching the serviceB proxy cookie
3) Authentication is successful to the serviceB, the serviceB server will
pull its own set of proxy cookies including one for serviceC
4) serviceB makes a request to serviceC, attaching the serviceC proxy cookie
# 2: ===============
1) User authenticate with serviceA, which will bring down a proxy cookie
for serviceB and serviceC
2) Make a request to serviceB, attaching the serviceB proxy cookie and the
serviceC proxy cookie
3) Authentication is successful to the serviceB server
4) serviceB makes a request to serviceC, using the serviceC proxy cookie
that was originally sent from serviceA
Now that I have "#2" workflow implemented, however in step 3) serviceB
cannot pull down its own set of proxy cookies (not sure why this would be,
maybe the proxy cookie process does not kick off when one authenticate
using a proxy cookie, which would shut down chaining. And the subsequent
step 4) failed authenticating user with serviceC using the serviceC proxy
cookie.
My questions are:
1. Between #1 and #2, which is the recommended approach? Or is #2 approach
feasible at all?
2. Is it possible that upon user authentication as in step 1), cosign
server pass serviceB proxy cookie to serviceA server, AND also pass
serviceC proxy cookie to serviceB server? serviceB server can later use the
serviceB proxy cookie to locate serviceC proxy cookie file, and then finish
by authenticate with serviceC.
Suggestions?
Thanks,
- Zhen
------------------------------------------------------------------------------
Sponsored by Intel(R) XDK
Develop, test and display web and hybrid apps with a single code base.
Download it for free now!
http://pubads.g.doubleclick.net/gampad/clk?id=111408631&iu=/4140/ostg.clktrk
_______________________________________________
Cosign-discuss mailing list
Cosign-discuss@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/cosign-discuss
