You basically trust some 3rd party authority to authorize an user for you. All major player (google, microsoft, Facebook, github,...) provide an integration usually done via the OAuth standard.
-
-
-
we do quite a lot SSO integrations (using keycloak/red hat sso) feel free to DM me or contact me via the megamaker slack if you got any questions
Koniec rozmowy
Nowa rozmowa -
-
-
Imagine you want to prove you're old enough to buy alcohol to a shop. The shop could have its own ID scheme, where they verify you're old enough and then issue with ID. Or, like with SSO, they could 'trust' someone much bigger (like the government or Google), to say we've already
-
confirmed who this is, and you can trust that they are who they say they are. With SSO, you get a token from Google or similar, much like you'd get a drivers license as a shop owner.
- Pokaż odpowiedzi
Nowa rozmowa -
-
-
User clicks “login” on your website, gets redirected to the SSO provider, where he then actually logs in, then redirected back to you with some magic POST/GET vars and tokens. in b2b world the most popular sso standard is SAML. Sometimes oAuth.
-
Best answer so far. Thanks Alex!
- Pokaż odpowiedzi
Nowa rozmowa -
-
-
IT departments have to keep track of all the logins for every user in the company for all tools they use. If someone leaves company, IT has to go and deactivate all their accounts. SSO allows IT to manage all accounts from one place, and end users can use one login/password
Dziękujemy. Twitter skorzysta z tych informacji, aby Twoja oś czasu bardziej Ci odpowiadała. CofnijCofnij
-
-
-
To add to the good responses you’ve gotten… you can request data models about your user from SSO as well. Their name, image, address, etc. The provider can respond with it on login and you can have some richer out of the box data for your users. Happy to discuss in detail.
Dziękujemy. Twitter skorzysta z tych informacji, aby Twoja oś czasu bardziej Ci odpowiadała. CofnijCofnij
-
-
-
I have done a lot of this in my time in SaaS. Also note there are good standards around it. Best support is SAML. Check that out if looking to implement. Most widely supported.
Dziękujemy. Twitter skorzysta z tych informacji, aby Twoja oś czasu bardziej Ci odpowiadała. CofnijCofnij
-
-
-
There are 2 parts. Identity Provider: The site or service that validates that the person logging in is an actual person, and is that actual person. (OneLogin, Facebook, Google, ADFS, etc.) Service Provider: The website or app that a person is trying to log in to. 1/2
-
The service provider uses the identity provider to authenticate the person, and trusts the identity provider to authenticate the user. Many service providers use common identity providers. ie. Login via Facebook, Google, etc used across a multitude of sites. 2/2
Koniec rozmowy
Nowa rozmowa -
Wydaje się, że ładowanie zajmuje dużo czasu.
Twitter jest przeciążony lub wystąpił chwilowy problem. Spróbuj ponownie lub sprawdź status Twittera, aby uzyskać więcej informacji.
building