c# - Cross-domain authentication ASP.net MVC -

-

i have 2 different web application built asp.net mvc. 2 application may not running in same server nor in same domain.

i if user login in 1 of them, automatically should login in other. same should work logout.

which think best solution? know example code?

thanks!

--- edited more info ---

use case scenario:

the user has web application a opened on tab, , @ point of app there link redirects user web application b. if logged in on a, show him full page, , if not, redirect him login form.

why need it:

applications a , b built. apparently, way of accessing b clicking on link located in a, shown if have logged. problem if know url of page of b (are long , complex, still) can write on browser , access b, means security problem.

i assume cannot communicate between applications , b using shared store. (this allow shared session implementation).

the more industry standard way (openid connect) of doing of other answers have hinted at. try , give more details on right track.

both application , b should relay authentication process trusted 3rd party (which hosted in withe a, b or different application altogether) - let's call c

when user arrives @ either or b (no matter b has weird complicated urls, can bookmark those) request should contain authorization token. if doesn't, not authenticated , redirected c , presented login mechanism - user/pass form.

after successful login, redirected a/b (depending on came from) complete ever doing authentication token. now, having authentication token present authenticated.

if authenticated , redirected b, redirect should contain token well, b know how trust token.

now, if opens opens new tab, b not see token, , redirected c, redirected (she authenticated, remember?) b token, , good.

what described common flow using openid connect, , if using .net, suggest using identityserver thinktecture hard work , "c".

another option, pay such "c" hosted saas application - check out auth0


Comments

Post a Comment

Popular posts from this blog

qt - Using float or double for own QML classes -

-
i've created components , helper methods using c++ , qt used in qml gui. of methods calculate gui elements (size, transformations, scene graph items creation). target arm 32 bit using opengl / eglfs render output. opengl using float , qml using real (defined double ). what should use in c++ do not lose precision? if use qreal ( double ) shouldn't lose precision. if git grep float in qtbase.git , can find out bit more: dist/changes-5.2.0-**************************************************************************** dist/changes-5.2.0-* important behavior changes * dist/changes-5.2.0-**************************************************************************** dist/changes-5.2.0- dist/changes-5.2.0- - qt compiled qreal typedef'ed double on dist/changes-5.2.0: platforms. qreal float on arm chipsets before. guarantees more dist/changes-5.2.0- consistent behavior between platforms qt supports, binary dist/chan...
Read more

Create Outlook appointment via C# .Net -

-
i need create outlook appointment using microsoft.office.interop.outlook , while can work locally on own workstation , works if run web application via server's browser, not work when connect server externally. hence, think might permission issue. i changed application pool identity " localsystem " don't access denied error. unfortunately, doesn't work. the app behaves if appointment created, appointment doesn't appear in outlook. here include file on top of aspx.cs page using outlook = microsoft.office.interop.outlook; here code using pop appointment. outlook.application apptapp = new outlook.application(); outlook.appointmentitem appt = apptapp.createitem(outlook.olitemtype.olappointmentitem) outlook.appointmentitem; appt.subject = txtfirstname.text + " " + txtlastname.text; appt.body = txtcomment.text; appt.alldayevent = false; appt.start = datetime.parse(txtreminderdate.text + " 8:00 am"); appt.end = datetime.p...
Read more

ios - Swift Array Resetting Itself -

-
i have 2 arrays: pointhistory , datehistory . have nstimer , , when timer runs out, action called. in action appending int pointhistory , , current date string datehistory . here timer action: func timeraction() { let steppervalue = int(stepper.value) employee.numberofpoints = steppervalue networking.saveemployee(employee, completion: { (error) -> void in if error != nil { let alert = uialertcontroller(title: "error", message: "there error updating \(self.employee.name)'s points", preferredstyle: .alert) let alertaction = uialertaction(title: "ok", style: .cancel, handler: nil) alert.addaction(alertaction) self.presentviewcontroller(alert, animated: true, completion: nil) } }) var dateformatter = nsdateformatter() dateformatter.dateformat = "mm-dd-yyyy" dateformatter.timezone = nstimezone.localtimezone() var date = nsdate() var ...
Read more