SSO between CF & ASP.Net

I am trying to implement a single sign on between a coldfusion site and asp.net site. The authentication part is done so that the user has to sign in only once across the 2 sites but I am having difficulty trying to manage the timeouts between the 2 sites. When the asp.net site is active I want the CF site also to be active . .and when the cold fusion site timeouts the asp.net site also has to timeout.  Is there any way to achieve this without resorting to third party software?
CashmgmtAsked:
Who is Participating?
 
Scott BennettConnect With a Mentor Manager TechnologyCommented:
I imagine that during your single sign on process there would be some sort of authentication token, that perhaps get saved in a cookie, or at least included with each?

I would maintain state by setting up a table in a shared database that tracks the last page view for their sessions (based on their authentication token or whatever you are passing between the sites to set up the session) regardless of what site they are on. And it would also hold whatever session information you need to make sure you can maintain the individual session on the different servers. then on both sides they would check to see when the last page view was and either time them out or log them in based on the situation and whatever time restrictions you have on the sessions.

the concept is in essence the same as using Coldfusion Client variable scope with a database for the client variable storage in a load balanced/multiple CF server environment (in fact if you had the time and inclination to build an an asp object that could interact with the cf client variable database storage that would be a really cool way to do it)
0
 
Scott BennettManager TechnologyCommented:
Are these sites on the same domain name or the same server? if they are on separate servers, do they servers have a common database they share?
0
 
CashmgmtAuthor Commented:
They are on different servers. But They share a common database.
0
 
Scott BennettManager TechnologyCommented:
first sentance should end with "or at least included with each transfer between the servers?"
0
 
CashmgmtAuthor Commented:
The solution solved the SSO problem.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.