Solved

SSO between CF & ASP.Net

Posted on 2010-09-24
5
837 Views
Last Modified: 2013-12-24
I am trying to implement a single sign on between a coldfusion site and asp.net site. The authentication part is done so that the user has to sign in only once across the 2 sites but I am having difficulty trying to manage the timeouts between the 2 sites. When the asp.net site is active I want the CF site also to be active . .and when the cold fusion site timeouts the asp.net site also has to timeout.  Is there any way to achieve this without resorting to third party software?
0
Comment
Question by:Cashmgmt
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 14

Expert Comment

by:Scott Bennett
ID: 33754654
Are these sites on the same domain name or the same server? if they are on separate servers, do they servers have a common database they share?
0
 

Author Comment

by:Cashmgmt
ID: 33757962
They are on different servers. But They share a common database.
0
 
LVL 14

Accepted Solution

by:
Scott Bennett earned 500 total points
ID: 33758097
I imagine that during your single sign on process there would be some sort of authentication token, that perhaps get saved in a cookie, or at least included with each?

I would maintain state by setting up a table in a shared database that tracks the last page view for their sessions (based on their authentication token or whatever you are passing between the sites to set up the session) regardless of what site they are on. And it would also hold whatever session information you need to make sure you can maintain the individual session on the different servers. then on both sides they would check to see when the last page view was and either time them out or log them in based on the situation and whatever time restrictions you have on the sessions.

the concept is in essence the same as using Coldfusion Client variable scope with a database for the client variable storage in a load balanced/multiple CF server environment (in fact if you had the time and inclination to build an an asp object that could interact with the cf client variable database storage that would be a really cool way to do it)
0
 
LVL 14

Expert Comment

by:Scott Bennett
ID: 33758106
first sentance should end with "or at least included with each transfer between the servers?"
0
 

Author Closing Comment

by:Cashmgmt
ID: 33769435
The solution solved the SSO problem.
0

Featured Post

Don't miss ATEN at NAB Show April 24-27!

Visit ATEN at NAB Show to learn how our "Seamlessly Entertaining" solutions deliver fast, precise video streaming without delays for the broadcasting and media environment. ATEN will showcase its 16x16 Modular Matrix Switch (VM1600) and KVM Over IP Solution (KE6900 series).

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This is a guide to setting up a new WHM/cPanel Server to be used for web hosting accounts. It is intended for web hosting company administrators and dedicated server owners. For under $99 per month (considering normal rate of Big Data Cetnters like …
Lease-to-own eliminates the expenditure of hardware replacement and allows you to pay off the server over time. Usually, this is much cheaper than leasing servers. Think of lease-to-own as credit without interest.
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question