Cross Site Login
Posted on 2014-12-03
This is what I am trying to pull off. Before I keep wracking my brain on how to do it, I thought I'd ask the experts to see if it was even possible.
I have an application with a login page to authenticate users to use the application. Authentication is determined by session. If you have a valid username and password, a session is created and subsequent pages look for a valid session.
I want to have third parties be able to post a username and password over SSL connection to that login page and have them get validated (create a session). Right now I have it posting the data to the login page using the WebClient class and UploadString method. It posts fine. It creates the session but when the post is complete, the session is removed.
What am I missing here?
I've looked into a "CookieAwareWebClient" but wanted out third parties to have to have as little code as possible on their end and only have to post the username and password to the login page.
Maybe this isn't the best way?