473,416 Members | 1,806 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

home > topics > asp.net > questions > using a shared session

Join Bytes to post your question to a community of 473,416 software developers and data experts.

using a shared session

Hi,

We have 3 different web applications on three different websites (and
domains). Now we want to make it possible for users to login in each of
these applications and can navigate to other applications without
authenticating. So generally we need to have a shared session across
applications (a single sign-on).

Whenever a user logins in each application a session identifier is created
and is saved in the cookie for that session.

1. Is there any chance to create cookies for other applications
(websites) at the same time (login time in one of the apps)? So when user
navigates to other sites, other server can read the session information from
cookie?

2. Is there any other approach that we can use to have single sign-on
capability through our sites?

Any advice is appreciated.

Thanks

Masoud


Nov 19 '05 #1
3 1508
Hi masoud,

As you're talking about multiple apps, you're definitely NOT talking about
Session. What you're describing falls more accurately into the realm of
"messaging." You need to send a message from one app to the other to
indicate that the user is logged into the first app, and who the user is
logged in as. You may create a new Session for the second app after you have
received this information, but you can not share Sessions across apps.

In the realm of messaging, you have several alternatives. One is to pass
data via QueryString, but that isn't secure. An alternative is to use a
database, into which the first app puts the data, and the second app reads
it. The first app could post a form to the second, and pass the data in that
way. Of course, unless the data is encrypted, it is not much more secure
than using a Query String. Another alternative is to use a Web Service to
pass the data. For example, you could create a Web Service Method on app 2
that takes several parameters of data about a user, and registers that user
somehow with the app. App 1 would make a Web Service call to the Method,
passing in the user data, and then redirect to the appropriate page in app
2. You would have to use encryption here as well.

You could also use Windows Messaging Services, but that is queued, and you
need to be sure that the data has arrived by the time you redirect.

--
HTH,

Kevin Spencer
Microsoft MVP
..Net Developer
Neither a follower nor a lender be.
"masoud bayan" <ma**********@hotmail.com> wrote in message
news:uX**************@TK2MSFTNGP12.phx.gbl...
Hi,

We have 3 different web applications on three different websites (and
domains). Now we want to make it possible for users to login in each of
these applications and can navigate to other applications without
authenticating. So generally we need to have a shared session across
applications (a single sign-on).

Whenever a user logins in each application a session identifier is created
and is saved in the cookie for that session.

1. Is there any chance to create cookies for other applications
(websites) at the same time (login time in one of the apps)? So when user
navigates to other sites, other server can read the session information
from
cookie?

2. Is there any other approach that we can use to have single sign-on
capability through our sites?

Any advice is appreciated.

Thanks

Masoud



Nov 19 '05 #2
you will need to do a ticket system. you can link because a cookie can not
be shared between domains, you will have to pass the ticket to site. this
means you can link between sites without requiring a new login, but if the
users hit the site directly, they will be prompted for a login.

you can use a common webservice (like ms passport) to handle the comon login
verfication and ticket.

-- bruce (sqlwork.com)

"masoud bayan" <ma**********@hotmail.com> wrote in message
news:uX**************@TK2MSFTNGP12.phx.gbl...
| Hi,
|
|
|
| We have 3 different web applications on three different websites (and
| domains). Now we want to make it possible for users to login in each of
| these applications and can navigate to other applications without
| authenticating. So generally we need to have a shared session across
| applications (a single sign-on).
|
| Whenever a user logins in each application a session identifier is created
| and is saved in the cookie for that session.
|
| 1. Is there any chance to create cookies for other applications
| (websites) at the same time (login time in one of the apps)? So when user
| navigates to other sites, other server can read the session information
from
| cookie?
|
| 2. Is there any other approach that we can use to have single sign-on
| capability through our sites?
|
|
|
| Any advice is appreciated.
|
|
|
| Thanks
|
| Masoud
|
|
|
|
|
|
|
|
Nov 19 '05 #3
Thank you.

Masoud

"masoud bayan" <ma**********@hotmail.com> wrote in message
news:uX**************@TK2MSFTNGP12.phx.gbl...
Hi,

We have 3 different web applications on three different websites (and
domains). Now we want to make it possible for users to login in each of
these applications and can navigate to other applications without
authenticating. So generally we need to have a shared session across
applications (a single sign-on).

Whenever a user logins in each application a session identifier is created
and is saved in the cookie for that session.

1. Is there any chance to create cookies for other applications
(websites) at the same time (login time in one of the apps)? So when user
navigates to other sites, other server can read the session information from cookie?

2. Is there any other approach that we can use to have single sign-on
capability through our sites?

Any advice is appreciated.

Thanks

Masoud



Nov 19 '05 #4
New Post

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

1
Class public shared Variables
by: Qingdong Z. | last post by:
Posted in asp.net newsgroup, no answer. Hope some experts can help me here 1. Does class shared variable share same feathers as ASP.NET application variable? 2. If it is, it may work better...
C# / C Sharp
1
Shared variables in support library?
by: Fredrik Melin | last post by:
Hi, I have a support library with all functionallity I need to access my business application on the web. The problem is that Connection object, User object and some other objects are Shared...
ASP.NET
2
Handling shared classes in multiple sessions
by: Don | last post by:
I'm asking this for a friend of mine, so forgive me if I'm getting some of the terminology wrong (I don't have any experience with ASP.NET). I've got an ASP application that has some classes that...
ASP.NET
10
BUG: Response.Redirect causes premature session expiration when using cookieless sessions (.NET 1.1.4322)
by: Anthony Williams | last post by:
Hi gang, This one looks like a bug :o( As you may or may not know, setting session management in web.config to use cookieless sessions causes the ASP.NET runtime to munge a session ID into...
ASP.NET
3
Problem with Session State being shared between users!
by: Philip Tepedino | last post by:
I'm having an odd problem. My website's session state is getting shared between users! This problem only happens when a user tries to access the site from inside our corporate LAN. The user,...
ASP.NET
10
Web User Control and using session, request and response
by: George G. | last post by:
Hi there, I am busy writing a new asp.net application and I am reusing some of my existing asp functions and methods in a user control. I need access to session, request and response in some of...
ASP.NET
2
Session variables inside shared functions
by: Ibrahim. | last post by:
Hello, My question is simple. If Session variables were to be assigned a value inside a shared function, does the session data visible to other sessions (Other users). I know the variables...
ASP.NET
3
Page.FindControl non-Shared member
by: tshad | last post by:
I have a .ascx file that I converted to a class. But I am getting the following error: error BC30469: Reference to a non-shared member requires an object reference. The error is for the...
ASP.NET
3
Confusion about shared vs. public vs. ?
by: Jeff | last post by:
....still new to vb.net and vs 2005 web applications. I remain confused about the "shared" variable/table designation and the difference between "public" etc. I wish to place an entire table from...
Visual Basic .NET
0
Migrating Website to Cloud - Emmanuel Katto
by: emmanuelkatto | last post by:
Hi All, I am Emmanuel katto from Uganda. I want to ask what challenges you've faced while migrating a website to cloud. Please let me know. Thanks! Emmanuel
General
0
BarryA
Navigating the Data Structures and Algorithms (DSA)
by: BarryA | last post by:
What are the essential steps and strategies outlined in the Data Structures and Algorithms (DSA) roadmap for aspiring data scientists? How can individuals effectively utilize this roadmap to progress...
Algorithms / Advanced Math
1
Looking to do Android software development, any suggestions? Is flutter better?
by: nemocccc | last post by:
hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?
General
1
Is that possible of reading the .csv file in column wise and the column have different lengths ?
by: Sonnysonu | last post by:
This is the data of csv file 1 2 3 1 2 3 1 2 3 1 2 3 2 3 2 3 3 the lengths should be different i have to store the data by column-wise with in the specific length. suppose the i have to...
C / C++
0
How to build RAID in BIOS?
by: Hystou | last post by:
There are some requirements for setting up RAID: 1. The motherboard and BIOS support RAID configuration. 2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...
Computer Hardware
0
marktang
What is ONU?
by: marktang | last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However,...
General
0
Changing the language in Windows 10
by: Hystou | last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can...
Windows Server
0
agi2029
AI Job Threat for Devs
by: agi2029 | last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing,...
Career Advice
0
Couldn’t get equations in html when convert word .docx file to html file in C#.
by: conductexam | last post by:
I have .net C# application in which I am extracting data from word file and save it in database particularly. To store word all data as it is I am converting the whole word file firstly in HTML and...
C# / C Sharp

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.

BYTES.COM © 2024
About Bytes
Terms Of Use
Privacy Policy
Sitemap
Advertise on Bytes:
Post a Job
Sponsored Posts
Platinum & Gold Sponsors
Hire Now!