Products

Evoq Content Overview Content Creation Workflow Asset Management Mobile Responsive Personalization Content Analytics SEO Integrations Security Website PerformanceEvoq Engage Overview Community Management  Dashboard  Analytics  Member Profile Gamification Advocate Marketing Community Engagement  Ideas  Answers  Discussions  Groups  Wikis  Events Mobile ReadyDNN Support PackagesEvoq: CMS FeaturesEvoq OnDemandCompare DNN's CMS Products

Solutions

Content Management SystemMulti-Channel PublishingDigital MarketingOnline Community ManagementIntranet Software SolutionOur CustomersPrime

Resources

Test DrivesSchedule A DemoDocumentation CenterWebinarsWhite PapersProduct ManualsRequest PricingData SheetsCase StudiesEvoq Preferred Products Content Management Ecommerce Forms Identity Management and Authentication Site Management Social Themes

Partners

DNN Partners Partner Directory Become a DNN Partner Partner Program Overview  Hosting  Implementation  ISV  Training  Competencies

Community

Participate Ask a Question Forums Community Showcase DNN MVP  Program Overview  Lifetime MVPs  Honorary MVPs Subscribe to DNN Digest Advisory Groups  Awareness Advisory Group  Developer Advisory Group  Partner Advisory Group  Technology Advisory GroupLearn Documentation Wiki Community Blog Video Library Project History Development RoadmapDownload DNN Store Language Packs Manuals Nightly BuildsSecurity Policies Security Center

Blog

About

News Press Releases News Coverage Press KitCareersContact DNN

QA

Ideas Test

New Community Website

Ordinarily, you'd be at the right spot, but we've recently launched a brand new community website... For the community, by the community.

Yay... Take Me to the Community!

Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen
HomeHomeOur CommunityOur CommunityGeneral Discuss...General Discuss...Single Sign-in for parent portals?Single Sign-in for parent portals?
Previous
 
Next
New Post
10/4/2006 7:25 AM
 
Jack Hoelz

www.repfiles.net
Joined: 6/21/2005
Posts: 608

I'm guessing this will work with www.mydomain.com/child and child.mydomain.com and www.childdomain.com correct?

Icthus Technologies

Building Faith on the Internet
 
New Post
10/4/2006 5:34 PM
 
Matthew Christenson

Joined: 12/13/2004
Posts: 5

I am in the process of implementing my own solution to my problem.  My requirements were too advanced for any products available...  i quickly realized just how complicated the whole idea is to implement.

It looks like there are a few solutions out there that will assist with allowing multiple parent portals to share users; but I ended running into two problems that those solutions did not solve:

1)  I want users that are logged into www.domainA.com and then browse to www.domainB.com using the same browser session to not have to log in again.  This is very important for my requirements.  Existing solutions would allow for the same username and password however would not implement cross-domain logons.  This entire project became very large very fast.  Cookies cannot be transfered easily from domain to domain.  I ended up having to come up with a clever solution using iframes, webservices, javascript, and advanced business and data layers to manage this process.  At this point the solution has been bench tested but not production tested.

2)  I realized that my concept had a security flaw in it.  Eventually I want to allow non DotNetNuke applications, or even a completely separate install of DNN on another machine to integrate with the system...  I may or may not trust the people setting up the services that use my service.  I realized that in order to prevent malicious phishing as effectively as possible, as well as prevent untrusted participants on my system from saving passwords they shouldn't have acess too - I would need to redirect users to a single sign-on webpage that always had the same URL.  That way durring registration and logon I can remind users to ALWAYS check to make sure they were giving their username and password to the Trusted SSO service, and not any other websites...   on the backend the SSO service then looks up a unique portaluser password per site; stores that information into an encrypted cookie using iframes and some backend webservices for the webservers to talk to each other - and redirects the user to the site they wnated to log into...

This all turned into a huge product, but was very important for me to solve because the different sites that use my SSO actually compete with each other, and manage their own user rights; so I needed to make sure to protect the user password from the participating sites themselves.  My live SSO site is going to be at www.SkydiveSecure.org; however while i have a mostly working solution on my private servers, I have not updated that URL in a month or two.  I expect to be going live with it before november 1st.

Unfortunatly, the project has become too large a scale for me to be able to effectively "shrink-wrap and distribute" without spending a lot of time in making it user friendly.

Based on all that's involved, I would be really supprised if the DNN core were to implement anything like what I described above anytime in the next two years..  It's actually pretty darn flexible already.  Using the provider model made the DNN part of my work the easiest.

If you're hurting for the functionality that I described above badly enough that you're going to have to write it yourself if you can't find someone to offer you a package; you're welcome to write me at mattchristenson at realskydiving dot com.

If you do pick one of the existing solutions out there, be advised taht a few of them have a problem where user password changes do not get properly propigated from portal to portal..  i forget which ones, but it's a pretty serious issue that you may not even realize is an issue until when you think you're close to done.

good luck.
 
New Post
10/20/2006 11:45 AM
 
Keith Tuomi

www.flyerstarter.com
Joined: 3/7/2006
Posts: 73
I know a lot of people will be happy to know:

I just purchased MPUS Pro 2.0 from Dnn-masters.com, and happily saw that my begging to them has been fulfilled:  there is now a patch on Snowcovered for this module that allows multi-domain SSO.

Yes you heard right, someone has finally done it. :) 

Although there is a little bug on my particular instance that they are helping me work out, I did indeed log in to ChildDomain.com, with a user account from ParentDomain.com.

I will be giving it a full run-through this weekend, but the bright guys at DNN-masters seem to have nailed it.
 
 Page 2 of 2
Previous12 
Previous
 
Next
HomeHomeOur CommunityOur CommunityGeneral Discuss...General Discuss...Single Sign-in for parent portals?Single Sign-in for parent portals?


These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

  1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
  2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
  3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
  4. No Flaming or Trolling.
  5. No Profanity, Racism, or Prejudice.
  6. Site Moderators have the final word on approving / removing a thread or post or comment.
  7. English language posting only, please.
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out