Done Single Sign On (SSO) authentication

Discussion in 'Feature Requests' started by David, Oct 8, 2016.

  1. David

    David Administrator
    Staff Member

    Joined:
    Dec 1, 2015
    Messages:
    779
    Likes Received:
    31
    I suggest a MAC token md5 crypted submitted on http logon page. MAC = md5(
     
  2. David

    David Administrator
    Staff Member

    Joined:
    Dec 1, 2015
    Messages:
    779
    Likes Received:
    31
    Comments
    [​IMG]
    Johan Allard
    LiquidFiles
    Yes, something like this will definitely be implemented. On a practical note, the timestamp probably needs to be minutes (in UTC), like: 201107120039 and we can check 201107120038 and 201107120040 as well to give us a little bit of a time in case there's a lag or times slightly off.

    We can probably have the option of userid and email as well so the query string would be like:

    /sso_login?email=test@example.com&signature=4b0cbd7d07e4d373087b061fc4b9c5a14e32e5d2
    where signature in this case would be made up of:

    SHA1(test@example.com + 201107120039 + <pre-shared key>)

    No ideas on timeframes or anything, but it's definitely bubbling there in the background :)

    July 13, 2011, 07:26
    [​IMG]
    Johan Allard
    LiquidFiles
    This was added in 1.7.

    February 21, 2012, 14:21
     

Share This Page