Comments on: Opensocial with SSO for corporate users http://theappslab.com/2008/05/30/opensocial-with-sso-for-corporate-users/ Driving Innovation Sat, 20 Mar 2010 05:41:10 -0800 http://wordpress.org/?v=2.9.2 hourly 1 By: Anthony Lai http://theappslab.com/2008/05/30/opensocial-with-sso-for-corporate-users/comment-page-1/#comment-4818 Anthony Lai Thu, 05 Jun 2008 04:03:58 +0000 http://oracleappslab.com/?p=857#comment-4818 The secure token being generated by Connect contains the user credentials for which service providers can authenticate and verify the user identity. The secure token being generated by Connect contains the user credentials for which service providers can authenticate and verify the user identity.

]]> By: Anthony Lai http://theappslab.com/2008/05/30/opensocial-with-sso-for-corporate-users/comment-page-1/#comment-4816 Anthony Lai Thu, 05 Jun 2008 03:22:21 +0000 http://oracleappslab.com/?p=857#comment-4816 Hi Gopi,<br>Nope. SAML is the right thing to do for authentication between external and internal domains. <br>For the case above, everything is still under firewall, and we are leveraging single-sign on to allow different internal service providers to communicate to each other without having the user to authenticate to each service.<br>Thanks.<br>Sincerely,<br>Anthony Hi Gopi,
Nope. SAML is the right thing to do for authentication between external and internal domains.
For the case above, everything is still under firewall, and we are leveraging single-sign on to allow different internal service providers to communicate to each other without having the user to authenticate to each service.
Thanks.
Sincerely,
Anthony

]]> By: Dongwei http://theappslab.com/2008/05/30/opensocial-with-sso-for-corporate-users/comment-page-1/#comment-4817 Dongwei Wed, 04 Jun 2008 17:22:16 +0000 http://oracleappslab.com/?p=857#comment-4817 Hi Anthony, I like this solution too! Easy to implement, high security. But I doubt if it is technically feasible that "Connect acts as a proxy and forward the request along with the user credentials to the backend server, and the user is already authenticated. " What do you mean by "user credentials" here? is it SSO token? My knowledge on Oracle SSO is limited. I do not know whether Connect can fetch this and forward to another application. If it is possible, this solution is very cool! Hi Anthony, I like this solution too! Easy to implement, high security. But I doubt if it is technically feasible that “Connect acts as a proxy and forward the request along with the user credentials to the backend server, and the user is already authenticated. ” What do you mean by “user credentials” here? is it SSO token? My knowledge on Oracle SSO is limited. I do not know whether Connect can fetch this and forward to another application. If it is possible, this solution is very cool!

]]> By: gpadakandla http://theappslab.com/2008/05/30/opensocial-with-sso-for-corporate-users/comment-page-1/#comment-4815 gpadakandla Sun, 01 Jun 2008 21:49:38 +0000 http://oracleappslab.com/?p=857#comment-4815 Hi Anthony,<br><br>Good article. <br><br>In some my customer implementations we used Enterprise SSO solution like Oblix for internal apps authentication and then SAML for external (SaaS/externally hosted) apps to authenticate with the internal identity store. Is the integration pattern that you explained in this blog is similar to this pattern?<br><br>Regards,<br>Gopi Padakandla<br>Blog : <a href="http://www.enterprise20link.com/">http://www.enterprise20link.com/</a> Hi Anthony,

Good article.

In some my customer implementations we used Enterprise SSO solution like Oblix for internal apps authentication and then SAML for external (SaaS/externally hosted) apps to authenticate with the internal identity store. Is the integration pattern that you explained in this blog is similar to this pattern?

Regards,
Gopi Padakandla
Blog : http://www.enterprise20link.com/

]]>