Your SlideShare is downloading. ×
0
SSO	  To	  Go	     A	  ramble	  along	  the	  pathways	  of	   Single	  Sign	  On	  modules:	  increasing	  security	  and...
Is	  SSO	  about?	  High-­‐tech	  security?	                Generic	  enterprise	  image	  
Usability	                      AAracFng	                                   new	  users	                      SSO	        ...
Usability	  and	  Drupal.org	  api.drupal.org	     drupal.org	     groups.drupal.org	  
Bakery:	  a	  shared	  cookie	  soluFon	         example.com	                             foo.example.com	  POST	         ...
Bakery:	  a	  shared	  cookie	  soluFon	     example.com	                           foo.example.com	                      ...
Bakery:	  a	  shared	  cookie	  soluFon	                       Responds	  with	     example.com	     a/c	  details	     fo...
Bakery	  is	  good	  for:	  BeAer	  usability	  with:	   MulFple	  Drupal	  sites	   Same	  domain	   Simple	  (no)	  u...
SSO	  and	  Security	        Clichéd	  security	  icon	  here	  
"ConvenFonal"	  SSO	  modules	       Use	  an	  independent	  idenFty	  backend	       Can	  handle	  more	  complex	  u...
Crowd:	  delegated	  authenFcaFon	    Check	  credenFals	    -­‐	  username	                            Crowd	      ID	  m...
Security	  best	  pracFce	           SSO	  can	  help	  you	              manage	                      and	               ...
Users:	  GoAa	  catch	  em	  all!	                Copyrighted	  image	                  cant	  go	  here.	  
CollecFng	  users:	  making	  signup	  easy	                        facebook	  
OpenID	  and	  user	  profiling	  OpenID	  s-­‐reg	  supports:	    Drupal	  core	  supports:	   Nickname	                 ...
OpenID,	  TwiAer,	  FBconnect	     Can	  aAract	  users	  by:	      Simplifying	  user-­‐signup	      Sharing	  profiling...
Summary	   SSO	  for	  usability:	    Share	  credenFals	  across	  sub-­‐domains.	   SSO	  for	  security:	    Manage	 ...
Upcoming SlideShare
Loading in...5
×

SSO To go

997

Published on

0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
997
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
6
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Transcript of "SSO To go"

  1. 1. SSO  To  Go   A  ramble  along  the  pathways  of   Single  Sign  On  modules:  increasing  security  and  simplifying  user  sign-­‐up.   Marcus  Deglos   @manarth   hAp://deglos.com/  
  2. 2. Is  SSO  about?  High-­‐tech  security?   Generic  enterprise  image  
  3. 3. Usability   AAracFng   new  users   SSO   and   IdenFty   Management   Security  
  4. 4. Usability  and  Drupal.org  api.drupal.org   drupal.org   groups.drupal.org  
  5. 5. Bakery:  a  shared  cookie  soluFon   example.com   foo.example.com  POST   SET  COOKIE  -­‐  username   Chocolate  chip  -­‐  password  
  6. 6. Bakery:  a  shared  cookie  soluFon   example.com   foo.example.com   Request  a/c   HTTP  request   COOKIE   Chocolate  chip  
  7. 7. Bakery:  a  shared  cookie  soluFon   Responds  with   example.com   a/c  details   foo.example.com   Request  a/c   HTTP  request   COOKIE   Logged  in   Chocolate  chip  
  8. 8. Bakery  is  good  for:  BeAer  usability  with:   MulFple  Drupal  sites   Same  domain   Simple  (no)  user  profiles  
  9. 9. SSO  and  Security   Clichéd  security  icon  here  
  10. 10. "ConvenFonal"  SSO  modules    Use  an  independent  idenFty  backend    Can  handle  more  complex  user  profiles    Usually  provide  role-­‐integraFon   MicrosoW   Atlassian  AcFve  Directory   Crowd   LDAP  
  11. 11. Crowd:  delegated  authenFcaFon   Check  credenFals   -­‐  username   Crowd   ID  mgr:   -­‐  password   server   LDAP/ AD/???   example.com  POST  -­‐  username   Logged  in  -­‐  password  
  12. 12. Security  best  pracFce   SSO  can  help  you   manage   and   review   your   admin   accounts  
  13. 13. Users:  GoAa  catch  em  all!   Copyrighted  image   cant  go  here.  
  14. 14. CollecFng  users:  making  signup  easy   facebook  
  15. 15. OpenID  and  user  profiling  OpenID  s-­‐reg  supports:   Drupal  core  supports:   Nickname    Nickname   Email    Email   Full  name   Date  of  birth   Gender   Postcode   Add  with   Country   hook_openid   Language   Timezone  
  16. 16. OpenID,  TwiAer,  FBconnect   Can  aAract  users  by:    Simplifying  user-­‐signup    Sharing  profiling   informaFon  
  17. 17. Summary   SSO  for  usability:   Share  credenFals  across  sub-­‐domains.   SSO  for  security:   Manage  your  roles  and  users  with  a  dedicated   IdenFty  Management  pla_orm.   SSO  for  a7rac8ng  users:   Make  it  easy  for  visitors  to  become  members.  
  1. A particular slide catching your eye?

    Clipping is a handy way to collect important slides you want to go back to later.

×