Download - SSO - SIngle Sign On
![Page 1: SSO - SIngle Sign On](https://reader034.vdocuments.mx/reader034/viewer/2022052300/587becaa1a28ab765a8b60bf/html5/thumbnails/1.jpg)
SSO (Single Sign-On)
03
![Page 2: SSO - SIngle Sign On](https://reader034.vdocuments.mx/reader034/viewer/2022052300/587becaa1a28ab765a8b60bf/html5/thumbnails/2.jpg)
HERE COMES THE DEMO
03
![Page 3: SSO - SIngle Sign On](https://reader034.vdocuments.mx/reader034/viewer/2022052300/587becaa1a28ab765a8b60bf/html5/thumbnails/3.jpg)
www.docplanner.com
SSO FLOW (… OAUTH2 REALLY BUT NVM)
INSERT AUTH CHECK MAGIC HERE
https://www.mutuallyhuman.com/blog/2013/05/09/choosing-an-sso-strategy-saml-vs-oauth2/
![Page 4: SSO - SIngle Sign On](https://reader034.vdocuments.mx/reader034/viewer/2022052300/587becaa1a28ab765a8b60bf/html5/thumbnails/4.jpg)
www.docplanner.com
SSO FLOW (… OAUTH2 REALLY BUT NVM)
INSERT AUTH CHECK MAGIC HERE
3rd party
https://www.mutuallyhuman.com/blog/2013/05/09/choosing-an-sso-strategy-saml-vs-oauth2/
![Page 5: SSO - SIngle Sign On](https://reader034.vdocuments.mx/reader034/viewer/2022052300/587becaa1a28ab765a8b60bf/html5/thumbnails/5.jpg)
www.docplanner.com
INTRODUCE EXTRA LOGIN METHODS
DOMAIN APPS
SSO
LOGIN METHODS
![Page 10: SSO - SIngle Sign On](https://reader034.vdocuments.mx/reader034/viewer/2022052300/587becaa1a28ab765a8b60bf/html5/thumbnails/10.jpg)
www.docplanner.com
HOW TO CHECK AUTH IN BACKEND?
WHOIS?
https://www.mutuallyhuman.com/blog/2013/05/09/choosing-an-sso-strategy-saml-vs-oauth2/
![Page 11: SSO - SIngle Sign On](https://reader034.vdocuments.mx/reader034/viewer/2022052300/587becaa1a28ab765a8b60bf/html5/thumbnails/11.jpg)
www.docplanner.com
CHALLENGE AGAINST AUTH SERVER
https://www.mutuallyhuman.com/blog/2013/05/09/choosing-an-sso-strategy-saml-vs-oauth2/
![Page 12: SSO - SIngle Sign On](https://reader034.vdocuments.mx/reader034/viewer/2022052300/587becaa1a28ab765a8b60bf/html5/thumbnails/12.jpg)
www.docplanner.com
CHALLENGE AGAINST AUTH SERVER
facebook.com/me
https://www.mutuallyhuman.com/blog/2013/05/09/choosing-an-sso-strategy-saml-vs-oauth2/
![Page 13: SSO - SIngle Sign On](https://reader034.vdocuments.mx/reader034/viewer/2022052300/587becaa1a28ab765a8b60bf/html5/thumbnails/13.jpg)
03
… OR MAKE ACCESS TOKEN CARRY METADATA
![Page 14: SSO - SIngle Sign On](https://reader034.vdocuments.mx/reader034/viewer/2022052300/587becaa1a28ab765a8b60bf/html5/thumbnails/14.jpg)
03
… OR MAKE ACCESS TOKEN CARRY METADATA
![Page 19: SSO - SIngle Sign On](https://reader034.vdocuments.mx/reader034/viewer/2022052300/587becaa1a28ab765a8b60bf/html5/thumbnails/19.jpg)
BUT HOW DO WE LOGOUT?
03
![Page 20: SSO - SIngle Sign On](https://reader034.vdocuments.mx/reader034/viewer/2022052300/587becaa1a28ab765a8b60bf/html5/thumbnails/20.jpg)
www.docplanner.com
CHALLENGE AGAINST AUTH SERVER
https://www.mutuallyhuman.com/blog/2013/05/09/choosing-an-sso-strategy-saml-vs-oauth2/
![Page 21: SSO - SIngle Sign On](https://reader034.vdocuments.mx/reader034/viewer/2022052300/587becaa1a28ab765a8b60bf/html5/thumbnails/21.jpg)
www.docplanner.com
CHALLENGE AGAINST AUTH SERVER
REVOKE ACCESS TOKENS
UNAUTHORIZED SINCE THEN
https://www.mutuallyhuman.com/blog/2013/05/09/choosing-an-sso-strategy-saml-vs-oauth2/
![Page 22: SSO - SIngle Sign On](https://reader034.vdocuments.mx/reader034/viewer/2022052300/587becaa1a28ab765a8b60bf/html5/thumbnails/22.jpg)
www.docplanner.com
WHEN USING JWT
NO CHALLENGE AGAINST ANY PROVIDER
AUTHORIZED AS LONG AS JWT IS VALID :(
![Page 23: SSO - SIngle Sign On](https://reader034.vdocuments.mx/reader034/viewer/2022052300/587becaa1a28ab765a8b60bf/html5/thumbnails/23.jpg)
www.docplanner.com
SSO PROS & CONS
CONSPROSSINGLE PLACE OF LOGGING IN
SEPARATED CODEBASE
CLIENT UNAWARE OF USER CREDENTIALS
MULTIPLA LOGIN METHODS
UNIFIED PROTOCOL CLIENT<=>SSO
SINGLE PLACE OF FAILURE
TOP NOTCH SECURITY IS A MUST HAVE
PERFORMANCE OVERHEAD
CAN GLOBALLY DEAUTHORIZE USER/CLIENT
LOGOUT PROBLEMS (JWT)
SECURITY ISSUES WHEN USING JWT
![Page 24: SSO - SIngle Sign On](https://reader034.vdocuments.mx/reader034/viewer/2022052300/587becaa1a28ab765a8b60bf/html5/thumbnails/24.jpg)
QUESTIONS?
03
![Page 25: SSO - SIngle Sign On](https://reader034.vdocuments.mx/reader034/viewer/2022052300/587becaa1a28ab765a8b60bf/html5/thumbnails/25.jpg)
github.com/prgTW
linkedin.com/in/prgTW
03
github.com/Ex3v
linkedin.com/in/maciej-szkamruk