[wp-hackers] Wordpress SSO

Malte Witt m.witt at ia-sh.de
Thu Nov 29 00:05:53 UTC 2012 

Thank's for your reply. I already thought about this and wanted to use 
SimpleSAMLphp (wordpress A would be the Identity Provider in that case).

There already is a plugin for this 
http://wordpress.org/extend/plugins/simplesamlphp-authentication/ but I 
didn't had a look at it yet.

Actually - as outlined in my previous mail - I'm already stuck before 
getting that far in the login process. ;-)

Am 29.11.2012 00:52, schrieb Martin Lazarov:
> Do you have completely same users tables? If you don't you will need
> new db table which will hold connection between users.
>
> On Thu, Nov 29, 2012 at 1:39 AM, Malte Witt <m.witt at ia-sh.de> wrote:
>> Hey at all,
>> I have the following situation: There are two different wordpress installs,
>> different domains, different databases, different servers and I want to
>> establish an SSO mechanism between those two.
>>
>> All plugins I found so far that match "sso" are in fact doing shared
>> authentification and no 'real' sso at all, but I want to login to wordpress
>> A and then surf to wordpress B and still be logged in (or be automatically
>> logged in to wordpress B in that second).
>>
>> The only chance I can think of to get the session cookie from wordpress A is
>> to redirect to wordpress A, check the cookie and then redirect back to
>> wordpress B (including some handshake to safely pass the information if the
>> user is logged in), but because I don't know if there even is a session I
>> would have to do this on every pageload of wordpress B (so this can't be a
>> real solution ...). Alternatively I could do some crazy AJAX/CORS stuff on
>> every pageload of wordpress B to get the session information from wordpress
>> A and then refresh the page if needed ...
>>
>> I hoped somebody already thought about all this stuff because I don't have a
>> clue in the moment. So I would be really glad if someone could share his
>> thoughts about this topic (maybe this is impossible at all and that's the
>> reason there is no plugin or howto available?) ...
>>
>> Regards,
>> Malte
>> _______________________________________________
>> wp-hackers mailing list
>> wp-hackers at lists.automattic.com
>> http://lists.automattic.com/mailman/listinfo/wp-hackers
> _______________________________________________
> wp-hackers mailing list
> wp-hackers at lists.automattic.com
> http://lists.automattic.com/mailman/listinfo/wp-hackers
>

More information about the wp-hackers mailing list