My situation is, I have a .net 1.1 application to provide enrollment of courses, and some courses are provided by a moodle site. So when the user enrolls a course and he will be provided the URL link to moodle. But moodle requires the user to log on again. How can I implement a single log on?
Thanks!
One approach would be to alter moodle's login.php to look for a currently logged in session from the .NET application. This approach is described in detail on the following blog:
http://www.kassblog.com/2006/08/moodle-single-sign-on-mod/
Related
We are using a ecommerce plataform that can integrate with SAML protocol. They just need the authorization url. Do I need to create an App on One Login?
Or I could user a custom app integration?
Can you provide me some guidelines
What's the platform?
It may already exist in the OneLogin SAML catalog (we have a few thousand apps) but if not, please see https://support.onelogin.com/hc/en-us/articles/202673944-How-to-Use-the-OneLogin-SAML-Test-Connector
Additionally, you (or the Platform vendor) can always contact us to see about getting an official connector added to the catalog if it's not already there.
Regardless, your best bet is OneLogin support as this isn't really a development question.
My school is looking to use moodle as an LMS and integrating it with google apps. What I would like to implement in the integration is a single sign on where once a user is logged into google apps, they would immediately be logged into their moodle account. I want this to also be possible vice versa where a user would also be automatically logged into their google apps account if they login to moodle instead. So far the plugins I have found can only do one or the other; not both (or perhaps I do not know how to configure them this way).
I have tried using googleoauth2 and GSAML but had no luck. Can someone please help or guide me somewhere that has this implemented?
Thanks you
THe process is well-documented here: https://docs.moodle.org/29/en/Google_Apps_Integration
The OneLogin plugin (among other options) supports both SSO and Google Apps. I would suggest starting there.
The exact documentation (should you choose to proceed with this login) can be found here. You will need OpenAM as well.
I am using ASP.NET and Web Tools 2012.2. I created a Facebook application under ASP.NET MVC 4 Web Application and target of .Net Framework 4.5. I can create an AppId and AppSecret
through https://developers.facebook.com/apps but the application requests a value for Facebook:VerifyToken:User. Exactly how do I create one and get the application to work?
The "Facebook:VerifyToken:User" setting in the project template is optional and is used in the UserRealtimeUpdateController. You only need to set this when your application want to support Facebook Realtime Updates. See this link for more information about the realtime updates: https://developers.facebook.com/docs/reference/api/realtime/
The VerifyToken is set by you when you create a realtime update subscription.
Hope this helps,
Yao
You can use either DotNetOpenAuth or the Facebook C# SDK to authenticate against Facebook and request an access token. Take a look at the FacebookClient in DotNetOpenAuth, I've successfully used this to request an access token. You will need to pass the right scope parameter across for the permissions you need. Could you elaborate on how your app needs to interact with Facebook?
I gave a value for the Facebook:AppNamespace setting (which is supposedly optional according to the literature that I have read as well as stating so on the Facebook form). Once I did this, the problem went away.
It's difficult to tell what is being asked here. This question is ambiguous, vague, incomplete, overly broad, or rhetorical and cannot be reasonably answered in its current form. For help clarifying this question so that it can be reopened, visit the help center.
Closed 11 years ago.
I have a public website created with xPages, My user are not logged to Domino (i.e anonymous) but I still want to display information for the users that is already logged in to facebook or twitter like the image or the users twitter stream and maybe let them be able to login to my site using fb/twitter so I can store some data about them for next visit.
I do not want to create users in any domino directory for this, but instead store the data I need in profiles/documents in the application. in this way I can store data from my users without the need to create new fields in domino directory.
To make it even simpler to understand. let's say I want to build a product site thay sell stuff using a domino application. When users enter the site they can choose to register with my application or login using e.g facebook or twitter. When they buy something or post a comment they are already logged in and do not need to enter user data. the user data come from social networks or the profile documents I have in my application.
Now off to some question...
Can this be done easily using a domino application? or is it faster to
build this using another platform?
I do understand that I need to do some oAuth authentication to
connect with twitter and facebook, but how do I connect this data to
the profiles I have in my application?
If users choose to register with my site instead of logging in to twitter/fb, how would I go about authenticating those users, and do I use different authentication depending on if they login using Twitter or using my profile documents.
can I oAuth enable my Domino application?
/Thomas
Thomas,
You pressed the right button :)
I have worked on this a lot. I can share my results...
First, Social enabler cannot do this. Because current OAuth implementation is based on the assumption that user has a real identity inside Domino directory (because tokenstore is working by user name). Matt's solution is great if you want to put your user into a Domino directory.
I have started implementation for Twitter login without registering user. It will be an OpenNTF project. But it's going slow :(
There are two different things here in your question. Social Enabler has an OAuth client that allows to bind FB/Twitter user identification to a Domino User. It is not a 'login' in terms of your question.
On the other hand, to take advantage of Domino resources from an external application, we need a OAuth provider inside Domino server. Phil provided information about it at LS12. They will implement a provider and put it into OpenNTF soon. They have to do it in the future because otherwise, they can't use embedded activities effectively. So you may expect this will become a part of the product in an undefined future. But this has nothing to do with "Login by FB" architecture. That may be used to implement a Facebook application interacting with an XPages application.
The architecture for Login with FB would be like that. You will provide an OAuth dance between your app and Facebook, gather the user's FB identity and store it inside a 'Profile' store. That store may also be used to record user-specific information. At this point, you have three directions:
Import the user into a Domino directory (which is trusted via Directory assistance) and implement an authentication trick (look at the Matt's solution for this).
User may stay anonymous, but you would extend the user bean object to interact with him/her via this bean.
Create a LtpaToken to authenticate the user. I found how to do this. It should be implemented carefully and in fact user is not required to be registered in a trusted directory. But there are security risks and it should be handled carefully.
One more thing! It's also important to consider licensing! You need to use a proper licensing model for this (like XWork). It's not important which method you are using. Since you are identifying the user, it counts as authenticated user.
Hope this helps to create a draft direction for your project.
Thomas, there was talk at Lotusphere 2012 about a Domino OAuth provider in a future Domino release.
Matt White wrote some SSO code for Facebook but this generates under the cover user accounts in the Domino Directory: http://mattwhite.me/blog/2010/10/20/how-to-get-sso-for-facebook-working-with-xpages.html
The XPages Social Enabler is the other direction. It allows writing XPages apps that access easily other OAuth services.
Thomas,
I played with it a little bit, so I'm no expert, but I think the Java Library "Scribe" on github might help you do what you want.
Thomas,
Creating LtpaToken is relatively easy way. If I know it needs a Java library (or porting it to LotusScript) that could be called from LotusScript and some configurations on Domino server. You can then exactly simulate what Domino is automatically doing during SSO authentication.
But remember what Serdar mentioned about licensing. The authenticated user should be still under a proper license.
I have developed asp.net MVC social networking site. I do not want to keep credentials at my database. Its user choice like stackoverflow (this forum). When we saying login the there should be option that to login with google/yahoo/facebook credentials, if user has account over there. What I have to do? is there any webservice provided by sites (google/yahoo/facebook) or what is remedy over this ? this topic in totally new for me . I expecting help from you gems..
You could implement OpenID. DotNetOpenAuth is implementation for .NET.
Sounds like OpenId would work for you (click, and more).
Library's to use in your apps.
For Facebook you want to use Facebook Connect. There is an implementation for .net on codeplex that you may want to have a look at. You may also want to look at this question.
Google uses OpenId. You can use DotNetOpenAuth to connect to google (and any other OpenId provider, such as Yahoo and twitter).
If you want to connect with Microsoft's LiveId, you may want to read this tutorial.
EDIT
There is also the option of using JanRain, a single provider that consolidates a large number of login providers. But note that JanRain is only free up to 1000 users.
There are solutions that enable authentication and features (like status updates, friends etc) from all mentioned sites, one of them is RPX from JanRain. I've experience with RPX personally and it's a great product, however, it will cost you money. They charge you per registered user etc.. I do not know of an open source solution that can compete with RPX.
If you are not interested in paying for a product you can always implement support for the mentioned sites yourself. All of them provide open API's and examples for how to do this. For Facebook it's very easy to implement Facebook Connect. Google and Yahoo both support Open ID and there are plenty of open source resources available for .NET (like http://www.dotnetopenauth.net/).
Good luck with your community!