Jump to content

Authentication from external page on the same domain

jesuralem

By jesuralem
in Technical Problems

Recommended Posts

jesuralem Community Regular

jesuralem

Posted
Posted

Hi,

My community is part of a bigger site and is the referentials for users management. I would like to host a login page outside of IPS but allowing users to login with their IPS credentials.
Community is under mydomain/forums and the rest of the site is at the root.

Ideally once logged in either on the ips side or on the website side he should stay connected on both sides.

Now what i wouldn't want is a user having to "allow" my site to access IPS information, simply because it is indeed the same site and people just wouldn't understand why the question would be asked.

I know the answer to that is Oauth but what option should we use ? and is there a PHP Oauth client that would be working nicely with IPS.
Basically all i need is to validate the users credentials, the site already has an API access to everything it needs otherwise.

Link to comment
Share on other sites
jesuralem Community Regular

jesuralem

Posted
  • Author
Posted

It is custom dev :).
I found this : https://invisioncommunity.com/forums/topic/445586-external-login-issue-with-43/
and this : https://invisioncommunity.com/developers/docs/members-authentication/developing-single-sign-on-sso-integration-r65/
I sent it to my developper, it seems it might help.

The problem i ave with Oauth is that from what i understand my users will have a pop-up asking them to authorize my site to access their profile on the forum, it just doesn't make any sense when the domain is the same.

Link to comment
Share on other sites
bfarber Grand Master

bfarber

Posted
Posted
6 hours ago, jesuralem said:

It is custom dev :).
I found this : https://invisioncommunity.com/forums/topic/445586-external-login-issue-with-43/
and this : https://invisioncommunity.com/developers/docs/members-authentication/developing-single-sign-on-sso-integration-r65/
I sent it to my developper, it seems it might help.

The problem i ave with Oauth is that from what i understand my users will have a pop-up asking them to authorize my site to access their profile on the forum, it just doesn't make any sense when the domain is the same.

You can

1) Use the password credentials grant so that users submit their username and password directly to the forums (while still using OAuth behind the scenes to authenticate through your front end). And...
2) Use an SSO plugin which you would need to custom develop in order to automatically log users in to the forums if they are logged in to the front end.

Link to comment
Share on other sites
jesuralem Community Regular

jesuralem

Posted
  • Author
Posted

Thanks for the answer.

Do i have a chance to achieve anything with the links i posted ? it seems wey simpler :).

We will use OAuth if necessary but it this simple case it is a pain. Or maybe we will just redirect the usr to the login page, but not being able to send him back the the original page is a problem...

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Invision Community © 2023 IPS, Inc.
×
×
  • Create New...