Dhanesh's Blog Stream RSS

Archive


Apr
3rd
Fri
permalink
RPX: Single Sign-On for your website Seven step user authentication: Step 1: User signs in from your website The user chooses their Identity Provider from the sign-in interface, and clicks continue. This submits the form to the RPX server for processing. In this step you specify a token_url, which is where RPX will send the user once they’ve been authenticated. Steps 2-4: RPX handles OpenID transaction RPX starts an OpenID transaction on behalf of your website, and sends the user to their third party provider. The provider authenticates the user and then prompts them to sign into your website. Step 5: RPX sends the authenticated user back to your website RPX sends the user to the token_url you specified in step 1, with a token parameter. Step 6: Use the token to access the authentication data Your token_url handling code calls the RPX API with the token from step 5, and gets back an RPX response with the OpenID authentication information and profile data. Step 7: Log the user in Log the user into your website and create/update user profile with the data received in step 6. The details of how this is done depends on your website implementation.

RPX: Single Sign-On for your website

Seven step user authentication:

Step 1: User signs in from your website

The user chooses their Identity Provider from the sign-in interface, and clicks continue. This submits the form to the RPX server for processing. In this step you specify a token_url, which is where RPX will send the user once they’ve been authenticated.

Steps 2-4: RPX handles OpenID transaction

RPX starts an OpenID transaction on behalf of your website, and sends the user to their third party provider. The provider authenticates the user and then prompts them to sign into your website.

Step 5: RPX sends the authenticated user back to your website

RPX sends the user to the token_url you specified in step 1, with a token parameter.

Step 6: Use the token to access the authentication data

Your token_url handling code calls the RPX API with the token from step 5, and gets back an RPX response with the OpenID authentication information and profile data.

Step 7: Log the user in

Log the user into your website and create/update user profile with the data received in step 6. The details of how this is done depends on your website implementation.

blog comments powered by Disqus