[Question]: Is there a demo or guidance on how 2 applications can implement "SSO"(as I understand it) that exist under different sub domains? #1924

AFDevMike · 2024-04-10T21:36:58Z

What Version of the library are you using?
15.0.2

Question
I have an STS with the Authorization Code PKCE flow.

Is there a demo or guidance on how 2 applications can implement "SSO"(as I understand it) that exist under different sub domains?

I.e. In google you can open mail.google.com in 1 tab/window and news.google.com in another. If you log in or out on either, the other immediately shows logged in/out.

My understanding is its feasible to implement AbstractSecurityStorage with cookies. But I don't want to break the security and I see a comment that even 'LocalStorageManagerService ' is less secure.

The text was updated successfully, but these errors were encountered:

AFDevMike added the question label Apr 10, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Question]: Is there a demo or guidance on how 2 applications can implement "SSO"(as I understand it) that exist under different sub domains? #1924

[Question]: Is there a demo or guidance on how 2 applications can implement "SSO"(as I understand it) that exist under different sub domains? #1924

AFDevMike commented Apr 10, 2024 •

edited

[Question]: Is there a demo or guidance on how 2 applications can implement "SSO"(as I understand it) that exist under different sub domains? #1924

[Question]: Is there a demo or guidance on how 2 applications can implement "SSO"(as I understand it) that exist under different sub domains? #1924

Comments

AFDevMike commented Apr 10, 2024 • edited

AFDevMike commented Apr 10, 2024 •

edited