Re: Single sign-on between web & desktop

From: "Joe Kaplan" <joseph.e.kaplan@xxxxxxxxxxxxxxxxxxxxxxxx>
Date: Thu, 28 Feb 2008 14:06:41 -0600

Can you use integrated windows authentication for this? That is by far the
easiest thing to do.

Joe K.

--
Joe Kaplan-MS MVP Directory Services Programming
Co-author of "The .NET Developer's Guide to Directory Services Programming"
http://www.directoryprogramming.net
--
"buu" <buunguyen@xxxxxxxxx> wrote in message
news:cdd93564-be68-4d07-b2d9-8b452aaa001b@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

Hi everyone,

We're developing an application which include both web-based (ASP.NET)
and desktop (WinForms) applications. User credentials come from a
Windows domain. We want to enable single sign-on between these
applications. Two expected usage scenarios are as follows:

1.
- User login to web app using his/her Windows domain account
- There is a link in a web page for the user to launch the desktop
component
- The desktop app (already installed in user's workstation) is
launched
- User can access to privileged information without having to logging
in again

2.
- Continue from 1
- User clicks on a link or something to launch back the web
application
- The web site is opened in the browser
- User can access to privileged information without having to logging
in again.

One way we can think of is to have the web & desktop apps communicate
the a security token (which is issued to map with a specific domain
account after the user logs in) via cookie. However, this is really a
hack and we wonder if there's any pattern that addresses this need.

Thanks in advance!

Regards,
Buu

Follow-Ups:
- Re: Single sign-on between web & desktop
  - From: Buu

References:
- Single sign-on between web & desktop
  - From: buu

Prev by Date: Re: Bug in X509Certificate2 API?
Next by Date: Re: Single sign-on between web & desktop
Previous by thread: Single sign-on between web & desktop
Next by thread: Re: Single sign-on between web & desktop
Index(es):
- Date
- Thread

Relevant Pages

Re: Error setting DirecotrySearchers new ExtendedDN
... Joe Kaplan-MS MVP Directory Services Programming ... Co-author of "The .NET Developer's Guide to Directory Services Programming" ... Windows 98, Windows 2000 SP4, Windows Millennium Edition, Windows Server ... error when my code reaches "using (SearchResultCollection results = ...
(microsoft.public.platformsdk.security)
Re: Can groups be entered in the authorization tab?
... using the name that Windows uses to do the match, so you don't get a valid ... Joe Kaplan-MS MVP Directory Services Programming ... Co-author of "The .NET Developer's Guide to Directory Services Programming" ... intra net site internally. ...
(microsoft.public.dotnet.framework.aspnet.security)
Re: Light directory service and ADAM
... ADAM is not a store for Windows accounts. ... Joe Kaplan-MS MVP Directory Services Programming ... Co-author of "The .NET Developer's Guide to Directory Services Programming" ...
(microsoft.public.windows.server.active_directory)
Re: determine trusted domain with windows authentication
... I thought it was created using tokens but the domain name is still ... The domain name in the user name is formed by Windows authentication based ... Joe Kaplan-MS MVP Directory Services Programming ... Co-author of "The .NET Developer's Guide to Directory Services Programming" ...
(microsoft.public.dotnet.framework.aspnet.security)
Re: form authentication and webservices
... Co-author of "The .NET Developer's Guide to Directory Services Programming" ... We will be using Windows Authentication on the Web Services side (same ... Dominick Baier ...
(microsoft.public.dotnet.framework.aspnet.security)