• PHP不到100行代码实现SSO单点登录

    1、点击登录跳转到SSO登录页面并带上当前应用的callback地址
    2、登录成功后生成COOKIE并将COOKIE传给callback地址
    3、callback地址接收SSO的COOKIE并设置在当前域下再跳回到应用1即完成登录
    4、再在应用程序需要登录的地方嵌入一个iframe用来实时检测登录状态

     

    1. <?php 
    2. //index.php 应用程序页面 
    3. header('Content-Type:text/html; charset=utf-8'); 
    4. $sso_address = 'http://2spaoku.com/sso/login.php'; //你SSO所在的域名 
    5. $callback_address = 'http://'.$_SERVER['HTTP_HOST'] 
    6.                     .str_replace('index.php','',$_SERVER['SCRIPT_NAME']) 
    7.                     .'callback.php'; //callback地址用于回调设置cookie 
    9. if(isset($_COOKIE['sign'])){ 
    10.     exit("欢迎您{$_COOKIE['sign']} <a href="login.php?logout">退出</a>"); 
    11. }else{ 
    12.     echo '您还未登录 <a href="'.$sso_address.'?callback='.$callback_address.'">点此登录</a>'; 
    14. ?>
    15. <iframe src="<?php echo $sso_address ?>?callback=<?php echo $callback_address ?>" frameborder="0"  width="0" height="0"></iframe>
    复制代码
    1. <?php 
    2. //login.php SSO登录页面 
    3. header('Content-Type:text/html; charset=utf-8'); 
    4. if(isset($_GET['logout'])){ 
    5.     setcookie('sign','',-300); 
    6.     unset($_GET['logout']); 
    7.     header('location:index.php'); 
    10. if(isset($_POST['username']) && isset($_POST['password'])){ 
    11.     setcookie('sign',$_POST['username'],0,''); 
    12.     header("location:".$_POST['callback']."?sign={$_POST['username']}"); 
    15. if(empty($_COOKIE['sign'])){ 
    16. ?> 
    18. <form method="post"> 
    19. <p>用户名:<input type="text" name="username" /></p> 
    20. <p>密  码:<input type="password" name="password" /></p> 
    21. <input type="hidden" name="callback" value="<?php echo $_GET['callback']; ?>" /> 
    22. <input type="submit" value="登录" /> 
    23. </form> 
    26. <?php 
    27. }else{ 
    28.     $query = http_build_query($_COOKIE); 
    29.     echo "系统检测到您已登录 {$_COOKIE['sign']} <a href="{$_GET['callback']}?{$query}">授权</a> <a href="?logout">退出</a>"; 
    31. ?>
    复制代码
    1. <?php 
    2. //callback.php 回调页面用来设置跨域COOKIE 
    3. header('Content-Type:text/html; charset=utf-8'); 
    4. if(empty($_GET)){ 
    5.     exit('您还未登录'); 
    6. }else{ 
    7.     foreach($_GET as $key=>$val){ 
    8.         setcookie($key,$val,0,''); 
    9.     } 
    10.     header("location:index.php"); 
    11. }
    12. ?>
    复制代码
    1. <?php 
    2. //connect.php 用来检测登录状态的页面,内嵌在页面的iframe中 
    3. header('Content-Type:text/html; charset=utf-8'); 
    4. if(isset($_COOKIE['sign'])){ 
    5.     $callback = urldecode($_GET['callback']);unset($_GET['callback']); 
    6.     $query = http_build_query($_COOKIE); 
    7.     $callback = $callback."?{$query}"; 
    8. }else{ 
    9.     exit; 
    11. ?>
    12. <html><script type="text/javascript">top.location.href="<?php echo $callback; ?>";</script></html>
    复制代码

    演示地址:http://tmkook.com/blog/sso/
    源文地址:http://tmkook.com/blog/archives/php-sso
  • 相关阅读:
    传参存在潜在危险值
    JWT Json Web Token
    异步编程初探:async和await
    异步 async/Await C#
    React+ES6+Dva(roadHog,Webpabk,Babel)+AntDesign 技术栈相关学习文档
    iOS App 内跳转到手机系统设置页面
    h5(WKWebView)和iOS之间的交互问题
    iOS 10需要设置的隐私权限
    iOS APP开发设置启动图片 Launch Image
    iOS开发中常用的手势---边缘手势
  • 原文地址:https://www.cnblogs.com/hellowzd/p/5640390.html
Copyright © 2020-2023  润新知