I need to create a centralized authentication website. Something like how facebook does with "Login with facebook", but instead of using facebook I would be using my own website. I've been search for 3 days and found a couple of terms but don't know exactly if that's what I should use.
I found these:
OAUTH 2
SAML
Identity provider(All php projects were deprecated)
But still I don't if this is what I should be looking for.
Any help would be appreciated.
Use simpleSAMLphp as your IDP.
If you then want to extend to Facebook, federate this with Azure ACS.
ACS provides authentication with:
Facebook
Google
Yahoo
Windows Live
Related
At my company we use Google Apps.
I've written a dashboard application (PHP/Laravel) which is used throughout the organization. It has a custom authentication system, but I'd like to integrate it with other services we use.
The basic use case that I'm interested in is something like this: you come in to the office in the morning, sign in to your email, and you're automatically signed in to the dashboard.
I've been looking at OAuth & reading about how to implement it, but it's not clear to me that it will do what I want.
So the basic question is this: what can Google OAuth do for me?
You can use Google+ Signin which is an OpenID Connect compliant SSO mechanism built on top of OAuth. By extending your applications with OpenID Connect Resouce Provider (RP) functionality and pointing them to Google as the Provider (OP) you would achieve SSO across your applications.
For a list of OpenID Connect RP libraries/implementations that you may leverage for your applications, see: http://openid.net/developers/libraries/
Is there a php library that has all the stuff I need to do logins via fb, google, twitter, yahoo etc?
Something like how the SO one works.
Thanks
OAuth is different from the open-id facebook uses oauth by that you can actually pull some facebook data while with open-id u can maintain the session just authentication is done by the open-id provider (google)
you can use the Janrain-engage for this purpose and there is also a open-source lib available named "open-id enabled" thats too now under janrain.. google it
I have a PHP application that will be accessed by users who are already
signed into Google ( the app runs in an iFrame on a Google Site that
requires Google login)
What is the best SSO approach that uses Google login, so users have
the same identity in both places?
Best to use a some OpenID opensource? .. zend/cake/symf plugin?
GoogleApps infrastructure? .. or a identity service like Janrain?
Is it too early to go with OpenID Connect? etc.
Thanks much.
OpenID works well - and indeed, is good enough for StackOverflow - you probably used it to register your account here.
There's an article called Getting Started with OpenID. Although it's on Zend's website, it doesn't seem to be tied to the Zend framework, so is a good starting point. It covers all the modules you need to download, and includes an example to help get you started.
Also take a look on simplesamlphp and its integration with Google:
Setting up a simpleSAMLphp SAML 2.0 IdP to use with Google Apps
Is an open source project based on php. Nice comunity and complete documentation.
Hi again I recently discovered this interesting project HybridAuth, an SSO PHP Library for authentication through identity providers like Facebook, Twitter, Google, Yahoo, LinkedIn, MySpace, Windows Live, Tumblr, Identica, LastFM, OpenID, PayPal, Vimeo, Foursquare, AOL, Viadeo, and others.
I didnt test it but seems also a good solution.
I would like to know if the oAuth wrap authentication facility by windows live is just for messenger connect or what?
Can it be used for Live Contacts API?
I am trying to fetch addressbook from live contacts. How can i do that?
Microsoft's msdn documentation on various APIs sucks to the core!! They doesnt even have any specific working PHP example for this.
Can somebody redirect me to the well organized documentation/tutorial on this?
Not sure if you've figured this out yet, but I am looking into it as well. I don't have a working sample yet, but the answer is YES, OAuth WRAP can be used for the Live Contacts API as well as any other Messenger Connect APIs. It's actually fairly straightforward if you've used OAuth before. You would obtain authorization as with any other provider (eg. Facebook, LinkedIn, Google, etc.), and then obtain an access token:
http://msdn.microsoft.com/en-us/library/ff750952.aspx
You would then pass that access token in the Authorization header (curl_setopt, CURLOPT_HTTP_HEADER) and continue with the REST call as if you had authorized using the Live SDK.
Hey all,
I'm redesigning the infrastructure for a website, and I want to make the login system use the accounts on our Google Apps. How would I be able to do something like this? I'm using PHP for the backend.
Thanks for any help.
-Trey
OAuth is one way, but it might be easier to implement OpenID, which is already provided by Google Apps. See Google Apps domain as OpenID provider
Take a look at the Google Login PHP class. It is no longer under active development and there is no support provided for it, but it should give you something to work off of. Also be sure to look Google Federated Login as a reference.