如何将站点用户登录到另一个站点
[英]How to log site users in to another site
问题描述
I have a website and my users log in to my site. 
我有一个网站,我的用户登录到我的网站。 For each user, I store their credentials to another third-party site. 对于每个用户,我将其凭据存储到另一个第三方站点。 I would like to be able to log the user in to the third-party site from within my site (preferable) or in a new tab (less preferable). 我希望能够从我的网站(首选)或新标签页(不太理想)中将用户登录到第三方站点。
The problem is that the third-party site uses the X-FRAME-OPTIONS: SAMEORIGIN header. 问题是第三方站点使用X-FRAME-OPTIONS: SAMEORIGIN标头。 Is there any way I can achieve this if I have my users' credentials for the third-party site? 如果我拥有第三方站点的用户凭据,有什么方法可以实现?
1 个解决方案
解决方案1
0 2018-12-14 10:36:02
As already mentioned in the comments what you are looking for is Single Sign On (SSO) 正如评论中已经提到的,您正在寻找的是单一登录(SSO)
Single Sign On (SSO) occurs when a user logs in to one application and is then signed in to other applications automatically, regardless of the platform, technology, or domain the user is using.
Source: https://auth0.com/docs/sso/current 资料来源: https : //auth0.com/docs/sso/current
Security Note 安全须知
For security reasons you should not try to roll your own solution. 出于安全原因,您不应尝试推出自己的解决方案。 See all the data breaches that happen every day and the heavy GDPR fines for who fails to protect user data. 查看每天发生的所有数据泄露事件,以及对谁未能保护用户数据的严厉GDPR罚款。 Plus Broken Authentication is in the OWASP top 10-2017 加上OWASP前10-2017名中的破碎身份验证
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.