Using gae-sessions between domains
Question
I'm using gae-sessions library for session management in my GAE app. I want to this app to be a registration and login center for several other GAE apps. I mean when user enters one of the others app (let's say "client app" - this app also is using gae-sessions), and want to log in, its credentials are submitted to the "center app", there login and password are verified and user is redirected back to the "client app". Is it possible for "center app" to create a session (using gae-session) with logged in user data (if login and password were correct) and for "client app" to somehow access data from this session, when user is redirected back from "center" to "client".
1 answers
solution1
1 ACCPTED 2011-01-15 01:14:01
You could do this if your apps are subdomains of a particular domain:
Add the
Domainkey toCOOKIE_FMT(in gae-sessions source file) to indicate that the cookie from the "central app" should be sent to all subdomains (if your domain wasxyz.comthen you would want the cookie's domain value to be set to.xyz.comto have the cookie sent with requests to all subdomains).Use cookie-only sessions (the default for sessions under about 10kB of data) and the same value for the
COOKIE_KEYconfiguration parameter for each of your apps.
A cross-domain solution would require a little more work and custom code. There are some questions on this site which address cross-domain cookie solutions (eg, What's your favorite cross domain cookie sharing approach? ).
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.