stackoom
  简体   繁体   中英

Single Sign-On on Winforms Web Browser control

 原文  2011-09-20 12:11:54       c#/ winforms/ single-sign-on

Question

I have a Winforms app which hosts a web browser control. Within this control you can also navigate to pre-determined external websites.

I need to implement Single Sign-On so that the user doesn't need to authenticate in each of the known external websites. I have already some ideas but it would be nice to hear all your opinions.

What would be the best way to do this?

In fact, is there something already for this? (edit: how do browsers remember logins/passwords)?

Cheers

2 answers

solution1
 1 ACCPTED  2011-09-20 14:31:04

Generally it is the responsibility of the site to implement SSO, and the client will then automatically respond to the site. Since the web browser control is using IE it inherits the same capabilities as the web browser. For example if the site uses Windows Authentication then the control will authenticate following a challenge from the site without user intervention. Similarly the control will perform the necessary redirects if the site is using SAML 2.0 .

Since these are external websites I have to assume that Windows Authentication is not going to work well because the server and the client are on different domains. Therefore something along the lines of SAML sounds like the most secure option.

It seems like implementing SAML is going to be a problem for you and you need to manually complete and submit web forms which load inside the control. This is possible by accessing the DOM but it quickly becomes a difficult to maintain solution.

The web browser control offers up a document property that gives you an HtmlDocument object which allows you to find elements and execute JavaScript in pages. You need to use these mechanisms to automatically perform the authentication. The steps might look like this:

  1. Capture URL, or some cookie that will let you know if authentication is required by inspecting the web browser control properties. You might want to look into OnNavigate() .
  2. Access the document and complete the form values.
  3. Call a JavaScript submit function to submit the form, or inject some JavaScript to do this. I find it easier to insert JavaScript into pages than to write more complicated C# code in a lot of cases. It is easier to prototype in a regular browser.

solution2
 0  2011-09-20 12:28:47

Unless the websites all share a common trusted authentication mechanism (like OpenID ) you're stuck doing custom coding for each site.

Browsers remember passwords for single sites. I wouldn't call that "single sign-on", which is a method of using a trusted authority to authenticate across multiple disparate web sites which all rely on that authority to verify a user's identity.

As you asked for SSO packages that already do this, some examples are:

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Single Sign-On web app ASP.NET Web API 2 - single sign-on WinForms Web Browser control forcing refocus? winforms Web Browser control Javascript issues Getting an error with a web browser control in a WinForms Application using ActiveXObject in Winforms web browser Control WAAD Single Sign-on for existing application Rails and ASP.NET Single Sign-On Windows 10 UWP Single sign-on Enable Single Sign-On using C#
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM