Geek Answers Handbook

Centralized single sign-on (SSO) permission for disparate web applications

We have an organization with several hundred internal users in Active Directory. We have some of our computer systems integrated with AD, but they have many disparate web applications scattered across the organization that have separate authentication and authorization mechanisms.

In addition, we have about 60 thousand external users who will eventually be able to log into the system and use some of the aforementioned web applications (albeit with different permissions most of the time). These users will not be in AD, but some other data stores (perhaps just a database table that will be supported as part of some other processes that we have in the company). The application must be flexible in the data stores that it can authenticate.

We are looking for a centralized authorization and authorization system with which we can link web applications. As for authentication, we are working on Single Sign-On (SSO). For the authorization side, we would like a centralized location where we can assign application rights to users or user groups. Bonus points for “groupings” of permissions or “templates” that would allow the organization to continue.

We looked at Atlassian Crowd, which seems perfect for authentication, but the authorization side is bleak.

The mechanism by which web applications interact with the central auth server should be standards-based and easily implemented on many different platforms (ASP classic, .NET, php, Python, Java).

So, the specific question: do you know about any open source software or proprietary software that will function as a centralized authentication and authorization server, as described above? Or do you know of any software that can perform centralized authentication and integrate well with other centralized authentication applications.

I found this question, which is a year and does not seem to have an answer. Hope this time you can find a solution: Centralized authentication and authorization for multiple web services

+6
authentication web-applications authorization single-sign-on
source share

No one has answered this question yet.

See similar questions:

6
Centralized authentication and authorization for multiple web services

or similar:

176
Creating an API for Mobile Applications - Authentication and Authorization
175
SPA Best Practices for Authentication and Session Management
155
SSO with CAS or OAuth?
92
Single sign-on across multiple domains
31
Microservice Single Sign-On
3
Web2py authorization with CAS (central authentication service)
2
Single Signature Authentication versus Authorization
one
Implement Single Sign-On (SSO)
0
SSO Authentication and Authorization
0
Should authorization logic be centralized or decentralized?

More articles:


All Articles