Cross Domain Authentication

Posted by gnosio on Stack Overflow See other posts from Stack Overflow or by gnosio
Published on 2009-06-26T06:15:04Z Indexed on 2010/04/24 16:23 UTC
Read the original article Hit count: 182

Filed under:

cross-domain

|

webapp

|

authentication

I am Curious about how cross domain authentication work? for example. To sign into Orkut.com you need to to sign in via Google.com. So the authentication happens at Google.com and it sets the cookie. So my question now is how does Orkut.com able to read this cookie or authenticate the user with no other information ?

What can possibly go wrong?

© Stack Overflow or respective owner

Related posts about cross-domain

ScriptResource.axd Access is denied. Cross-Domain iFrame

as seen on Stack Overflow - Search for 'Stack Overflow'
We have a web page containing an iframe containing a page sharing an authentification cookie with it's parent page. For example the iframe page is on the domain foo.domain.com and the page containing the iframe is on foo2.domain.com. Both share a cookie from domain.com. Authentification works great… >>> More
Cross domain cookie tracking

as seen on Stack Overflow - Search for 'Stack Overflow'
Hi, The company I work for has four domains and I'm trying to set up the cookies, so one cookie can be generated and tracked across all the domains. From reading various posts on here I thought it was possible. I've set up a sub domain on one site, to serve a cookie and 1*1 pixel image to all four… >>> More
Flex socket crossdomain

as seen on Stack Overflow - Search for 'Stack Overflow'
I am trying to connect to a socket server from flex. I read, on adobe's documentation, the client automatically sends a "request-policy-file" xml element to the socket before allowing it to be opened, and should receive a policy file. The client sends the xml element as expected, My server receives… >>> More
Display cross domain content in IFrame (IE8)

as seen on Stack Overflow - Search for 'Stack Overflow'
I realized that IE8 does not allow links from cross domains to be displayed in IFrame. It seems like there are only two Header options that Microsoft allows to modify. X-FRAME-OPTIONS : "DENY" (This does not display any IFrame content ) X-FRAME-OPTIONS : "SAMEORIGIN" (Displays content from the… >>> More
Cross domain AJAX requests using YQL

as seen on Stack Overflow - Search for 'Stack Overflow'
Hi , I need to query a locations WOEID and grab the WOEID value from the xml returned. So the user would type e.g. London, UK and I need to load the query as below: http://query.yahooapis.com/v1/public/yql?q=select%20woeid%20from%20geo.places%20where%20text%20%3D%20%22London%2C%20UK%2C%20UK%22&format=xml After… >>> More

Related posts about webapp

Java webapp: adding a content-disposition header to force browsers "save as" behavior

as seen on Stack Overflow - Search for 'Stack Overflow'
Even though it's not part of HTTP 1.1/RFC2616 webapps that wish to force a resource to be downloaded (rather than displayed) in a browser can use the Content-Disposition header like this: Content-Disposition: attachment; filename=FILENAME Even tough it's only defined in RFC2183 and not part of… >>> More
JMX Based Monitoring - Part Three - Web App Server Monitoring

as seen on Oracle Blogs - Search for 'Oracle Blogs'
In the last blog entry I showed a technique for integrating a JMX console with Oracle WebLogic which is a standard feature of Oracle WebLogic 11g. Customers on other Web Application servers and other versions of Oracle WebLogic can refer to the documentation provided with the server to do a similar… >>> More
What are the options for simple Ajax calls for a Java webapp?

as seen on Programmers - Search for 'Programmers'
I've got a very simple need and I don't know what are the options available. If I simplify, users see webpage like this server by a Java webapp server: [-] red [x] green [-] blue [-] yellow The selected color is green And then I want the user to be able to select the yellow color and have the… >>> More
Why does my Perl CGI script raise an internal server error on Apache?

as seen on Ask Ubuntu - Search for 'Ask Ubuntu'
I've installed apache2 on Ubuntu 11.04, and localhost is working. I created a simple printenv.pl script and put it in the following directory $ mv printenv.pl /usr/lib/cgi-bin/ $ chmod +rx /usr/lib/cgi-bin/printenv.pl However when I go to http://127.0.0.1/cgi-bin/printenv.pl, I get a 500 Internal… >>> More
force recompilation of war file including its Jar dependencies

as seen on Programmers - Search for 'Programmers'
I have a project A (a webapp), depending on project B (B.jar) and this one depending on project C (C.jar). I would like to create a maven goal named "Rebuild War", that clean all compiled code for these 3 projects and rebuild the whole in order to obtain a fresh War file. I tried mvn clean package… >>> More