davetron5000/cookie_based_sso.md

Created December 4, 2015 14:52

Star (0) You must be signed in to star a gist
Fork (0) You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/davetron5000/c675381887553fb7b12a.js"></script>
Save davetron5000/c675381887553fb7b12a to your computer and use it in GitHub Desktop.

Raw

The code needed to allow users to login with their badges in the warehouses is not well-factored or easy to plug into a new application. It also doesn't create a great user experience for people in the warehouses.

Instead, what we've done is to have a cookie set in our master application that the other applications will look for. If they find that cookie, the user is logged in. The cookie can expire and is invalidated when the user explicitly logs out.

This has allowed us to stand up single-purpose apps more quickly, and allows users to go between them without a lot of guff.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment