Comments (2)
It shouldn't take that much time. The typical latency HTTP request on my server env (LAMP) is about 200ms. Check if you can bring down the response time of the server in general by tweaking Apache and PHP.
It's essential for any SSO solution to do this at least on the first page request. The only way for a broker to know who the client is, is by asking it to the server, since the client is not logged into the broken but into the server. After that, the broker can save the user's information in a session.
If you solve it that way, the client isn't logged out of all brokers automatically when logging out of one of them. This may of may not be an issue for you. There's a way around this, by having the server send out notifications of a logout to each broker. However that's outside the scope of the original article.
from sso.
Yes there's no way around this. It shouldn't be that bad. You only have the overhead of a server to server http request. That should be in the range of 100 to 200ms.
If requesting the information from the server takes over a second, than logging in without SSO would also take over a second. In that case you should really try to tweak your server's environment.
----- Reply message -----
Van: "dolia" [email protected]
Aan: "jasny/SSO" [email protected]
Onderwerp: [SSO] Good job .i have a question .can you helpme ? (#5)
Datum: vr, okt. 11, 2013 17:17
The client requests the index page at the broker. The broker will request user information from the server. Since the visitor is already logged in, the server returns this information. The index page is shown to the visitor.
Each client request to the index page ,the broker has to request user information from the server ,though the visitor is already logged in.
Is it reasonable?
I mean it takes 1second to complete curl request to get information from the server. Cost too much than traditional session login .
Hope your answer
—
Reply to this email directly or view it on GitHub.
from sso.
Related Issues (20)
- The broker session id isn't attached to a user session,how to solve this problem? HOT 2
- Attach - security HOT 1
- The Session ID of the Broker and ajax-Broker is different HOT 3
- Does this library protect against session fixation attacks? HOT 1
- 【Single Sign-On Ajax demo】attach sso api return HOT 1
- Is it possible to provide examples of how to use in the framework HOT 5
- Demo not working in Chrome 88.0.4324.146 HOT 4
- v0.4 How to handle multiple redirects HOT 3
- How to setup this project. I am getting errors on windows
- [Broker Ajax] - Broker didn't use bearer authentication HOT 1
- Storage Access API Support HOT 1
- Multiple redirects, results in wrong referer validation HOT 3
- Wrong implementation of setcookie HOT 1
- Need compability with laravel 9 HOT 3
- Session is already started or Session ID cannot be changed when a session is active HOT 1
- error ArrayAccess HOT 3
- Session cookie on SSO server lost HOT 1
- Why can SSO1 obtain user information normally, but SSO2 still needs to log in?
- Since the rules of the browser samesite changed, the ajax broker sso does not working
- Session has expired. Client must attach with new token HOT 7
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from sso.