Crazy thoughts...
I think some time on how would be possible to login an user cross domain, using just an iframe and no oauth or other external implementation.
Would be possible to imagine, that something like this can be secure running fast?
How the challenge should happen, to know for sure that the user that will be authenticated is the legit one, and that logged in elsewhere in another domain? Have you never think on this?
Login users cross domain using an iframe thoughs
-
axew3
- w3all User
- Posts: 2598
- Joined: Fri Jan 22, 2016 5:15 pm
- Location: Italy
- Contact:
-
axew3
- w3all User
- Posts: 2598
- Joined: Fri Jan 22, 2016 5:15 pm
- Location: Italy
- Contact:
Re: Login users cross domain using an iframe thoughs
I think i have find out the way.
If i am not wrong, you'll have no requirement to hook to any external security handshake, to perform a secure login cross domain.
But only a db row to connect to the browser after certain checks, to check for correct pairs, and an iframe.
If i am not wrong... i say this, because into the procedure i have now clear in mind, since clearly i am not enough smart, i have the necessity to code it and see it as logic, but step by step ...
If i am not wrong, you'll have no requirement to hook to any external security handshake, to perform a secure login cross domain.
But only a db row to connect to the browser after certain checks, to check for correct pairs, and an iframe.
If i am not wrong... i say this, because into the procedure i have now clear in mind, since clearly i am not enough smart, i have the necessity to code it and see it as logic, but step by step ...