Community Building with ChatSpace Server Manual
Community Building with ChatSpace Server Manual
Community Building with ChatSpace Server Manual
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
You are now ready to run the Single Sign-on feature in your <strong>Community</strong>.<br />
Most of the functions that the CSSoap.Tools object requires an additional<br />
argument that is comprised of an md5hash of the number one administrator’s<br />
username and password separated by a colon, ":".<br />
In the example the localPassticketLogin.asp, the number one administrator's<br />
username and password are in plain text as an argument for an md5hash<br />
function. This is only done here for clarity. You should always use the<br />
encrypted version and change it often.<br />
How it works<br />
A COM object <strong>with</strong> a SOAP interface allows remote systems to request three<br />
items from the <strong>ChatSpace</strong> server:<br />
Add a user.<br />
Check if a user already exists.<br />
Get a pass ticket.<br />
When a request is made for any of these items, the requestor must supply the<br />
main administrator's username and password in an encrypted MD5 hash<br />
(usename:password). Each method: add a user, check if a user already<br />
exists and get a pass ticket requires a number of arguments. The last<br />
arguments are the administrator's MD5 hash.<br />
In the Single Sign-on solution, the user's password in the <strong>ChatSpace</strong><br />
database should not be thought of as a password anymore but as pass ticket.<br />
A new randomly generated Pass Ticket is created each time a Pass Ticket is<br />
requested. This Pass Ticket is stored in the user password field in the<br />
database. The user's password is not relevant to <strong>ChatSpace</strong> because the user<br />
has already authenticated into the main web site.<br />
How it works, under the covers<br />
A user logs into the main web site that contains <strong>ChatSpace</strong>. The user then<br />
goes to the Message board area, where there is a link <strong>with</strong> a URL to<br />
<strong>ChatSpace</strong>. The URL contains the username and the Pass Ticket. Clicking<br />
on this link takes the user directly to <strong>ChatSpace</strong>. The user is already logged<br />
in because he or she had already logged onto the web site. Before the user<br />
gains access, the web site makes a SOAP call to the <strong>ChatSpace</strong> server asking<br />
if the user exists.<br />
If the user exists in the <strong>ChatSpace</strong> database, the web site requests the Pass<br />
Ticket.<br />
115