Forum OpenACS Q&A: How to create a single-sign-on mechanism for integrating external resources

Dear all,

who has experience with creating a single-sign-on mechanism for integration external pages and resources. We have online tutorials that are PHP based and want to offer the via .LRN/OpenACS using a redirect mechanism.

Any idea how this could look like?

Best regards,
Nima

Check out the gatekeeper package - it passes the http request through to external applications and applies openacs security features. It does not provide a way to inform the external app about the currently logged in user though, it just allows or disallows access.
The 'auth-server' package lets OpenACS act as an authentication server in a single-sign-on scheme. It will require that you implement some very simple code on the PHP end to use it.