Further optimize Yii2 cross-domain SSO login Livzon portal sso sso.dinghuo123 sso-PHP Tutorial-php.cn

Home

Backend Development

PHP Tutorial

Further optimize Yii2 cross-domain SSO login Livzon portal sso sso.dinghuo123 sso

WBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWB

Jul 29, 2016 am 08:52 AM

ssoyii

data-id="1190000004999380" data-licence="">

Preface

This article is mainly an improvement on "How Yii2 implements cross-domain SSO login analysis", because I have already written about SSO in that article The basic implementation process of login is now further optimized. There are two main optimization points: 1. When entering login.XXX.com in the address bar of the login status page of www.XXX.com, you will return to the login page, but do not log out, and then enter www.XXX.com time, let it return to the www.XXX.com page and remain logged in; 2. Modify the expiration time of the session and set it to a maximum value.

Requirement Analysis

1. Entering login.XXX.com will only return it to the login interface, but it will not exit the login. The values of session and cookie are still saved.
2. Achieve permanent login status. As long as you don't click to log out, you will remain logged in.

Code analysis

1. Modify the Login method of the login module SiteController.php
1.1, modify the code before

<code>public function actionLogin()
        {   
            $URL=Yii::$app->request->get('redirectURL');  
            $model = new LoginForm();
            if (!\Yii::$app->user->isGuest) { 
                $this->actionLogout();//退出登陆
                return $this->redirect('http://'.DOMAIN_LOGIN.'?redirectURL=http://'.DOMAIN_HOME);
            } 
        
            if ($model->load(Yii::$app->request->post()) && $model->login()) {
                if(empty($URL)){
                    return $this->redirect('http://'.DOMAIN_HOME,301);
                }else{
                    return $this->redirect($URL,301);
                }           
                // return $this->goBack();
            } else { 
                return $this->renderPartial('login', [
                    'model' => $model,
                ]);
            }
        }</code>

1.2, modify the code

<code> public function actionLogin()
    {  
        $URL=Yii::$app->request->get('redirectURL');  
        $URL1='http://'.DOMAIN_CRM;
        $URL2='http://'.DOMAIN_HR;
        $URL3='http://'.DOMAIN_ADMIN;
        $URL4='http://'.DOMAIN_OA;
       
        $redirectURL1='http://'.DOMAIN_LOGIN.'?redirectURL=http://'.DOMAIN_CRM;
        $redirectURL2='http://'.DOMAIN_LOGIN.'?redirectURL=http://'.DOMAIN_HR;
        $redirectURL3='http://'.DOMAIN_LOGIN.'?redirectURL=http://'.DOMAIN_ADMIN;
        $redirectURL4='http://'.DOMAIN_LOGIN.'?redirectURL=http://'.DOMAIN_OA;
        $model = new LoginForm();

        //验证是否已登录，非空为登录
        if (!\Yii::$app->user->isGuest) { 
           if(!empty($URL)){
                $this->actionLogout();//退出登陆
                if($URL==$URL2){
                    return $this->redirect($redirectURL2);
                }elseif($URL==$URL3){
                    return $this->redirect($redirectURL3);
                }
                if($URL==$URL4){
                    return $this->redirect($redirectURL4);
                }
                return $this->redirect($redirectURL1);

           }else{
                //redirectURL不存在时，提交表单判断
                if(DOMAIN_LOGIN){   
                   if ($model->load(Yii::$app->request->post()) && $model->login()) {
                        if(empty($URL)){ 
                            return $this->redirect($URL1,301);             
                        }else{
                            if($URL==$URL2){
                                return $this->redirect($URL2,301);
                            }elseif($URL==$URL3){
                                return $this->redirect($URL3,301);
                            }
                            if($URL==$URL4){
                                return $this->redirect($URL4,301);
                            }
                            return $this->redirect($URL1,301);
                        }           
                    } else { 
                        return $this->renderPartial('login', [
                            'model' => $model,
                        ]);
                    }
                }else{ 
                    return $this->goHome(); //与之前的代码主要的区别在这里，登陆就让它回到登陆页面。
                }  
           }  
        } else { 
            //redirectURL存在时，提交表单判断
            if ($model->load(Yii::$app->request->post()) && $model->login()) {
                if(empty($URL)){ 
                    return $this->redirect($URL1,301);             
                }else{
                    if($URL==$URL2){
                        return $this->redirect($URL2,301);
                    }elseif($URL==$URL3){
                        return $this->redirect($URL3,301);
                    }
                    if($URL==$URL4){
                        return $this->redirect($URL4,301);
                    }
                    return $this->redirect($URL1,301);
                }           
            } else { 
                return $this->renderPartial('login', [
                    'model' => $model,
                ]);
            }
        }
    }</code>

2. Modify the expiration time of the session and set it to a maximum value.
commonconfigmain.php
2.1. Code before modification

<code>'session' => [           
            'cookieParams' => ['domain' => '.' . DOMAIN, 'lifetime' => 0],            
            'timeout' => 3600,
        ],</code>

2.2. Code after modification

<code>'session' => [           
            'cookieParams' => ['domain' => '.' . DOMAIN, 'lifetime' => 0],            
            'timeout' => 7200,
        ],</code>

FAQ

1. Although the session expiration time has been set to a maximum value and the login success cookie has value, but after login about It will still log out after about two hours. Why is this? How to achieve true permanent login in Yii2? I would like to ask the experts to explain. If I solve the problem in the future, I will continue to update and make progress together.

Related information

Yii2 configuration Cross-domain login example: http://www.kuitao8.com/20150507/3735.shtml
Yii2 How to use redirect to automatically jump to an external site? : https://segmentfault.com/q/1010000002549004

The full text is complete. If there are any shortcomings or better methods, everyone is welcome to actively propose them. Let's communicate and learn from each other.

The above introduces the further optimization of Yii2 cross-domain SSO login, including the content of sso and yii. I hope it will be helpful to friends who are interested in PHP tutorials.

Statement

The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn

如何使用PHP实现高效稳定的SSO单点登录Oct 15, 2023 pm 02:49 PM

如何使用PHP实现高效稳定的SSO单点登录引言：随着互联网应用的普及，用户面临着大量的注册和登录过程。为了提高用户体验，并减少用户的注册和登录间隔，许多网站和应用开始采用单点登录（SingleSign-On，简称SSO）技术。本文将介绍如何使用PHP实现高效稳定的SSO单点登录，并提供具体的代码示例。一、SSO单点登录原理SSO单点登录是一种身份认证的解决

PHP中的OAuth：构建一个多平台SSO解决方案Jul 28, 2023 pm 09:38 PM

PHP中的OAuth：构建一个多平台SSO解决方案随着互联网的快速发展，人们在多个平台中使用各种应用程序已成为常态。这就带来了一个问题：如何实现在不同平台间的单点登录（SSO）？OAuth（开放授权）成为了解决这个问题的优秀选择。OAuth是一个开放标准，允许用户在不共享他们的凭据的情况下，授权第三方应用程序访问他们的互联网资源。OAuth可以用来构建一个多

如何使用PHP框架Yii开发一个高可用的云备份系统Jun 27, 2023 am 09:04 AM

随着云计算技术的不断发展，数据的备份已经成为了每个企业必须要做的事情。在这样的背景下，开发一款高可用的云备份系统尤为重要。而PHP框架Yii是一款功能强大的框架，可以帮助开发者快速构建高性能的Web应用程序。下面将介绍如何使用Yii框架开发一款高可用的云备份系统。设计数据库模型在Yii框架中，数据库模型是非常重要的一部分。因为数据备份系统需要用到很多的表和关

Yii2 vs Phalcon：哪个框架更适合开发显卡渲染应用？Jun 19, 2023 am 08:09 AM

在当前信息时代，大数据、人工智能、云计算等技术已经成为了各大企业关注的热点。在这些技术中，显卡渲染技术作为一种高性能图形处理技术，受到了越来越多的关注。显卡渲染技术被广泛应用于游戏开发、影视特效、工程建模等领域。而对于开发者来说，选择一个适合自己项目的框架，是一个非常重要的决策。在当前的语言中，PHP是一种颇具活力的语言，一些优秀的PHP框架如Yii2、Ph

php如何使用Yii3框架？May 31, 2023 pm 10:42 PM

随着互联网的不断发展，Web应用程序开发的需求也越来越高。对于开发人员而言，开发应用程序需要一个稳定、高效、强大的框架，这样可以提高开发效率。Yii是一款领先的高性能PHP框架，它提供了丰富的特性和良好的性能。Yii3是Yii框架的下一代版本，它在Yii2的基础上进一步优化了性能和代码质量。在这篇文章中，我们将介绍如何使用Yii3框架来开发PHP应用程序。

Yii框架中的数据查询：高效地访问数据Jun 21, 2023 am 11:22 AM

Yii框架是一个开源的PHPWeb应用程序框架，提供了众多的工具和组件，简化了Web应用程序开发的流程，其中数据查询是其中一个重要的组件之一。在Yii框架中，我们可以使用类似SQL的语法来访问数据库，从而高效地查询和操作数据。Yii框架的查询构建器主要包括以下几种类型：ActiveRecord查询、QueryBuilder查询、命令查询和原始SQL查询

Symfony vs Yii2：哪个框架更适合开发大型Web应用？Jun 19, 2023 am 10:57 AM

随着Web应用需求的不断增长，开发者们在选择开发框架方面也越来越有选择的余地。Symfony和Yii2是两个备受欢迎的PHP框架，它们都具有强大的功能和性能，但在面对需要开发大型Web应用时，哪个框架更适合呢？接下来我们将对Symphony和Yii2进行比较分析，以帮助你更好地进行选择。基本概述Symphony是一个由PHP编写的开源Web应用框架，它是建立

yii如何将对象转化为数组或直接输出为json格式Jan 08, 2021 am 10:13 AM

yii框架：本文为大家介绍了yii将对象转化为数组或直接输出为json格式的方法，具有一定的参考价值，希望能够帮助到大家。

See all articles

Hot AI Tools

Undresser.AI Undress

AI-powered app for creating realistic nude photos

AI Clothes Remover

Online AI tool for removing clothes from photos.

Undress AI Tool

Undress images for free

Clothoff.io

AI clothes remover

AI Hentai Generator

Generate AI Hentai for free.

Hot Article

Repo: How To Revive Teammates

1 months agoBy尊渡假赌尊渡假赌尊渡假赌

R.E.P.O. Energy Crystals Explained and What They Do (Yellow Crystal)

2 weeks agoBy尊渡假赌尊渡假赌尊渡假赌

Hello Kitty Island Adventure: How To Get Giant Seeds

1 months agoBy尊渡假赌尊渡假赌尊渡假赌

How Long Does It Take To Beat Split Fiction?

4 weeks agoByDDD

R.E.P.O. Save File Location: Where Is It & How to Protect It?

4 weeks agoByDDD

Hot Tools

Dreamweaver Mac version

Visual web development tools

MinGW - Minimalist GNU for Windows

This project is in the process of being migrated to osdn.net/projects/mingw, you can continue to follow us there. MinGW: A native Windows port of the GNU Compiler Collection (GCC), freely distributable import libraries and header files for building native Windows applications; includes extensions to the MSVC runtime to support C99 functionality. All MinGW software can run on 64-bit Windows platforms.