These forums have been archived and are now read-only.

The new forums are live and can be found at https://forums.eveonline.com/

EVE Technology Lab

 
 

sso login

Author
shawn312
Status Unknown.
#1 - 2017-07-09 22:53:15 UTC
i have a working sso but how should i work with multiple logins as in the same use will login back in to the web page do they need to do auth every time ?
Blacksmoke16
Resilience.
#2 - 2017-07-10 01:20:59 UTC
As long as you have an active refresh token for them you do not need them to reauth anything.

The way I handle this is storing the scopes that a person logs in with each time. Then, when the user goes to log in with more scopes, it sees what they are authing does not match what is stored so will fetch and store a new refresh token as well. However if they are logging out and back in with the same scopes it would retain the old refresh token since nothing is new.

You also can use cookies or something so that they do not have to sign back in when leaving and coming back to your site.