68 comments found.
is it posible to place this engine only for backend? i want to build SSO engine like this Vue -> Laravel -> Your SSO -> Database
Vue for front end/interface such as, Login form, register form, forgot password Laravel for logic, will be complex logic in this area and as a forwarder Your SSO, accesed by Laravel via API, laravel can’t access database. response from yours will be forwaded to user by laravel
is it need major or minor adjustment?
thank you
btw, secara overview sistemnya keren pak 
salut
Yes, OpenSSO is First Rest API means you can setup OpenSSO for backend only. No need major adjustment, you can do anything directly via API.
Terima kasih, semoga sistem saya bisa bermanfaat.
i have tried your API for login. i have 2 questions
when i have retrieved token from API : 1. where should i store this token? is it use cookie? because this token will used by another subdomain (another application
2. can i use the token on another PC for direct login? if No, what is the scheme that prevent it?
1. You can save the token into Redis or Session. It doesn’t use any Cookie.
2. Yes, as long as you have the token, you can login everywhere.
Here is the example working with Laravel >> https://gitlab.com/nanowebdev/example/opensso/laravel-8
you can try using it with our demo.
oh i see, So. the laravel sample is other app simulation? if i have 3 application. i sholud deploy your laravel sample to 3 subdomain. And then I will try to test login scheme
is it right?
Yes, that’s right!
Hi, Author
The problem appears after you work on my website.
Not Available for Service Your request cannot be fulfilled at this time by the server because of maintenance downtime or capacity issues. Please give it another go later.
Would you kindly check?
Done, I’ve been fixed it.
Thank you
Hello Author,
I send you a message via your email, please check it is very important.
Thanks
Hi, please check your email again.
I tried to redirect the subfolder to subdomain, but it is not working.
Thanks Author for your help.
Hello Author,
I tried to install your script several times, but I always got errors. I need your help, please.
Kindly response.
sure, I’ll help you, just tell me the errors detail via email.
Hello Author,
It’s time to start using your script on our webpages. Can I use the folder extension of my website to install your script? for instance, mywebsite.com/signon?
Please respond.
can we talk more detail via email? my email is aalfiann@gmail.com.
Hello Aalfiann,
It’s about time to use your script on our website. Can I install your script in a subfolder (subdirectory)? Example: mywebsite.com/signon
I also sent you a message to your email.
Kindly reply.
I’ve been replied.
I am appreciative of your installation work.
Please check your email again.
Please assist,
How can I change the content, photo backdrop, logo, and a few other details?
Hi…
Can I have a further discussion about the product I purchased? https://codecanyon.net/item/open-sso-single-sign-on-nodejs/sure, you can directly talk with me via email aalfiann@gmail.com
Hi
I have few queries,
1. In your SSO (Single Sign-On) script, does the refresh token renew according to our configured time settings?
2. When integrated with more than 7 applications, if a user logs in to one application, can the other applications automatically recognize the user’s login without forcing them to log in again? For example, similar to how Envato Market works—when I log in to CodeCanyon, it automatically logs me in to other network applications like ThemeForest.
Hi,
That’s a very nice question, I’ll answer it.
1. OpenSSO doesn’t manage user session (everything is stateless), so there is no need a refresh token.
Once user login, they will get a token include with expiry time information.
And Yes, you can set how long the expiry time.
2. OpenSSO doesn’t manage user session, The way OpenSSO working is similar like Google Login or Facebook Login.
When you signin using Facebook, then want to go site A or then site B, you can use same ID, you might be facing a signin form but you don’t required to re-input a password again.
But in case if you want the way like a Envato market does, you have to manage the user token by yourself.
In OpenSSO there is a Webhook feature, so you can broadcast the token to your all websites.
You need to create a webhook listener, then you can save the broadcasted token into redis or something else.
The point is as long as you have the token, then you’re authenticated, you don’t have to do a repeating signin.
will the token refreshes? is that mechanism added? or is there any idea implementing
As default, it won’t refreshed, but it gives me an idea to create an API for refreshing the token manually. I’ll adding this feature in the next update.
Thanks
not now, but yes its on the plan.
I have like 6 php apps that I’d like to implement your script with and I’d like to hire u for that. How much would that be?
we can talk about this via email aalfiann@gmail.com.
I have several applications on different domains on the same server (VPS) and was wondering if your SSO solution would still work for me if I wanted one log-on and then access to the various applications.
Yes, this OpenSSO was created for this solution..
To implement OpenSSO is similar like when you adding Google or Facebook login.
but yeah, it’ll require a basic programming knowledge to modify your script.
Learn more at here >> https://opensso.nanowebdev.eu.org/docs/guides/integration
hello,
can we expect integration of keycloak and also other idps too?
yeah I have plan to integrate it in the future, its a nice idea, your users could switching platform from others idps into opensso easier, but currently is not a high priority and there is no ETA.
Hi, Some of my websites have different information requirements, such as “vendor type” or “address”, where as some do not require this information. How can I unify the sign up process and still require this?
Best Regards.
ah yes, actualy the fields “data” is dynamic, you can set whatever information on your data user.
1. The registration requirement is only, username, email and password.
2. Then the next step is bring your user to do sign-in process.
3. Then last step is to update their user information.
4. Done
The next things that needed to modify is:
1. my-profile page
You need to modify the form fields from its page and adjust it with your custom fields.
https://opensso.nanowebdev.eu.org/docs/guides/api/user-profile#b-update-my-profileHope this help
Hello. Is LDAP supported or is support planned in future updates?
Currently, OpenSSO doesn’t support LDAP.
Yeah, I have plan for LDAP and it might be supported in the future but there is no ETA.
Thank you for your reply! Under compensation is it possible to speed up the time to include LDAP?
you created a great product, these day I Am searching for this similar opensource project, But I will go with it.
Is it able to connect a node js software, some backend is developed on ruby on rails?
and postgresql 16 used as database server.
1. yes, its able to connect into nodejs or any backend built from any framework or any language programmng.
You only add middleware into your backend to verify the signature jwt token.
I don’t have an example starter template working with Ruby, but you can learn it from here >> https://opensso.nanowebdev.eu.org/docs/guides/integration
2. OpenSSO support multiple databases, SQLite3, MySQL, MariaDB and PostgreSQL.
The demo isn’t working bud
Ah yes, In the end of may, I did migration to other hosting provider, but I got a probem with KYC, so I’m in progress to fill up the information. but their support service takes in days. very slow.
but don’t worry, it gonna be available again soon.
thanks for your information,
Get $200 free credit with my link
https://m.do.co/c/b5f43878b40f
haha, thanks man, but I’ve already paying for 1 year. I’ll save it and will use it in the future.
now the demo is working
Hi would I need to sign up to oauth or okta etc to implement this into my sites apps? I’m using a mixture of laravel / codeigniter / react apps, also do all apps have to be on the same server / droplet (digitalocean) at the minute I’ve installed all on 1 droplet using nginx.conf for sub domains pointing to each app, but in future id like to move them to there own independent droplet, also I’m using cloudflare
Still learning so if I’ve not explained properly my apologies
Hi,
1. You don’t need to sign up other party like oauth or okta. by buying this script you have your own SSO, you have control all of your users.
2. You don’t have to put all your applications into one server. OpenSSO could working into multiple website with different server, different domain, different framework, etc. But it also doesn’t matter if you put it all into one server machine.
btw, that’s good if you’re using cloudflare, it’ll more easier to manage multiple websites.
Is it easy to set up ? I don’t just mean installing the main script, I mean integration with other apps
I would say its easy,
Adding OpenSSO Login is similar like adding Google Login.
But technically it would require a basic programming skill.
You can read here >> https://opensso.nanowebdev.eu.org/docs/guides/integration
then read here if you want to completely migration >> https://opensso.nanowebdev.eu.org/docs/guides/migration
Also there is an example starter template >> https://opensso.nanowebdev.eu.org/docs/guides/integration#example-or-starter-template
Hi, Is there 2FA support built in ?
not yet implemented, but I have plan to add 2FA in the future.
Now 2FA/MFA is ready.
hi, How to use the administrator account to try out this demo?
tell me your username on live demo opensso via my email aalfiann@gmail.com, I’ll set you an admin role.
Hi Author,
I purchased your script and have not installed it on my server yet.
Registration on my website is by invitation via a referral link url.
Clarification question. Does the Open SSO work with a referral link URL?
Please reply
No, OpenSSO doesn’t have referral link feature..
But, there is a way:
After finished registering from referrall link, send its data to the OpenSSO using API to register it. so OpenSSO will have same user data with your website.
For more detail about API, you can import file postman_collection.json using Postman Application.
Need to learn how OpenSSO API works, please see >> https://opensso.nanowebdev.eu.org/docs/category/api
Hi,
How to build a database with a domain name?
I have a few websites, where i want users to login using a button across different sites without physically logging into each one.
I need details populating.
Hi,
1. Sorry its no clear to me, what do you mean about build database with domain name?
2. Yes, you can make your user to login only once, then they can go across different sites. The point is just keep token from opensso.
To achieve this, you’ll need to find a way about how to save the token to another database (you can use redis if it sits on same physical server) which is the other websites could access it database just to get the token.
3. If you want the details about populating datatbase, you can see the file sql on database directory. I’ve put the structure on there.
