Single Sign On

Single Sign On

Single Sign On (SSO)

Single sign-on is an authentication scheme that allows a user to log in with a single ID to any of several related, yet independent, software systems. True single sign-on allows the user to log in once and access services without re-entering authentication factors. (Wikipedia).

Octeth provides you a full featured SSO engine. This feature can be used to integrate Octeth with your other systems and let your users navigate between your services without re-entering authentication credentials.

Octeth supports multiple SSO sources. You can create unlimited amount of SSO sources in Octeth and use them to link multiple third party systems to your Octeth server.

Creating a SSO Source

In order to create a single sign on source, login to the admin area and go to [Admin Area → Settings → Single Sign On] section.

If this is the first time accessing this area, you will have an empty list. Click “Create SSO Source” link to create your first SSO source:

image

On the next screen, enter the name of the source, set a unique code to your SSO source, and fill-in other options:

image
FieldDescription
Source Name

Give a name to your SSO source. This name is private and never displayed publicly.

Source Code

Set a unique code for your SSO. It can be anything such as “mywebsite-test”

Description

Optionally, you can also explain the purpose of this SSO source.

Expires At

Optional. If you would like to expire SSO requests coming from this source, set an expire date for the SSO source.

Valid For

Define number of seconds to keep the SSO link valid. Make sure that you keep your SSO links valid for only a few seconds to minimize the risk of link phishing.

[_] Create New User

Once this option is checked, Octeth will create a new user account with the given information if there’s no matching user accounts in the system.

[_] Login the user

This option will make sure that a unique session is created for the SSO user.

[_] Return the user data

This option will force Octeth to return a JSON response with the user information and session ID instead of redirecting the user to the user area.

Once you create your new SSO source, you will be redirected to the credentials section:

image

You will see an example PHP code that explains how to encrypt the user data you would like to pass in the SSO request.

The id SSO request parameter is the important parameter and it must be unique for each user you are going to pass to the SSO system. Users accounts in Octeth will be created based on these unique ID numbers.

⚠️
WARNING: For security reasons, keep the validity of your SSO links as short as possible, such as 5 seconds.

You can create multiple SSO sources for each one of your integrations or internal systems. SSO authentication feature will give you great flexibility when moving your users from your other system to your Octeth. They will be able to switch between your systems without re-entering their login credentials.

Use Cases

Dashboard Access Button

If you would like to let users access Octeth from your other platform (dashboard, customer area, etc.), SSO is the easiest way to make it happen.

Simply create a new single sign on source in the [Admin Area → Settings → SSO] and set it just like in the screenshow shown below:

image

Once you have your SSO source is ready, the next step is to implement it into your other system. Whenever you want to redirect the user from your other system to Octeth, simply execute the SSO call, and then redirect user to the generated SSO link. This will make sure that user can access to his own user account in Octeth without entering username and password.

User Account Create

If you want to use SSO just for creating a user account in Octeth, simply set your SSO as shown below:

image

Once you execute the SSO link in your application, it will return a JSON payload including the created (or logged in) user information as well as a session ID which can be used for API calls (list create, audience import, campaign create, etc.).

ℹ️
Do you have a question? Don’t hesitate to contact us. We will be happy to help you with SSO and API integrations.
💠
image

Homepage Customer Area Community Portal Contact Us

Footer Social Icons

©Copyright Octeth, Inc. All rights reserved.