Single Sign On Implementation?
Using 3.5.4.
I'm not sure I understand the SSO implementation in Gemini. I'm supposed to send the Gemini a hashed version of their password to the service to sign them on?
What if I do not have their password and don't wish to? All of the other implementations I've worked with allow me to identify a user (I authorize THIS user to connect) and then send them to the application, no user password required.
Am I misunderstanding? I simply do not wish to have a user password passed, encrypted or not, through a query string.
mmatos
· 1 |
|
Wednesday, March 3, 2010, 1:14:50 AM |