User Authentication
22 views
Skip to first unread message
My3
Sep 22, 2008, 10:59:01 AM9/22/08
to Google App Engine
Can we use the Google Apps users to login to our own web application.
I have Google Apps account for my domain.
I want my domain users to access my web application. Can i do it.
Else
Can i forward them to my web application after authenticating then in
Google App Engine.
I have Google Apps account for my domain.
I want my domain users to access my web application. Can i do it.
Else
Can i forward them to my web application after authenticating then in
Google App Engine.
Sam G
Sep 22, 2008, 4:57:50 PM9/22/08
to Google App Engine
My3,
Yes, you can integrate with your existing (and future) Google Apps
user accounts.
When setting up an application (go to appengine.google.com, sign in,
select "Create an Application"), click on the link at the bottom of
the page labeled "Edit", under "Open to all Google Accounts users
(default)". Select the radio button for "Restricted to the following
Google Apps domain:", and enter your domain name in the box.
Push save, and it will now use your existing user accounts and
passwords.
Sam
Yes, you can integrate with your existing (and future) Google Apps
user accounts.
When setting up an application (go to appengine.google.com, sign in,
select "Create an Application"), click on the link at the bottom of
the page labeled "Edit", under "Open to all Google Accounts users
(default)". Select the radio button for "Restricted to the following
Google Apps domain:", and enter your domain name in the box.
Push save, and it will now use your existing user accounts and
passwords.
Sam
My3
Sep 22, 2008, 10:08:38 PM9/22/08
to Google App Engine
Sam,
Yes i am currently using it. But i want to host an application
elsewhere which has to be used only by these Google Apps users.
So for that can i use Google App engine to forward the authentication.
Or else can i use any other authentication.
My3
Yes i am currently using it. But i want to host an application
elsewhere which has to be used only by these Google Apps users.
So for that can i use Google App engine to forward the authentication.
Or else can i use any other authentication.
My3
Wooble
Sep 23, 2008, 7:29:40 AM9/23/08
to Google App Engine
On Sep 22, 10:08 pm, My3 <mythriki...@gmail.com> wrote:
> Sam,
>
> Yes i am currently using it. But i want to host an application
> elsewhere which has to be used only by these Google Apps users.
>
> So for that can i use Google App engine to forward the authentication.
> Or else can i use any other authentication.
and redirects to a page in your application with whatever kind of
information you want about them.
My3
Sep 23, 2008, 8:38:03 AM9/23/08
to Google App Engine
But then the redirected page link cannot be static right. Like if once
they know the redirected page link, then they will open the link from
history without login into Google App Engine.
they know the redirected page link, then they will open the link from
history without login into Google App Engine.
Wooble
Sep 23, 2008, 10:06:23 AM9/23/08
to Google App Engine
Well, obviously a static webpage is going to have no way of knowing
whether there was any authentication done in the first place, and a
model, of security through obscurity by only making that static link
available on a GAE website that itself requires authentication isn't
really security at all.
If you really want to make the user visit GAE to authenticate every
time instead of saving the redirected link, using expiring session IDs
is fairly trivial, even if it is complicated a bit by having to pass
session data between 2 different systems.
whether there was any authentication done in the first place, and a
model, of security through obscurity by only making that static link
available on a GAE website that itself requires authentication isn't
really security at all.
If you really want to make the user visit GAE to authenticate every
time instead of saving the redirected link, using expiring session IDs
is fairly trivial, even if it is complicated a bit by having to pass
session data between 2 different systems.
Sam G
Sep 23, 2008, 1:27:27 PM9/23/08
to Google App Engine
My3,
I think what you're looking for is Single Sign On. This is supported
in Google Apps Premiere and Education editions (it is one of the
premium features). It allows you to delegate authentication to a
service you specify. If you are controlling authentication, than you
can keep session information on hand and have the user log in once,
and be logged in to both Google Apps and your applications.
Note that it is currently not possible to use the Google Apps user
store as your backend.
There is currently a GAE open source project for authenticating off of
GAE. It is called GAEHeimdall:
http://code.google.com/p/gaeheimdall
It is still in the planning stages.
Sam
I think what you're looking for is Single Sign On. This is supported
in Google Apps Premiere and Education editions (it is one of the
premium features). It allows you to delegate authentication to a
service you specify. If you are controlling authentication, than you
can keep session information on hand and have the user log in once,
and be logged in to both Google Apps and your applications.
Note that it is currently not possible to use the Google Apps user
store as your backend.
There is currently a GAE open source project for authenticating off of
GAE. It is called GAEHeimdall:
http://code.google.com/p/gaeheimdall
It is still in the planning stages.
Sam
Reply all
Reply to author
Forward
0 new messages