Download presentation
Presentation is loading. Please wait.
Published byAshlyn Carr Modified over 9 years ago
1
10/25/20151 Single Sign-On Web Service Supervisors: Viktor Kulikov Alexander Sherman Liana Lipstov Pavel Bilenko
2
10/25/20152 Background Multiple applications at the faculty use different sign on systems to identify the users. Multiple applications at the faculty use different sign on systems to identify the users. All users are students, staff or faculty members that have accounts on department server or at the main Technion systems such as T2, TX, Department Active Directory etc. All users are students, staff or faculty members that have accounts on department server or at the main Technion systems such as T2, TX, Department Active Directory etc.
3
10/25/20153 Why Bother? Each application must identify the user by creating and managing user profiles. Each application must identify the user by creating and managing user profiles. User that uses several applications has independent profile at each application (username, password, user information). User that uses several applications has independent profile at each application (username, password, user information). When changing some profile details user must do so at all existing profiles, which makes that simple update complex time consuming operation. When changing some profile details user must do so at all existing profiles, which makes that simple update complex time consuming operation. It also results in users that prefer not to update their profiles at all or to update profile on only some of the profiles. It also results in users that prefer not to update their profiles at all or to update profile on only some of the profiles. As a result several profiles of the same user contain different (not updated) information about the user. More over, user has different passwords for each profile. As a result several profiles of the same user contain different (not updated) information about the user. More over, user has different passwords for each profile.
4
10/25/20154 Project goals Create a managed single sign-on web service which will manage: Create a managed single sign-on web service which will manage: allowed software modulesallowed software modules authentication settings per moduleauthentication settings per module Make the web service configuration we page user friendly: Make the web service configuration we page user friendly: Easy, self explainable interface.Easy, self explainable interface. Comfortable designComfortable design No more new administrator=new applicationNo more new administrator=new application "Correct" programming "Correct" programming High cohesionHigh cohesion Low couplingLow coupling
5
10/25/20155 Concept Module calls web service Module calls web service Web service verify that application with given ID exist at configuration DB Web service verify that application with given ID exist at configuration DB If application exists, web service retrieves application settings from configuration DB If application exists, web service retrieves application settings from configuration DB Web service retrieves from application data sources ID or profile data and returns it to calling application Web service retrieves from application data sources ID or profile data and returns it to calling application
6
10/25/20156 Terms SOAP - Simple Object Access Protocol a protocol specification for exchanging structured information in the implementation of Web Services SOAP - Simple Object Access Protocol a protocol specification for exchanging structured information in the implementation of Web Services Web Service – Web Application Programming Interface (API) that can be accessed over a network and executed on a remote system hosting the requested services. Web Service – Web Application Programming Interface (API) that can be accessed over a network and executed on a remote system hosting the requested services. LDAP - Lightweight Directory Access Protocol an application protocol for querying and modifying directory services running over TCP/IP LDAP - Lightweight Directory Access Protocol an application protocol for querying and modifying directory services running over TCP/IP Active Directory - is a directory structure used on Microsoft Windows based computers and servers to store information and data about networks and domains Active Directory - is a directory structure used on Microsoft Windows based computers and servers to store information and data about networks and domains LINQ-Language Integrated Query is a Microsoft.NET Framework component that adds native data querying capabilities to.NET languages. LINQ-Language Integrated Query is a Microsoft.NET Framework component that adds native data querying capabilities to.NET languages.
7
10/25/20157 Main architecture diagram Web service LDAP LINQ to SQL Configuration DB Data sources SSLSOAP Applications
8
10/25/20158 Class diagram Builds proper URL for LDAP direcory Gets user ID from data sources for cpecified application Gets user data from data sources for cpecified application Varifies that provided ID is valid Adds provided message to Log table
9
10/25/20159 Sequence diagram When application asks web service for identification of a user the following actions happen: When application asks web service for identification of a user the following actions happen: 10/25/20159 Application WebService GetUserID/GetUserData IsValidModule(ApplicationID) buildURL(URL, baseDN) writeToLog(ApplicationID, msg)
10
10/25/201510 Web page Features Easy, self explainable interface :home page with instructions, tooltips, intuitive fields, confirmation request before deletion. Easy, self explainable interface :home page with instructions, tooltips, intuitive fields, confirmation request before deletion. Comfortable design :inactive fields, visual partition of attributes, pleasant colors. Comfortable design :inactive fields, visual partition of attributes, pleasant colors. A special Log tab that contains all the important errors received by webservice: helps the administrator to track those errors and understand their origin. A special Log tab that contains all the important errors received by webservice: helps the administrator to track those errors and understand their origin.
11
10/25/201511Snapshots
12
10/25/201512Snapshots
13
10/25/201513Snapshots
14
10/25/201514Snapshots
15
10/25/201515Snapshots
16
10/25/201516 What have we learned? Work With: LDAP, SOAP, XML files, LINQ, Active directory. Work With: LDAP, SOAP, XML files, LINQ, Active directory.
17
10/25/201517 Thank you.
Similar presentations
© 2024 SlidePlayer.com. Inc.
All rights reserved.