Secure the producer by HTTP-cookie-based single sign-on
We can provide security for the producer using HTTP-cookie-based single sign-on (SSO). For using this security option, the producer requires no configuration. The consumer must be configured to send or forward LTPA V2 single sign-on cookies as part of the WSRP request message to the producer.
The single sign-on cookie represents a security credential that can be understood both by the consumer and the producer. The producer receives the cookie and establishes the corresponding security context for the user on the Producer side.
For using HTTP-cookie-based single sign-on, the producer must not be configured for Web Services Security.
- Prerequisites for using HTTP-cookie-based single sign-on:
- For using HTTP-cookie-based single sign-on (SSO), single sign-on must be configured between the consumer and the producer. This configuration requires the following two prerequisites:
- The consumer and the producer must be configured to use a shared user registry.
- The LTPA keys must be exchanged between consumer and WSRP Producer.
- Required consumer configuration:
- For using HTTP-cookie-based single sign-on, the consumer must be configured to forward single sign-on cookies to the producer. For more information, read Configure the consumer for HTTP-cookie-based single sign-on.
Parent Configure security on the Producer portalRelated tasks:
Secure the consumer by HTTP-cookie-based single sign-on