...
A table named SSO_TICKETS should exist with the following fields:
Campo Field | Tipo Type | Descripción Description |
|---|---|---|
Ticket | Varchar(100) |
|
Ticket_TS | Timestamp | Date and time when the ticket was created |
UserName | Varchar(50) | Username of user connected |
...
The field Ticket_TS is used to validate the ticket. The data in this field is used by O3 to make sure that the ticket has not been created for more than the predefined lifetime for the tickets. The expiration time is defined with a parameter.
...
Characteristics of the ticket
El ticket puede ser cualquier texto pero es recomendable:
- Que sea único, en general se utiliza la hora de la máquina como uno de sus componentes para garantizar esa unicidad
- Que no sea fácil de generar, por ejemplo que no sea un número secuencial, que permitiría "adivinar" un valor válido
Un ejemplo de una clase Java que puede ayudar a esta implementación es The ticket can be any text but the following is advisable:
- The ticket should be unique, generally the time of the machine is used as part of the ticket to ensure that it is not repeted
- The ticket should be hard to generate, i.e. it should not be a sequential number that would allow a process to "guess" a valid value
There is a Java Class that could help generating this ticket. This class is java.rmi.server.UID
Configuración de SSO según la propuesta planteada.
...