I currently have several websites that live in separate domains:
www.app1.com
www.app2.com
www.app3.com
Each of them has its own authentication mechanism - some active catalog of requests through a web service, others have their own user database.
The goal is to have single sign-on through some technologies or products that do not require users to re-enter passwords when visiting pages through domains.
Question: After reviewing SAML , it looks like the SSO gateway solution will always require a third-party identity provider to authenticate users , for example:
www.my-master-login.com
It's true?
, , - , ?