We have two different web applications with different servers, stacks, etc. Lets you call Host on host.example.com, and the other on the client at client.example.com.
We want our users to log into the Host system and pass on their credentials and other information to their customers (real name, email address, DOB, etc.). What is the best way to do this? The user accesses the client using a Javascript request when viewing a page on the host.
Criteria:
- The most important criterion is that changes to the Host should be as simple and easy as possible.
- We cannot redirect the user (although their JS requests are fair game).
- The host must be agnostic. The client is Django in the App Engine, but that doesn't really matter much, I think.
Two options we were thinking about:
API for the client for the host to transfer data. Roughly speaking, upon entering the system, the host selects the login / on Client and passes the session identifier along with the data.
Saving data is a signed or encrypted cookie. Judging by recent discussions about signed cookies in Django, this looks complicated. [/ P>
source
share