1.首頁登錄頁面index.php(是你當前項目首頁)
<?php header('Content-Type:text/html; charset=utf-8'); $sso_address = 'http://www.mysso.com/sso/login.php'; //你SSO所在的域名,不是當前項目地址 $callback_address = 'http://'.$_SERVER['HTTP_HOST'] .str_replace('index.php','',$_SERVER['SCRIPT_NAME']) .'callback.php'; //callback地址用於回調設置cookie if(isset($_COOKIE['sign'])){ exit("歡迎您{$_COOKIE['sign']} <a href='{$sso_address}?logout=1'>退出</a>"); }else{ echo '您還未登錄 <a href="'.$sso_address.'?callback='.$callback_address.'">點此登錄</a>'; } ?> <iframe src="<?php echo $sso_address ?>?callback=<?php echo $callback_address ?>" frameborder="0" width="0" height="0"></iframe>
2.當前項目的中間件用來賦值cookie和清空cookie的文件callback.php
<?php header('Content-Type:text/html; charset=utf-8'); if(empty($_GET)){ exit('您還未登錄'); }else{ foreach($_GET as $key=>$val){ setcookie($key,$val,0,''); } header("location:index.php"); }
3.很重要的文件login.php(是sso登錄也要放在第三方網站下面)
<?php header('Content-Type:text/html; charset=utf-8'); if(isset($_GET['logout'])){ setcookie('sign','',-300); unset($_GET['logout']); header('location:http://www.zjx.com/sso/callback.php?sign'); //注意替換成你項目的域名 } if(isset($_POST['username']) && isset($_POST['password'])){ setcookie('sign',$_POST['username'],0,''); header("location:".$_POST['callback']."?sign={$_POST['username']}"); } if(empty($_COOKIE['sign'])){ ?> <form method="post"> <p>用戶名:<input type="text" name="username" /></p> <p>密 碼:<input type="password" name="password" /></p> <input type="hidden" name="callback" value="<?php echo $_GET['callback']; ?>" /> <input type="submit" value="登錄" /> </form> <?php }else{ $query = http_build_query($_COOKIE); echo "系統檢測到您已登錄 {$_COOKIE['sign']} <a href='{$_GET['callback']}?{$query}''>授權</a> <a href='?logout'>退出</a>"; }
原理:
根據你第三方登錄頁面輸入的信息,判斷是否用戶正確信息,然后記錄到cookie里面,然后帶上加密的sign,跳轉回去中間件文件callback.php,然后解密,進行當前項目的cookie進行賦值,然后跳轉回首頁,並且實現登錄了!