Web-based Single Sign-On Approach for the Authorization Server Using OAuth 2.0 Protocol in Academic System
DOI:
https://doi.org/10.20823/g7td6z55Keywords:
Single Sign-On, OAuth 2.0, Authorization Server, Authentication, AuthorizationAbstract
Users can access several services simultaneously by remembering just one valid login and password thanks to Single Sign On (SSO), an access control method. Using Oauth 2.0 technology, this research creates a system that offers Single Sign-On services via a web application. OAuth is a mechanism to streamline the data exchange flow process, which involves at least two applications interacting with one another. It is an entity that can provide access rights to protected resources. The resource is supplied by an application known as an Oauth Provider, and the application that receives it is known as an Oauth client. The purpose of this study is to develop and put into practice protocols for the OAuth 2.0 technology's operating mechanism, which involves server authorization—the server resource that handles client credential authentication and authorization. Three (three) client apps that implemented the OAuth 2.0 authentication work procedure were employed as single sign-on applications in this study. By using the Authorization Server role for OAuth 2.0 authentication, the client's credentials will be verified against the data kept in the database. This is accomplished by issuing an authorization page (Authorise App), which will direct users to the home page of each individual web application. The creation of an access token for every web application serves as the last line of verification for the accuracy of a client's credentials.
References
M. Irsan, D. F. Murad and Ahsanfile, "Single Authentication for Multiple Access with SSO (Single Sign On)," in Seminar Nasional Inovasi dan Teknologi (SNIT) 2012, 2012.
E. Hammer, "OAuth 2.0," 11 2012. [Online]. Available: http://hueniverse.com/oauth/.
E. D. Hardt, "The OAuth 2.0 Authorization Framework," 10 2023. [Online]. Available: https://datatracker.ietf.org/doc/html/draft-ietf-oauth-v2-31.
Yosrinal, "Perancangan dan Implementasi Resource Server dan Authorization Server Menggunakan Teknologi Otentikasi OAuth 2.0," Universitas Sumatera Utara, Medan, 2014.
"About OAuth 2.0," 10 2023. [Online]. Available: http://oauth.net/2/. [Accessed 2023].
R. Byod, Getting Started With OAuth 2.0, California: O’Reilly Media, 2012.
Chiragsh, "OAuth 2.0," 10 2023. [Online]. Available: https://code.google.com/p/google-api-php-client/wiki/OAuth2.
A. Parecki, "OAuth 2 Simplified," 2023, 10. [Online]. Available: http://aaronparecki.com/articles/2012/07/29/1/oauth2-simplified.
S. Putera, R. Fibrian, A. F. Rohim and Y. Christiyono, "Pembangunan Sistem Otentikasi Terpusat Berbasis Lightweight Directory Access Protocol," Universitas Diponegoro, Semarang, 2011.
P. P. Nugroho, "Pengembangan Model Single Sign-On Untuk Layanan Internet dan Proxy IPB," Institut Pertanian Bogor, Bogor, 2014.
"Using OAuth 2.0 to Access Google APIs," Google Developer, 10 2023. [Online]. Available: http://developers.google.com/accounts/docs/OAuth2.
Downloads
Published
Issue
Section
License
Copyright (c) 2023 Tri Herdiawan Apandi, Mohammad Iqbal, Rian Piarna, Dwi Vernanda, Aulia Rizky Muhammad Hendrik Noor Asegaff (Author)
This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.
