Design And Implementation Of SSO System Based On SaaS Model

The traditional mode of software cannot be satisfied simultaneously for a plurality ofusers together to provide a service, are aimed at the individual customization demands ofdifferent users. Nowadays, with the development of network, users of the system is nowoperating more also, users in the business operation, user account and password forgottenthings often happen, or a user name and password system shared, causing confidentialitymeasures to reduce, brought great trouble to the safety of users. In the face of repeated userlogin, access, tedious account management and system settings work issues such as how tocontrol the system administrator user, brought a lot of work for the developers, is the bigproblem has plagued developers. In the IT system in heterogeneous application system ofsingle sign-on, simplify the user login process, establishing a reliable, safe, secure businesssystem in the network environment, to meet the needs of users and enterprises demand forconvenience and security management application system used is also very obvious.This paper summarizes the SaaS and single board status. From the user and the serviceprovider’s angle analyzes the advantages and disadvantages of SaaS model and the solution,analysis of the relevant technology in current single sign-on. In order to meet the needs ofmulti-tenant single sign-on system, user authentication device interface is provided in the YaleCAS of the University on the expansion and reality, has carried on the analysis to thetraditional single sign-on and proposes the SaaS-CAS model. Design and implementation ofSSO system based on SaaS mode, the system can meet the multi-tenant, single sign-onauthentication center across different application system, so that the distribution in thecertification of an internal various heterogeneous systems together, to avoid duplication ofdevelopment. The SSO abstract as a basic identity authentication service system.Authentication service system is used to filter the illegal request, the system focus on thebusiness logic of its own, need not worry about the legitimacy of the request. The system as ageneral, easy to expand, stability, security. To meet the demand of heterogeneous systems thanrent login, realize the whole network traffic to account, to enhance the user experience, savethe development time for the developers, to propose a single sign-on model based on SaaS isa new solution.