Design And Implementation Of The Unified Authentication And Single Sign On System Of Digital Library

With the wide application of the network information, the library system is also gradually enrich people’s lives. When the user logs on a different library systems, he need to enter the user name in different clients, this is inconvenience. For example, the user’s password is easily forgotten, if he needs to keep in mind a number of different passwords and account names, then he may be confused and forget the passwords more likely, this situation result in the increasing costs. And when accessing library system on the network, system often occurs alert remote login. But if the user choose to use the simple and same password to successfully log on different library systems, which will decrease system security. Furthermore, multiple reader account name will bring a lot of data, this will increase the management workload, the system can not cross-domain to other systems to set the data. So, we designed the unified authentication and single sign-on system, to insure the reader can access different systems by logging once under protection.In this paper, we investigate the library system’s current situation at home and abroad, after demand analysis, then detailed introduce design and implementation of the system. The purposes of the digital unified authentication and single sign-on system are bringing convenience to readers and optimizing the system maintenance and management. When the user wants to access different location library systems, he only needs to log on once, this greatly facilitate the users. How to realization a single sign-on point:Arrange the browser, authentication servers, local single sign-on and application servers in the local network. How to realization a cross-domain authentication:arranged to use the client browser, each sub- node and the central node of single sign-on server, unified real-name user database systems, application servers. In the meanwhile, propose a new design ideas and technical solutions for improvement. There are still some problems and technical difficulties in the unified authentication and single sign-on system:identity information confirm when across domains; user identity assertion generation, request, parse; generating user ticket, get, delete; data exchange encrypted and protected with a digital signature technology; Based on SAML authentication mode and Webservice of interactive, integrate different application modules. Finally, testing and inspection the system platform and the test environment, analysis and comparison of the test results and subsequently present the summary and outlook for the project.System design target:to achieve unified identity management and authentication when cross-domain or across systems, and establish a comprehensive safe authentication interface, so that the system can be used in the central node and subordinate nodes.To meet the practical requirements on a single machine in the case of 3000 concurrent users, the response time remains within 3s.