Skip to main content

How to integrate SSO on my site

GraphComment support team
  • Updated

Single Sign-On (SSO) access is currently available as an extension only for users with a Premium Expert level or higher subscription.

If you wish to subscribe to a Premium plan, you can do so by going to the PREMIUM PLANS tab of your ADMIN upgrade to a higher plan.

NOTE to WordPress plugin users: no need to follow the tutorial that will follow, SSO is already integrated. You just need to activate it in the "Plugin Settings" tab. After which, the connection to comment will be done via your WordPress blog.

Introduction

Single Sign-on (SSO) allows users to connect to a site and fully use GraphComment without having to authenticate again with Graphcomment. The SSO will create a user profile at the site on GraphComment if it does not already exist or it will merge the data if it exists by giving priority to the data on your website.

Procedure

  1. go to your Admin, Installation tab > SSO script
    mceclip0.png

  2. Copy the Back-end script and implement your solution in your environment following the instructions.
  3. Copy the Front-end script and use the ssoData string generated from your back-end code to send us the user information on our Javascript tag, this information is encoded in hmac sha1
  4. Manage the connection

in Auto connect mode

just attach generate the authentication string generated by your script in our tag to connect the user:

window.gc_params = {

sso_public_key:'your_public_key',

// dynamically replace with'ssoData' variable generated on the backend

sso_data:' <?php echo $ssoData; ?>''

};

in Custom Manual Connection Mode

You can add your own SSO connection and disconnection links on your buttons outside the iframe, for this, add this code

window.gcSsoLogin('<?php echo $ssoData; ?>');
Connection button

you can use our javascript function which will call an internal method to connect to our system where you want as long as

Redirection to your authentication page to generate the authentication string back afterwards.

window.gcSsoAuth = function() {

    // you can redirect to your login page:

    window.location.href ='/login';

}
Disconnect button

you can call our disconnect function on your disconnect button.

window.gcSsoLogout();

 

Related articles