How to implement Single sign-on (SSO) / How to implement custom single sign-on |
Prevent direct access to the application and force the end user to enter a login and password.
CALL parseQueryString(query) RETURNING user, pwd, userQueryString, isCookie
Once the user and password have been retrieved from the query string, the service program checks whether the user name and password are valid.
If the user name and password are valid, the application can be started by creating the cookie for the user, as explained in Cookie handling.
CALL req.setResponseHeader("Content-Type", "text/html") CALL req.sendTextResponse(200,"Access Forbidden", html-error-page-string)