we have another system which should be setup as a tab in Salesforce and clicking the tab the user should login into the system using Salesforce session.
1) Should the single signon be done at the other system?
You can use the API_Session_ID and API_Server merge fields when constructing URLs for custom links or custom tabs, the recieving website can use these parameters to validate the user and initialize the salesforce api.
Its a different kind of single sign on than those. You have a sessionid & serverUrl passed to your webpage and you can use this to establish the identity of the salesforce.com user, this doc on single sign on for composite apps has all the details.
You need to enable single sign on.
Use following links
https://login.salesforce.com/help/doc/en/salesforce_single_sign_on.pdf
http://boards.developerforce.com/t5/Security/SAML-SSO-With-Salesforce-Com-A-Dummy-s-Explanation/m-p/246037
http://boards.developerforce.com/t5/Security/How-to-turn-on-Delegated-Authentication-SSO/m-p/275411
If a reply to a post answers your question or resolves your problem, please mark it as the solution to the post so that others may benefit.
Chamil's Blog
Hi Chamil,
Thanks for your reply.
My question is :
we have another system which should be setup as a tab in Salesforce and clicking the tab the user should login into the system using Salesforce session.
1) Should the single signon be done at the other system?
i am still a little confused where to start??
Thanks,
Sales4ce
You can use the API_Session_ID and API_Server merge fields when constructing URLs for custom links or custom tabs, the recieving website can use these parameters to validate the user and initialize the salesforce api.
mike
Hi,
You have to enable single sign on in salesforce. Here is the path
Setup-->Security Control-->Single sign on
If a reply to a post answers your question or resolves your problem, please mark it as the solution to the post so that others may benefit.
Its a different kind of single sign on than those. You have a sessionid & serverUrl passed to your webpage and you can use this to establish the identity of the salesforce.com user, this doc on single sign on for composite apps has all the details.
and a more secure version of the same idea...