M
M
marshinov2015-05-26 19:38:28
ASP.NET
marshinov, 2015-05-26 19:38:28

Is OWIN suitable for cross-domain authorization on 2 + n sites incl. through social networks and in a mobile application?

Given:

  1. first site - marketplace + social platform
  2. second site - mini site builder (supports its second level domains)
  3. mobile application (IOS)

Task:
Move them across the river Set up cross-domain authorization on sites (with support for authorization through social networks) and authorization for API (mobile application and AJAX requests).
  1. When authorizing on site 1 or 2, it is necessary to authorize the user on both resources and preferably on the third domain (a personal domain tied to the constructor, if the user has one)
  2. Use one API controller for AJAX requests and mobile application requests, authorize with a cookie and / or token depending on the type of request, so as not to copy-paste the same methods for the phone API and AJAX requests

As far as I understand, OWIN already knows how to do this in MVC5, but I have never tried it. I know how to implement this using IHttpModule. The question is, is it worth contacting OWIN, will it give a win?

Answer the question

In order to leave comments, you need to log in

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question