Table of Contents

What is Single SignOn/SignOff

MageLink connects the login/logout procedure of Magento and TYPO3. If you login to TYPO3, you’re being logged in also to Magento.

The process is not directly viewable by your customers, it happens invisible in the background on both systems.

After the user has logged in and the credentials are valid, the user will be imported to TYPO3 or Magento. You are able to configure the base system for the user data.

With the single SignOn, you also have the possibility to read your custom attributes that you added by your own customer modules in Magento.

When a user is assigned to a group, MageLink will try to find a group with the same name on the opposite system and add the user to the found group.

Procedure when the user source is TYPO3

TYPO3

  • Authenticate TYPO3 User by JSON Request
  • Add hash to TYPO3 User
  • Export to Magento (Export First-Time Login Hash to user)
  • Generate encrypted string with credentials
  • Send encrypted credentials to Magento

Magento

  • Decrypt credentials string
  • Authenticate Magento User
  • Check Remote Address
  • Check User hash
  • Generate encrypted String with credentials and success information

TYPO3

  • Check TYPO3 User hash
  • Remove hash
  • Redirect to custom site or stay on page

Procedure when the user source is Magento

TYPO3

  • Generate Hash
  • Generate Encrypted String with credentials
  • JSONP-Call to Magento with encrypted credentials

Magento

  • Decrypt credentials string
  • Authenticate Magento User
  • Check Remote Address
  • Add hash to user
  • Generate Encrypted String with credentials and success information

TYPO3

  • Decrypt success information and credentials
  • Check import user hash
  • Import User to TYPO3
  • Check fetched hash with existing hash/time
  • Import TYPO3 User
  • Authenticate TYPO3 User
  • Remove hash
  • Redirect to custom site or stay on page