HomeSitemap
EnglishDeutsch
One logon is enough.

Single Sign-On with User Propagation

Version 2 of the SSO framework brings a new feature called user propagation.

This means that
- a user that was created on the SSO server (e.g. in TYPO3)
- can now automatically be created on the Third-Party system.

This is (roughly) how it works:

user logon on to SSO server
     |
navigates to TPA
     |
regular SSO access is initiated
     |
Adapter returns "user unknown"
     |
now, if configured for "autocreate", SSO issues another SSO call that includes additional user specific data if available (full name, department, phone, ...) plus default data (default group, ...) that can be configured in the plugin.
     |
Adapter creates user and returns confirmation
     |
regular SSO access is initiated
     |
user access to TPA

User Propagation can be enabled in the TYPO3 plugin.

Also, the fields to be transferred can be defined here. Depending on the Target Application and its TPA adapter, there may be mandatory and optional fields. Please see the adapter's documentation sheet for details.

DirectSSO