SSO + Cookie Authentication
This authentication design can be used when you have MSS 2010 in your environment, but have chosen not to use the Secure Store service and the SharePoint servers and MashZone NextGen Servers for your mashup sites are located in the same domain.
Same Domains
Domains are the same for SharePoint and MashZone NextGen Servers when the domain names fit either of these patterns:
*.domain-name.type
domain-name.type:different-port
For example, if the SharePoint server domain is site1.com, then a MashZone NextGen Server in the domain ms.site1.com or site.com:8080 would be in the same domain.
Note: | The patterns for matching domain names are a restriction of Internet browsers. |
With cookie forwarding, a user must login once with a MashZone NextGen Server. These credentials are stored as a cookie in the browser where the user is working in SharePoint. This cookie is passed by the browser to the MashZone NextGen Server in subsequent requests so no further login challenges are issued.
Note: | MashZone NextGen Servers use only basic user credentials (username and password). They do not accept NTLM credentials which include Windows domains as part of the user name. |