验证服务器
<?php
// +----------------------------------------------------------------------
// | Author: [email protected]
// | Date : 2018/1/9
// | Time : 18:35
// +----------------------------------------------------------------------
require '../Db.php';
session_start();
class Passport
{
/**
* 单点登录
*/
public function login()
{
if(isset($_POST['submit'])) {
$account = isset($_POST['account'])?trim($_POST['account']):null;
$password = isset($_POST['password'])?trim($_POST['password']):null;
$server = isset($_POST['server'])?trim($_POST['server']):null;
if(!$account || !$password){
$_SESSION['error'] = '账号或密码为空';
require 'sso.html';
die;
}
if(!$server){
$_SESSION['error'] = '非法操作';
require 'sso.html';
die;
}
$db = Db::getInstance();
$user = $db->table('user')->where(['account'=>$account, 'password'=>md5($password)])->find();
if(empty($user)){
$_SESSION['error'] = '账号或密码有误';
require 'sso.html';
die;
}
unset($_SESSION['error']);
header("location:".$server."?action=login&ticket=".$user['ticket']);
}else{
$server = isset($_GET['server'])?trim($_GET['server']):die('来源不明');
require 'sso.html';
}
}
/**
* 退出登录
*/
public function logout()
{
$url1 = 'http://a.com/index.php?action=logout&server='.$_GET['server'];
header('Location:'.$url1);
}
/**
* 验证ticket有效性
*/
public function verify()
{
$ticket = trim($_GET['ticket']);
//验证ticket有效性
if($ticket){
$db = Db::getInstance();
$user = $db->table('user')->where(['ticket'=>$ticket])->find();
if($user){
echo 'success';
}else{
echo "fail";
}
die;
}
echo 'fail';
die;
}
/**
* 通过ticket获取用户信息
*/
public function user()
{
$ticket = trim($_GET['ticket']);
$db = Db::getInstance();
$user = $db->table('user')->where(['ticket'=>$ticket])->find();
echo json_encode($user);
}
}
$action = isset($_GET['action'])?trim($_GET['action']):'login';
(new Passport())->$action();
html表单
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<title>单点登录</title>
</head>
<body>
<form action="index.php?action=login" method="post" >
<input type="hidden" name="server" value="<?php echo $server;?>" />
<?php if(isset($_SESSION['error'])): ?>
<span>error:</span><?php echo $_SESSION['error'];?><br>
<?php endif;?>
<label for="account">账号</label><input id="account" type="text" name="account" value="" />
<label for="password">密码</label><input id="password" type="text" name="password" value="" />
<input type="submit" name="submit" value="提交">
</form>
</body>
</html>站点 A
<?php
// +----------------------------------------------------------------------
// | Author: [email protected]
// | Date : 2018/1/9
// | Time : 18:04
// +----------------------------------------------------------------------
session_start();
class A
{
/**
*
*/
public function login()
{
$ticket = @$_GET['ticket'];
if(!empty($ticket)){
// 验证ticket有效性
$verify_url = 'http://passport.com/index.php?action=verify&ticket='.$ticket;
if(file_get_contents($verify_url)=='success'){
// 获取用户信息
$get_user_info_url = 'http://passport.com/index.php?action=user&ticket='.$ticket;
$user = file_get_contents($get_user_info_url);
$_SESSION['user'] = json_decode($user,true);
$this->index();
}else{
$msg = "您还未登录";
$url = "http://passport.com/index.php?action=login&server=http://a.com/index.php";
$this->_jump($msg,$url);
}
}else{
$msg = "您还未登录";
$url = "http://passport.com/index.php?action=login&server=http://a.com/index.php";
$this->_jump($msg,$url);
}
}
/**
* 若用户未登陆,则跳转到单点登陆
*/
public function index()
{
$ticket = @$_GET['ticket'];
if($ticket && !isset($_SESSION['user'])){
$verify_url = 'http://passport.com/index.php?action=verify&ticket='.$ticket;
if(file_get_contents($verify_url)=='success') {
// 获取用户信息
$get_user_info_url = 'http://passport.com/index.php?action=user&ticket=' . $ticket;
$user = file_get_contents($get_user_info_url);
$_SESSION['user'] = json_decode($user, true);
}else{
$msg = "您还未登录";
$url = "http://passport.com/index.php?action=login&server=http://a.com/index.php";
$this->_jump($msg,$url);
}
}
if($_SESSION['user']) {
$ticket = $_SESSION['user']['ticket'];
echo "<script src='http://b.com/index.php?action=login&ticket={$ticket}'></script>";
echo "A已登陆成功<a href='http://passport.com/index.php?action=logout&server=http://a.com/index.php'>退出</a><br>";
echo "<a href='http://b.com/index.php?action=index&ticket={$ticket}'>跳转到B</a>";
}else{
$msg = "您还未登录";
$url = "http://passport.com/index.php?action=login&server=http://a.com/index.php";
$this->_jump($msg,$url);
}
}
public function logout()
{
session_destroy();
$server = $_GET['server'];
$url1 = 'http://b.com/index.php?action=logout&server='.$server;
header('Location:'.$url1);
}
/**
* 跳转方法
* @param $msg
* @param $url
*/
private function _jump($msg, $url)
{
ob_clean();
echo "<a href='$url'>{$msg}</a><span id='time' >3</span>秒后跳转。";
echo "<script type='text/javascript'> var time = document.getElementById('time'); setInterval(function(){ time.innerHTML = parseInt(time.innerHTML) -1; if(time.innerHTML<1){ location.href='$url'}; },1000);</script>";
die;
}
}
$action = isset($_GET['action'])?trim($_GET['action']):'index';
(new A())->$action();
站点B
<?php
// +----------------------------------------------------------------------
// | Author: [email protected]
// | Date : 2018/1/9
// | Time : 18:04
// +----------------------------------------------------------------------
session_start();
class B
{
/**
*
*/
public function login()
{
$ticket = @$_GET['ticket'];
if(!empty($ticket)){
// 验证ticket有效性
$verify_url = 'http://passport.com/index.php?action=verify&ticket='.$ticket;
if(file_get_contents($verify_url)=='success'){
// 获取用户信息
$get_user_info_url = 'http://passport.com/index.php?action=user&ticket='.$ticket;
$user = file_get_contents($get_user_info_url);
$_SESSION['user'] = json_decode($user,true);
$this->index();
}else{
$msg = "您还未登录";
$url = "http://passport.com/index.php?action=login&server=http://b.com/index.php";
$this->_jump($msg,$url);
}
}else{
$msg = "您还未登录";
$url = "http://passport.com/index.php?action=login&server=http://b.com/index.php";
$this->_jump($msg,$url);
}
}
/**
* 若用户未登陆,则跳转到单点登陆
*/
public function index()
{
$ticket = @$_GET['ticket'];
if($ticket && !isset($_SESSION['user'])){
$verify_url = 'http://passport.com/index.php?action=verify&ticket=' . $ticket;
if(file_get_contents($verify_url)=='success') {
// 获取用户信息
$get_user_info_url = 'http://passport.com/index.php?action=user&ticket=' . $ticket;
$user = file_get_contents($get_user_info_url);
$_SESSION['user'] = json_decode($user, true);
}else{
$msg = "您还未登录";
$url = "http://passport.com/index.php?action=login&server=http://b.com/index.php";
$this->_jump($msg,$url);
}
}
if($_SESSION['user']) {
$ticket = $_SESSION['user']['ticket'];
echo "<script src='http://a.com/index.php?action=login&ticket={$ticket}'></script>";
echo "B已登陆成功<a href='http://passport.com/index.php?action=logout&server=http://b.com/index.php'>退出</a><br>";
echo "<a href='http://a.com/index.php?action=index&ticket={$ticket}'>跳转到A</a>";
}else{
$msg = "您还未登录";
$url = "http://passport.com/index.php?action=login&server=http://b.com/index.php";
$this->_jump($msg,$url);
}
}
public function logout()
{
session_destroy();
$server = $_GET['server'];
$url2 = 'http://passport.com/index.php?action=login&server='.$server;
header('Location:'.$url2);
}
/**
* 跳转方法
* @param $msg
* @param $url
*/
private function _jump($msg, $url)
{
ob_clean();
echo "<a href='$url'>{$msg}</a><span id='time' >3</span>秒后跳转。";
echo "<script type='text/javascript'> var time = document.getElementById('time'); setInterval(function(){ time.innerHTML = parseInt(time.innerHTML) -1; if(time.innerHTML<1){ location.href='$url'}; },1000);</script>";
die;
}
}
$action = isset($_GET['action'])?trim($_GET['action']):'index';
(new B())->$action();