Social Media Login Application Scenario
Register easily and securely via Facebook, Twitter, & Other Sites
Social Media login enables users of your website to login using their existing social network accounts, such as Facebook, Twitter and Google+. This is a simple and convenient way to register and authenticate users and allows customers to use a familiar login process with existing credentials. With our assistance, your customers can log into your site with a single click.
NOTE: iC Consult has enjoyed the confidence of Global 500 companies for many years. The projects we support and implement are of strategic value to our customers, both for security reasons and as a business driver. For confidentiality reasons, all use cases shown here are anonymized and obfuscated. However, the individual elements of the solutions are real and used by several of our customers and reflect our project experience.
Customer and Objectives
The customer ACME is a global automotive manufacturer.
The client’s goal was to provide easy access to the websites and portals with the company offerings to potential customers, at any time and from any device.
Task and challenge
ACME provides for its consumers several internet portals, integrated with applications that provide personalized services. For example, applications on the site help customers configure new vehicles, retrieve technical information about the vehicles, and estimate a variety of financing alternatives.
Under the previous system, usage of these features remained relatively low and users frequently abandoned any task that required them to login. An analysis of users’ behavioral patterns quickly revealed that the users were discouraged from using feaures on the portal because of the complexity of the registration process. The software in use was outdated and offered no alternative for a modern and convenient authentication and registration processes.
So a key requirement of the new system was to ensure users could log in easily with a single password (single sign-on). The method also had to meet the security requirements of the company.
Solution and Implementation
iC Consult implemented off-the-shelf Web Single Sign-On (WebSSO) and federations products to support logins via Facebook. The new system replaced two existing proprietary solutions
The functionality of the new solution includes:
- User authentication
- Password management (change, reset passwords )
- User Data Management (Registration of users, validating user accounts)
- Session management (generation, validation and end of sessions)
Since all these functions are provided as a central service, they are available to the end user across all applications. Single sign-on is also provied among applications that use the central security service.
All functions are completely transparent both at run-time and from an administrative point of view. For example, applications can validate user sessions at runtime to authenticate users without the need to re-authenticate. Also administrative functions that are necessary for the user administration are provided.
The following example illustrates the convenience of the new WebSSO login:
- From the company’s internal portal a user clicks on a button for Facebook registration
- The user is redirected to Facebook and logs in with his Facebook ID and password
- From Facebook the user is redirected back to the corporate portal with a valid WebSSO session ID
- The user’s Facebook profile is returned to the company portal
The password is stored only in Facebook and is not available to the WebSSO server.
iC Consult also implemented the Facebook logon from the mobile app to the WebSSO service. This is provided by federation.
With single sign-on over WebSSO the user needs to register only once on Facebook, regardless of the device used.
Benefits and Results
iC Consult completed the implementation within the given time frame and budget. Through the use of standard products from well-known manufacturer, the solution turned out inexpensive and easy to maintain.
Site users will benefit from a high degree of convenience through single sign-on across different portals and also enjoy tighter security. Personal information (such as password) are not transmitted or stored by the company.