Mendix-SSO

Each website/application will maintain the individual user identity system to maintain the user’s credentials information like username & password etc. Website always checks the authentication has been done or not. If we won’t store the password’s to the site, then application will redirect to the login page, to enter the credentials. Then checks the entered username & password against the data in the corresponding database.

SSO: SSO is a centralized session and an authentication process that allows end users to access multiple applications/systems with one set of login credentials, this feature meant to be as ‘Single Sign On’ (SSO). This reduces the risks by minimizing the wrong password hits by end users, in order to access the multiple applications. And avoids the deals with the user management or password reset flows. So main advantage for the users’ is to reduce the number of passwords to remember and no necessity to look into sticky notes or file to recollect passwords.

The perfect example of this is, as we all are familiar that once we logged into Gmail account, which automatically login’s without being prompted for passwords, regardless of the domain they are in or the technology they are using. So incase of Google, directly obtains access to Google Drive, Google Photos, Google Analytics, Google Maps, and to the respected Google products.

Mendix SSO :

Mendix SSO module allows users to sign in with the Mendix account, when the Mendix application is deployed to the MX cloud. Using MX accounts it’s pretty easy to create multiple applications which all use the same sign on mechanism.

SSO Integration Using MendixSSO module:

As we know mendix is a low-code development platform, which is highly extensible , integrated tooling to support cross functional teams working collaboratively and enables developers to create application in web & mobile (Hybrid, Native) using drag & drop components, model driven logics.

Mendix provides MendixSSO module in MX appstore directly, in addition to add the SSO mechanism to the existing or in new Mendix applications. Refer here for Mendix SSO Module =>

https://appstore.home.mendix.com/link/app/111349/

after importing this map the after startup action in the runtime settings of your app and to activate the MendixSSO, rename the original login.html file to login-without-sso & login-with-sso.html file to login.html in the theme folder of Mendix application. Which will automatically activates SSO in Mendix app.

Here I have created the Mendix profile and try to create the Mendix application with SSO mechanism, so if I logout from my Mendix profile (https://sprintr.home.mendix.com/index.html), then Mendix SSO application will look for Authentication, if not directly it will navigate to the respected page.

Mendix supports wide range of SSO technologies as follows:

OAuth, SAML 2.0, Kerberos, LDAP, MXID

Conclusion:

We can enable Single Sign On (SSO) mechanism with the Mx account is now managed from the Mendix SSO module by Mendix app store instead of creating the logics from scratch. And SSO integration process is pretty simple and easier to understand.