Avg Bid (USD)
Project Budget (USD)
$100 - $250

Project Description:
This project is in ASP.Net with VB.

We have an insurance company that wants an SSO tool from their secured website to their vendors website. Users will be logged on the Client's websited, select a link and then view secured content on the vendors website. We will use the following method for authentication. This will include account creation if the account does not existing in the vendor's database and an update to our database when a user without a public key is passed from the client to the ventor.

## Deliverables

This is an on demand approach to creating user accounts. There will be some coding involved from client's perspective.

Step 1, client system needs to implement a button or some trigger control to allow user to login to XRAE. Let's assume it's a button control.

Step 2, once user clicks on the button, client system must determine the user type (employee or agent), because different user type requires different information in order to create the account. See details of the required info for each user type in the reference & diagram section of the attached file. Note, at this point, if this is an existing user trying to login, client system only needs to include user GUID and does NOT need to include all the other user data.

Step 3, client system now prepares the digital signature.

Step 4, depending on user type, client system will prepare the appropriate information (such as firstname, lastname, email etc.) into name=value pairs so they are suitable for HTTP POST action.

? Digital Signature

? User GUID (if existing user)

? User Type (Employee or Agent)

? User info (only for new users, see reference section below for details)

Step 5, client system then perform HTTP POST action to XRAE (i.e. <http://mybga.xrae.com/userGateway>)

Step 6, possible response status code values from XRAE are as follow

? HTTPResponse.StatusCode 400 (with <Error>Invalid Signature</Error> in response body)

? HTTPResponse.StatusCode 400 (with <Error>Invalid GUID</Error> in response body)

? HTTPResponse.StatusCode 400 (with <Error>Missing UserType</Error> in response body)

? HTTPResponse.StatusCode 400 (with <Error>Missing Required Employee Info</Error> in response body)

? HTTPResponse.StatusCode 400 (with <Error>Missing Required Agent Info</Error> in response body)

? HTTPResponse.StatusCode 200

? HTTPResponse.StatusCode 201 (with <Success>{UserKey Value Here}</Success> in response body)

Step 6, if XRAE returns StatusCode 200 or 201, then client system will need to do another redirect and send user to XRAE gateway (i.e. [http://mybga.brokerage.xrae.com/gateway/{userkeyvaluehere][1]})

Skills required:
MySQL, PHP, Software Architecture, Software Testing, Web Hosting, Website Management, Website Testing
Additional Files: vw_2012___04___12___SSO_Solution_Approach_RAC_NameCryptedToProtectYourPrivacy_X201241225348881295534541365670115683148.zip
About the employer:
Public Clarification Board
Bids are hidden by the project creator. Log in as the employer to view bids or to bid on this project.
You will not be able to bid on this project if you are not qualified in one of the job categories. To see your qualifications click here.