下面詳細講到了幾點.1、點擊登錄跳轉到SSO登錄頁面并帶上當前應用的callback地址 2、登錄成功后生成COOKIE并將COOKIE傳給callback地址 3、callback地址接收SSO的COOKIE并設置在當前域下再跳回到應用1即完成登錄 4、再在應用程序需要登錄的地方嵌入一個iframe用來實時檢測登錄狀態,代碼如下:

1. <?php  
2. //index.php 應用程序頁面  
3. header('Content-Type:text/html; charset=utf-8');  
4. $sso_address = 'http://2spaoku.com/sso/login.php'; //你SSO所在的域名  
5. $callback_address = 'http://'.$_SERVER['HTTP_HOST']  
6.                     .str_replace('index.php','',$_SERVER['SCRIPT_NAME'])  
7.                     .'callback.php'; //callback地址用于回調設置cookie 
8.  
9. if(isset($_COOKIE['sign'])){  
10.     exit("歡迎您{$_COOKIE['sign']} <a href="login.php?logout">退出</a>");  
11. }else{  
12.     echo '您還未登錄 <a href="'.$sso_address.'?callback='.$callback_address.'">點此登錄</a>';  
13. }  
14. ?> 
15. <iframe src="<?php echo $sso_address ?>?callback=<?php echo $callback_address ?>" frameborder="0"  width="0" height="0"></iframe> 
16.  
17. <?php  
18. //login.php SSO登錄頁面  
19. header('Content-Type:text/html; charset=utf-8');  
20. if(isset($_GET['logout'])){  
21.     setcookie('sign','',-300);  
22.     unset($_GET['logout']);  
23.     header('location:index.php');  
24. } 
25.  
26. if(isset($_POST['username']) && isset($_POST['password'])){  
27.     setcookie('sign',$_POST['username'],0,'');  
28.     header("location:".$_POST['callback']."?sign={$_POST['username']}");  
29. } 
30.  
31. if(emptyempty($_COOKIE['sign'])){  
32. ?> 
33.  
34. <form method="post">  
35. <p>用戶名：<input type="text" name="username" /></p>  
36. <p>密  碼：<input type="password" name="password" /></p>  
37. <input type="hidden" name="callback" value="<?php echo $_GET['callback']; ?>" />  
38. <input type="submit" value="登錄" />  
39. </form> 
40.  
41.  
42. <?php  
43. }else{  
44.     $query = http_build_query($_COOKIE);  
45.     echo "系統檢測到您已登錄 {$_COOKIE['sign']} <a href="{$_GET['callback']}?{$query}">授權</a> <a href="?logout">退出</a>";  
46. }  
47. ?> 
48.  
49. <?php  
50. //callback.php 回調頁面用來設置跨域COOKIE  
51. header('Content-Type:text/html; charset=utf-8');  
52. if(emptyempty($_GET)){  
53.     exit('您還未登錄');  
54. }else{  
55.     foreach($_GET as $key=>$val){  
56.         setcookie($key,$val,0,'');  
57.     }  
58.     header("location:index.php");  
59. } 
60. ?> 
61.  
62. <?php  
63. //connect.php 用來檢測登錄狀態的頁面，內嵌在頁面的iframe中  
64. header('Content-Type:text/html; charset=utf-8');  
65. if(isset($_COOKIE['sign'])){  
66.     $callback = urldecode($_GET['callback']);unset($_GET['callback']);  
67.     $query = http_build_query($_COOKIE);  
68.     $callback = $callback."?{$query}";  
69. }else{ //開源代碼Vevb.com 
70.     exit;  
71. }  
72. ?> 
73. <html><script type="text/javascript">top.location.href="<?php echo $callback; ?>";</script></html>