13 January 2023

Single Sign-On provides users with access to multiple environments with a single, secure password. Most universities maintain their web portals; on-campus users would use single authentication information to log in. Once logged in, they can access various websites or services, such as Tk20. Typically, in this scenario, once the user is authenticated via the portal, a request forwards to Tk20. When the software receives the request, a secure handshake with the web portal ensures the request is legitimate. After the request is validated, information pertaining to the user attempting access to Tk20 is exchanged. The software ensures that the user trying to access Tk20 is a valid Tk20 user. After passing the checks, the user is immediately directed to the Tk20 account home page in the application. In this case, the user does not see the Tk20 login page because the authentication only happens once when the user logs in to the web portal on campus. Tk20 merely integrates with the web portal, ensures the proper authorization and allows the user into the Tk20 system. The Tk20 system is designed to allow access to users who do not have access to the campus portal, but do need access to Tk20. In such cases, the authentication information of such users is maintained locally in the Tk20 database