sso_connector_cookie
No security coverage
Introduction
SSO Connector – Cookie provides cookie-based Single Sign-On for Drupal sites that share a common parent domain.
It is intended for multi-subdomain platforms where users should authenticate once and stay signed in across related sites.
The module follows a shared-cookie trust model (Bakery-style approach) and is designed to work as an extension of
SSO Connector core.
Features
- Cross-subdomain session sharing: propagate authenticated sessions between related Drupal sites.
- Signed cookie validation: enforce trust boundaries using signature checks.
- Centralized SSO experience: reduce repeated logins across a portal ecosystem.
- Drupal 10/11 support: compatible with modern Drupal deployments.
- SSO Connector integration: built to complement IdP/SP flows in the base module.
Post-Installation
Configure the module at:
Administration > Configuration > System > SSO Connector > Cookie.
- Set a shared parent cookie domain.
- Configure cookie signing/validation settings.
- Verify secure cookie behavior (HTTPS, SameSite, browser policy compatibility).
- Test authentication propagation across subdomains.
Requirements
- Drupal: 10 or 11
- Required: SSO Connector module
Supporting this Module
Contributions are welcome. Bug reports, compatibility testing, and patches help improve reliability across different browser and infrastructure setups.