Drupal is a registered trademark of Dries Buytaert
drupal 11.3.8 Update released for Drupal core (11.3.8)! drupal 11.3.7 Update released for Drupal core (11.3.7)! drupal 11.2.11 Update released for Drupal core (11.2.11)! drupal 10.6.7 Update released for Drupal core (10.6.7)! drupal 10.5.9 Update released for Drupal core (10.5.9)! cms 2.1.1 Update released for Drupal core (2.1.1)! drupal 11.3.6 Update released for Drupal core (11.3.6)! drupal 10.6.6 Update released for Drupal core (10.6.6)! cms 2.1.0 Update released for Drupal core (2.1.0)! video_embed_field 3.1.0 Minor update available for module video_embed_field (3.1.0). bootstrap 8.x-3.40 Minor update available for theme bootstrap (8.x-3.40). menu_link_attributes 8.x-1.7 Minor update available for module menu_link_attributes (8.x-1.7). trash 3.0.27 Minor update available for module trash (3.0.27). twig_tweak 4.0.0-alpha2 New alpha version released for module twig_tweak (4.0.0-alpha2). twig_tweak 4.0.0-alpha1 First alpha version released for module twig_tweak (4.0.0-alpha1). node_revision_delete 2.1.1 Minor update available for module node_revision_delete (2.1.1). commerce_paypal 2.1.2 Minor update available for module commerce_paypal (2.1.2). ckeditor5_premium_features 1.8.1 Minor update available for module ckeditor5_premium_features (1.8.1). ckeditor5_plugin_pack 1.5.2 Minor update available for module ckeditor5_plugin_pack (1.5.2). node_revision_delete 2.1.0 Minor update available for module node_revision_delete (2.1.0).
← All modules

sso_connector_cookie

No security coverage
View on drupal.org

Introduction

SSO Connector – Cookie provides cookie-based Single Sign-On for Drupal sites that share a common parent domain.
It is intended for multi-subdomain platforms where users should authenticate once and stay signed in across related sites.

The module follows a shared-cookie trust model (Bakery-style approach) and is designed to work as an extension of
SSO Connector core.

Features

  • Cross-subdomain session sharing: propagate authenticated sessions between related Drupal sites.
  • Signed cookie validation: enforce trust boundaries using signature checks.
  • Centralized SSO experience: reduce repeated logins across a portal ecosystem.
  • Drupal 10/11 support: compatible with modern Drupal deployments.
  • SSO Connector integration: built to complement IdP/SP flows in the base module.

Post-Installation

Configure the module at:
Administration > Configuration > System > SSO Connector > Cookie.

  • Set a shared parent cookie domain.
  • Configure cookie signing/validation settings.
  • Verify secure cookie behavior (HTTPS, SameSite, browser policy compatibility).
  • Test authentication propagation across subdomains.

Requirements

Supporting this Module

Contributions are welcome. Bug reports, compatibility testing, and patches help improve reliability across different browser and infrastructure setups.

Activity

Total releases
1
First release
Apr 2026
Latest release
15 hours ago
Release cadence
Stability
0% stable

Releases

Version Type Release date
1.0.0-beta1 Pre-release Apr 26, 2026