Assuming I implement an SSO server on my application, and have a logged-in user.
The SSO site has a link to the forum, and a logged-in user should be logged in to the forum as well when it is clicked. The user should not have to click anything on the forum to see posts with appropriate group privileges.
Can this be done? How?
If I also implemented an OAuth server would that change things? I’m guessing not because SSO and OAuth are not compatible. Right?
Maybe I just implement the Oauth server. Then, can I disable account creation through the forum interface? Alternatively, use group privileges that are only available through my Oauth server?
This must be a common use-case. What is best to make it all transparent to the user?