Single Sign-On in Pluck has three major components: easy integration with other systems, social sign-on, and a standalone solution.
Authenticating a user in Pluck is as simple as setting a cookie containing essential information like ID and display name. It is secured by a hash based on a shared secret. When the cookie is valid, the user is logged in; otherwise, they are considered anonymous.
In this way, integration with any external system used for registration and sign-on is almost effortless.
People are increasingly overloaded with passwords, and are shunning long registration forms in increasing numbers. Simultaneously, they are becoming accustomed to having a common identity across websites and other digital destinations.
In situations where the brand needs additional information from the consumer or wants to record their registration in an external database, Pluck has configurable Web services calls and a plug-in architecture for prompting consumers for additional information after the Facebook process completes. There’s no need to worry about missing or duplicate registrations, and and other system can be notified of registration details.
Finally, for brands that do not need their own database and registration system, Pluck offers a standalone solution with a complete set of skinnable widgets. The hosted solution includes the basic capabilities of user storage, secure cookie creation, and the “forgot my password” workflow.