Transparent user session over several sites (single sign-on + single sign-off)

Question

I have several sites in different domains: example.com, example.org, mail.example.com and passport.example.org. All of th

Answer 1

For this solution no need passport server.

Signin

1. Login
2. Create token with encrypted session id and other info
3. Show img with token from all you domains for setting cookies on its.

Authorization by cookie

1. You already have cookies on all domains.

Sign out

1. Clear cookie
2. Destroy session
3. Clear relation user id with last session id in DB (I think you save session id in user table for rising up session by cookie)

I'm can't try this solution. But now i have same problem as you (SSO) and i try this tomorrow.