AMAN: Token-based Authentication to Improved Single Sign-On Security Between Systems

The problems caused during the Covid-19 pandemic included disrupting the learning process, which was usually done face-to-face, and had switch to online. Many applications provide online learning features, requiring users to create multiple accounts for each application used. Therefore, the proposed solution is build a distributed system to combine various applications into one system. This research proposes AMAN (Authentication Model as Node) with the application of the concept of Single Sign On (SSO) and JSON Web Token (JWT) in Islamic Boarding School Academic Systems and Moodle E-Learning. Single Sign On is a log-in authentication system allowing users to access multiple resources with only one authentication, while Moodle is a popular platform for online learning media. By supplying a JSON Web Token (JWT), the server can provide the client permission to access protected data stored on the server via the OAuth2 protocol. The test method are SSO testing between academic systems and e-learning Moodle, token validation, JWT structure verification, and Network Sniffing Attack. The test results in this study show that the implementation of Single Sign On (SSO) using the OAuth2 protocol can form a secure system and interact with multiple platforms.