Single Sign-On
Another variant of the authentication process is Single Sign-On (SSO), which uses protocols such as Security Assertion Markup Language (SAML) or Central Authentication Service (CAS). When using SSO, the application will redirect users to the identity server, reply on the identity server to perform the authentication, and notify the application about the result. When using SAML, the application, which is known as a Service Provider (SP), will receive an SAML assertion from the identity server, which is known as the identity provider (IdP), after the authentication. The SAML assertion contains information on the user that the application can trust. It usually includes the user's basic information, such as name, email address ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access