ID Broker architecture

Download PDF

SAML

SAML#

SAML Participants#

  • student/user/browser - is the user of a system

  • SP(App): Service Provider, an application, service or system that is going to be used by a user. It wants to know if a user is who she claims to be.

  • IDP: Identity Provider, trusted entity that can decide who the user is, and create tickets that certify that fact.

Flows#

There are two flows defined in SAML. The second flow adds some steps before the first flow starts.

ID Provider initiated login#

../_images/saml_flows_idp_initiated.svg

In the second flow the user/student/browser visits first the SP, which then initiates the SAML procedure.

SP initiated login#

../_images/saml_flows_sp_initiated.svg

Further Information#

To be defined (TBD)

On this page