What is SAML

• SAML is federation protocol

Actually SAML assertion is sent to user agent first, then send to the SP

Deep in SAML

• After the idP verifies the identity, the assertion is sent back to the SP.

• Now, how should idP respond ? will assertion are wrong format ?
  • SAML Configuration will look like this as “Integration Rules”
    • I want Email address
    • I want firstname
    • I want lastname
• It is a metadata file, which includes configurations and certification.

How trust relation occur ?

• When the metadata exchange took place, there was a trust relationship.
  • SP XML will look like:
    • I want email address
    • …
    • Here is my certification
  • idP XML
    • I will send email address as user
    • …
    • Here is my certification

Metadata File

sample-data/saml-metadata-aggregate.xml at master · mmoayyed/sample-data

How authentication happen ?

IDP Initiate

SP Initiate