Skip to main content
Software Engineering

Return to Answer

added 1 character in body
Source Link
Alexander Petrov
Alexander Petrov
  • 937
  • 5
  • 16

Hi SSO usualusualy works like this. You have the following entities - User, Service Provider and Identity Provider

  1. User requests target resource from the Service Provider
  2. Service provider sends a request to Identity Provider.
  3. Identity Provider validates request and request User to login.
  4. Identity provider sends response (can be token)
  5. User sends token to Service Provider
  6. Service provider validates token and redirects(gives access) to the resource.

The Identity Provider is a separate application. "So how can I pass the result to the third party apps ." - Each participant in the SSO should have ability to verify the token.

Hi SSO usual works like this. You have the following entities - User, Service Provider and Identity Provider

  1. User requests target resource from the Service Provider
  2. Service provider sends a request to Identity Provider.
  3. Identity Provider validates request and request User to login.
  4. Identity provider sends response (can be token)
  5. User sends token to Service Provider
  6. Service provider validates token and redirects(gives access) to the resource.

The Identity Provider is a separate application. "So how can I pass the result to the third party apps ." - Each participant in the SSO should have ability to verify the token.

Hi SSO usualy works like this. You have the following entities - User, Service Provider and Identity Provider

  1. User requests target resource from the Service Provider
  2. Service provider sends a request to Identity Provider.
  3. Identity Provider validates request and request User to login.
  4. Identity provider sends response (can be token)
  5. User sends token to Service Provider
  6. Service provider validates token and redirects(gives access) to the resource.

The Identity Provider is a separate application. "So how can I pass the result to the third party apps ." - Each participant in the SSO should have ability to verify the token.

Source Link
Alexander Petrov
Alexander Petrov
  • 937
  • 5
  • 16

Hi SSO usual works like this. You have the following entities - User, Service Provider and Identity Provider

  1. User requests target resource from the Service Provider
  2. Service provider sends a request to Identity Provider.
  3. Identity Provider validates request and request User to login.
  4. Identity provider sends response (can be token)
  5. User sends token to Service Provider
  6. Service provider validates token and redirects(gives access) to the resource.

The Identity Provider is a separate application. "So how can I pass the result to the third party apps ." - Each participant in the SSO should have ability to verify the token.