Reputation: 891
SAML 2.0 and C# Request to Service Provider .NET 4.5
I am working on a project that requires a single sign on. System A looks up the username and password in the database and System B only authenticates with SAML 2.0. In this instance System B will be the Service Provider (SP). I am relatively new to SAML SSO so I am not 100% sure my approach is correct. System A would have to be the IDP I am guessing. A user would sign into System A and upon a successful login further information is posted to System B to complete the SSO process. Would this be accurate?
Upvotes: 2
Views: 1021
Answers (1)
Reputation: 1367
Your description is correct. System A is the IdP as this is where the user is authenticated and from where a SAML assertion is issued. System B is the SP and it will perform an automatic local login of the user using information contained in the SAML assertion.
If the user starts at the IdP site, logs in, and clicks a link to SSO to the SP site, this is referred to as IdP-initiated SSO. If they start at the SP site, this is referred to as SP-initiated SSO. Your scenario sounds like IdP-initiated SSO.
The IdP will send a SAML response containing a SAML assertion to the SP using an HTTP/Post.
Upvotes: 2
Related Questions
- Difference between decimal, float and double in .NET?
- Send HTTP POST request in .NET
- SAML 2.0: How to configure Assertion Consumer Service URL
- SAML between existing account and service provider
- WSO2 generating a SAML SSO error "Not a valid SAML 2.0 Request Message!"
- WSO2 Identity Server supports service provider initiated SSO in SAML?
- SAML 2.0 password authentication
- SAML 2.0 assertion response URL for Ping Federate 6.1 service provider