Federated security with SAML
The following diagram describes the scenario for claims-based authentication where TotalAgility Azure uses federated security to authenticate with the SAML cloud Identity Provider OneLogin.
|
The Client accesses TotalAgility. |
|
The Client selects an identity provider (IdP) such as OneLogin. |
|
The IdP authenticates the Client, then returns the SAML IdP token for the selected identity. |
|
The IdP submits the IdP token to TotalAgility via the Client. The SAML token is passed to TotalAgility in an HTTP form post from the client browser/device. |
|
TotalAgility validates the IdP token and extracts the claims from the token. |