Skip to main content

Service Provider

Definition

The Service Providers are standard application servers that relays on Identity Providers to let the users log in.

Join federation

To join the federation, the service provider management team must deliver its "Metadata". The service provider Metadata describes how the service providers behaves:

  • Which security algorithms does it support.
  • The public portion of its signing and encrypting keys.
  • The SAML protocols does it support.
  • The URL of each SAML protocol endpoint.
  • Contact information.

    Screen overview

    &&TODO&&

    Standard attributes

    The standard attributes depends on the Service provider type.  Currently there are three types:

    SAML

      SAML API client

      OpenID Connect


      Implicit flow

      • The Service Provider sends the user to the IdP.
      • The IdP authenticates the user.
      • The user returns control to the Service Provider along an OpenID token and an OAuth token.

      Client credentials flow

      • The Service Provider sends the user to the IdP.
      • The IdP authenticates the user.
      • The user returns control to the Service Provider along an authorization code.
      • The Service Provider gets the OpenID token and OAuth token from the IdP by presenting the authorization code, and its client secret. This request is using a direct connection between them.

      Password authentication flow

      • The Service Provider asks for a user name and password.
      • The Service Provider gets the OpenID token and OAuth token from the IdP by presenting the user's name and password, and optionally its client secret. This request is using a direct connection between them.

      Actions

      Tree view

      Add service provider

      Allows you to add a new Service Provider. You must click the "Add Service Provider" button, under the proper Entity Group and "Service Providers" label, then Soffid will show a new window with the data to fill in to create the new Service Provider..
      List view

      Add identity provider

      Allows you to add a new Service Provider. You must click the "Add Identity Provider" button, under the proper Entity Group and "Identity Provider" label, then Soffid will show a new window with the data to fill in to create the new Identity Provider..
      Identity Provider detail
      Save Allows you to save or update the Service Provider.
      Apply changes Allows you to save or update the Service Provider and quit.
      Delete

      Allows you to delete the Service Provider. To delete a the Service Provider, you can click on the hamburger icon and then click the delete button (trash icon).

      Soffid will ask you for confirmation to perform that action, you could confirm or cancel the operation.
      Undo Allows you to quit without applying any changes.

       

      Back to top