Revision as of 17:37, 30 November 2022 edit 208.127.90.143 (talk) Added a missing comma Tag: Reverted ← Previous edit		Revision as of 23:19, 13 December 2022 edit undo 2.147.202.71 (talk) Undid revision 1124818932 by 208.127.90.143 (talk) https://en.wikipedia.org/w/index.php?title=Security_Assertion_Markup_Language&diff=1124818932&oldid=1116137265&variant=en Tags: Undo Mobile edit Mobile app edit Android app edit Next edit →
Line 9: == Overview == The SAML specification defines three roles: the principal (typically a human user), the [[identity provider (SAML)\|identity provider]] (IdP), and the [[service provider (SAML)\|service provider]] (SP). In the primary use case addressed by SAML, the principal requests a service from the service provider. The service provider requests and obtains an authentication assertion from the identity provider. On the basis of this assertion, the service provider can make an [[access control]] decision, that is, it can decide whether to perform the service for the connected principal. At the heart of the SAML assertion is a subject (a principal within the context of a particular security ___domain) about which something is being asserted. The subject is usually (but not necessarily) a human. As in the SAML 2.0 Technical Overview,<ref name="SAMLTechOverview20">N. Ragouzis et al. ''Security Assertion Markup Language (SAML) 2.0 Technical Overview.'' OASIS Committee Draft 02, March 2008. Document identifier: sstc-saml-tech-overview-2.0-cd-02 https://wiki.oasis-open.org/security/Saml2TechOverview</ref> the terms subject and principal are used interchangeably in this document.

Security Assertion Markup Language: Difference between revisions