Revision as of 12:04, 10 April 2023 edit Mindmatrix (talk \| contribs) Autopatrolled, Administrators 188,542 edits revert - rm promotional link Tag: Manual revert ← Previous edit		Revision as of 01:08, 22 June 2023 edit undo Cedar101 (talk \| contribs) Extended confirmed users 18,557 edits →Use: fix syntaxhighlight error Next edit →
Line 175: ; 2. Redirect to the SSO Service at the IdP (SAML 2.0 only):The service provider determines the user's preferred identity provider (by unspecified means) and redirects the user agent to the SSO Service at the identity provider: <pre><nowiki>https://idp.example.org/SAML2/SSO/Redirect?SAMLRequest=request</nowiki></pre> The value of the <code>SAMLRequest</code> parameter (denoted by the placeholder <code>request</code> above) is the [[Base64]] encoding of a [[DEFLATE\|deflated]] <code><samlp:AuthnRequest></code> element. ; 3. Request the SSO Service at the IdP (SAML 2.0 only): The user agent issues a GET request to the SSO service at the URL from step 2. The SSO service processes the <code>AuthnRequest</code> (sent via the <code>SAMLRequest</code> URL query parameter) and performs a security check. If the user does not have a valid security context, the identity provider identifies the user (details omitted). ; 4. Respond with an XHTML form: The SSO service validates the request and responds with a document containing an XHTML form: <syntaxhighlight lang="~~html4strict~~html"> <form method="post" action="https://sp.example.com/SAML2/SSO/POST" ...> <input type="hidden" name="SAMLResponse" value="response" />

Security Assertion Markup Language: Difference between revisions