Single Sign On – Example
Single Sign-On – Example
Google (IdP – Identity Provider) and Gmail (SP – Service Provider) will be used as examples:
The principal steps of an SSO process are:
- The user requests access to an SP (Gmail)
- The SP (Gmail) redirects the user to the IdP (Google)
- The IdP (Google) prompts the user to enter their credentials
- The IdP (Google) verifies the user’s identity and generates an access token
- The IdP (Google) sends the access token to the user’s browser or app
- The user’s browser or app redirects the access token to the SP (Gmail)
- The SP (Gmail) validates the access token and grants the user access