13-06 Identity Providers - (IdPs)
Identity Provider (IdP) is a system entity that creates, maintains, and manages identity information for principals and also provides authentication services to applications within a federation or distributed network.
- A trusted provider of your user identity that lets you use to authenticate to access other services.
- Identity Providers could be: Facebook, Amazon, Google, Twitter, Github, LinkedIn
Summary
Federated identity is a method of linking a user’s identity across multiple separate identity management systems
# OpenID
- open standard and decentralized authentication protocol.
- Ex. be able to login into a different social media platform using a Google or Facebook account
Summary
OpenID is about providing who are you
# OAuth2.0
- industry-standard protocol for authorization
- OAuth doesn’t share password data but instead uses authorization tokens to prove an identity between consumers and service providers.
Summary
Oauth is about granting access to functionality
SAML
Security Assertion Markup Language is an open standard for exchanging authentication and authorization between an identity provider and a service provider.
Note
An important use case for SAML is Single-Sign-On via web browser.