Identity Provider (issuer) => STS (security token services) => Token (contains claims and signature)
Identity Provider or Issuer
It's an authority that makes claims about user
Example Identity providers
Token & and its Claims
A token is a set of bytes that expresses Information about an entity. example a user.- A token consists of one or more claims
- Each claim contains Information about the entity
- A token also contains a signature, which contains information such as who created this token and guards/protects against changes.
The token workflow process behind the scenes
Accessing an Enterprise application
Claim Transformation
Microsoft Identity Technology
No comments:
Post a Comment