Single Sign On


What is SSO (Single Sign On) ?

Single Sign On (SSO) is an authentication Scheme that enables users to securely authenticate to multiple applications and websites by logging in just Once- with just a single set of credentials.

Why SSO?

In the current times Big companies or firms have a crucial need for integrating their multiple applications effortlessly and securely.They always require a solution for their needs and requirements.

Looking from a security  point of view , SSO decreases the cyber attack chances as the user only logs in once and only using a single set of credentials. This step actually reduces the attack surface improving enterprise security.

Single Sign On integration

Getting familiar with SSO

SSO or Single Sign On basically works on a simple flow in which application (service provider) and identity provider play a major role . Single Sign On as the name itself suggests is a single sign in facility provided for multiple applications .Now let’s talk about Service Provider and Identity Provider .

Service Provider

The applications which are required to be integrated for SSO are known as Service Provider. .Applications can be custom Applications or SaaS solutions. For example PHP , NodeJs , WordPress ,Zoho ,Salesforce. Service providers hand over the authentication part to identity provider with the help of SAML Token. Service providers rely on identity providers to assert the identity of a user, and typically certain attributes about the user that are managed by the identity provider. We can simply call Service Provider as the application providing service and which needs to be secured.

Identity Provider

The Identity Provider or IDP refers to a database that stores user identities ,which can be further federated for various resources. IDP also stores various instantiations of user identity which contain information such as Username, Passwords, SSH keys, Biometric Information ,etc. For example, you’ve probably seen a ‘Sign up with Facebook’ option when registering for a service, in which case Facebook is the identity provider, more accurately the social identity provider.

Now that we have cleared the SP and IDP let’s talk about how the SSO does what it does and how it is done?

Flow of SSO

SSO works on a trust based relationship established between SP and IDP. This relationship is established very securely. Let’s take a look at the login flow for the execution of SSO :-

  • The user tries to access the application from which the flow starts.
  • Application finds the appropriate Identity Provider to authenticate the user.
  • Application generates a SAML 2.0 request and redirects the user’s browser to the respective IDP.
  • If the user is not logged in , then the IDP prompts a window asking for the credentials of the user which will be the same for every application ,and generates a SAML token.
  • IDP posts the SAML response to the application via the user’s browser.
  • Application verifies the SAML response.
  • Application completes the sign in.

How to implement Single Sign On?

We at Just Integrated provide the best consultancy as to how to implement the SSO into your application to make it secure and easy to use.

Our expertise in providing industry-specific services and custom solutions has enabled us to deliver absolute business solutions to our worldwide clients. We are providing our services to small as well as big corporate houses including individual entrepreneurs using our unmatched expertise and cutting-edge technology.

Area of Expertise

Ready to talk ?

Leave a Reply