SAML

Security Assertion Markup Language it’s a standard for Authentication and Authorization between an Identity Provider and a Service Provider, it’s an XML standard for security exchange. One of the most important things about SAML is not having to syncronize identity directories between parties.

It has 3 principal actors:

  • The Principal aka the User which can be non-human
  • The Identity Provider (IdP)
  • The Service Provider (SP)