Outbound SSO
This document covers the Outbound SSO introduction and its protocols supported by the LoginRadius Identity Platform.
Outbound SSO Introduction
Outbound SSO comes in handy while implementing SSO with third-party applications. For interaction with third-party web applications, common standards and protocols are used to manage and map user identities via trust relationships. LoginRadius Identity Platform supports SAML, JWT, OAuth, and OpenID protocols for Outbound SSO. In the Outbound SSO process, the LoginRadius Identity Platform acts as Identity Provider(IDP).
LoginRadius acts as an IdP, which stores and authenticates the identities that your consumers use to log in to your systems, applications, files servers, and more depending upon the configuration. The following flow diagram displays the role of LoginRadius as IDP:
Outbound SSO Protocols
The following are the list of Outbound SSO Protocols supported by LoginRadius Identity Platform:
SAML
LoginRadius Identity Platform supports both SAML 1.1 and SAML 2.0 flows to manage to act as either an Identity Provider (IDP) or as a Service Provider (in case of Custom IDP). It supports both IDP initiated and SP-initiated SAML flows.
The LoginRadius Dashboard allows you to configure the SAML app by customizing the assertions, keys, and endpoints to match any SAML provider requirements.
For more information, refer to the following documents:
JWT
This protocol allows you to generate a JSON format encrypted token. LoginRadius Dashboard allows you to configure the JWT App and customize the token’s encryption method based on the Service Provider requirement.
For more information, refer to the following documents:
OAuth
LoginRadius Identity Platform can function as either an OAuth 2 Identity Provider or as a Service Provider (In the case of Custom IDP) that delegates the authentication process to an IDP that supports the OAuth Framework.
LoginRadius Dashboard allows you to configure the OAuth App. For more information, refer to the following documents:
OpenID Connect
LoginRadius Identity Platform provides a way to integrate your OpenID client with our APIs by following the standards. LoginRadius Dashboard allows you to configure the OAuth App. For more information, refer to the following documents: