Post authentication request will go through OpenIG too

This topic has 2 replies, 2 voices, and was last updated 6 years, 10 months ago by Guillaume Sauthier.

  • Author
    Posts
  • #6423
     vinaycs9
    Participant

    Suppose OpenIG is working as SP and OPENAM is working as IDP. user is authenticated through SPInitiatedSingleSignOn ,user is authenticated and logged into application. Now , If user navigates multiple links of protected application , all those request will come back to OPENIG , will be passed through OpenIG again and again ?? and userid/ name value will be checked in exchange again and again ??
    Please clarify.

    #6430
     vinaycs9
    Participant

    no comment till now ??

    #6438

    Yes, OpenIG acts as a reverse proxy on front of the protected application.

    That means that all the traffic for the protected application is intercepted by OpenIG.

    As a consequence, for each request, there is a test that verifies that the user has been along the SAML authentication process (that’s done by verifying that attributes of the SAML assertion have been stored in the HTTP Session).

    Hope that helps

Viewing 3 posts - 1 through 3 (of 3 total)

You must be logged in to reply to this topic.

©2022 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?