Like previous post, let’s assume that a Product 1 user is given access to Product 2 (product or services) and we want to provide this customer with an integrated product experience. In this design pattern we enable this single sign-on experience by...
Identity Federation Design Patterns: 5 – Integration without IAM
Let us assume that a Product 1 user is given access to Product 2 (product or services) and we want to provide this customer an integrated product experience. There are multiple design patterns which can enable this single sign-on experience. These...
Identity Federation Design Patterns: 4 – “OAuth” – Open Authorization
The OAuth protocol version 2.0 (“OAuth2”) was mainly created to remove the need for users to share their passwords with third-party applications. OAuth2 is mainly used for delegating access to some external entity. You are basically allowing...
Identity Federation Design Patterns: 3 – SAML
SAML is an OASIS standard used to exchange authentication and authorization data between two parties. SAML uses an XML format to share information about who a user is and what they are allowed to do. Authorization data is included in a set of...
Identity Federation Design Patterns: 2 – Introduction
Across the industry, many companies are implementing new, hosted Identity and Access Management Service ("IAM") that will be used by all the products to authenticate customers accessing our services. The Identity service will provide a central user...
Identity Federation Design Patterns: 1 – Executive Summary
Companies have dozens of different systems that contain customer identity data and these systems are used by more than hundreds of products. Having multiple identity systems not only limits the ability to leverage assets easily across the...
Benefits of Identity and Access Management as Corporate Service
Customer identity management is one of the foundational elements of every single product across business units. Instead of various products across the organization building and maintaining their identity systems (which they often do),...