Like previous post, let’s assume that a Product 1 user is given access to Product 2 (product or services) and we want to provide this customer with an integrated product experience. In this design pattern we enable this single sign-on experience by...

Let us assume that a Product 1 user is given access to Product 2 (product or services) and we want to provide this customer an integrated product experience. There are multiple design patterns which can enable this single sign-on experience. These...

The OAuth protocol version 2.0 (“OAuth2”) was mainly created to remove the need for users to share their passwords with third-party applications. OAuth2 is mainly used for delegating access to some external entity. You are basically allowing...

SAML is an OASIS standard used to exchange authentication and authorization data between two parties. SAML uses an XML format to share information about who a user is and what they are allowed to do. Authorization data is included in a set of...

Across the industry, many companies are implementing new, hosted Identity and Access Management Service ("IAM") that will be used by all the products to authenticate customers accessing our services. The Identity service will provide a central user...

Companies have dozens of different systems that contain customer identity data and these systems are used by more than hundreds of products. Having multiple identity systems not only limits the ability to leverage assets easily across the...