SAML 2.0

Overview of SAML

SAML 2.0 (Security Assertion Markup Language) is an open standard created to provide cross-domain single sign-on (SSO).

Although SAML has been around since 2005, it remains a popular choice for identity federation in B2B and B2E applications, contributing to its ongoing success. If you aim to offer seamless SSO between businesses and enterprises, supporting SAML is essential. It is predominantly used in enterprise and government applications.

SAML relies on XML to represent user identity data and uses simple HTTP protocols for data transport.

How SAML Works?

SAML is an XML-based authentication protocol in which Identity Providers (IdP) -- entities that manage and store user credentials -- exchange digitally signed XML documents, known as SAML Assertions, which allow users to access a Service Provider (SP), such as the apps you use daily at work or a website.

The service requesting and receiving data from the Identity Providers (IdP) is known as the Relying Party (RP) and the user identity data, encapsulated in the SAML Assertion, is in the form of attributes, e.g,. email address, name, phone, etc.

SAML and Single Sign-On (SSO)

SAML authentication workflows can be initiated by either the Service Provider (SP) or the Identity Provider (IdP). For instance, IdP-initiated authentication may occur when an employee is logged into their corporate dashboard and wants to access a company-purchased tool on an external site. The IdP sends a SAML Assertion through the web browser, logging them in automatically.

In SP-initiated authentication, an employee attempting to access an external site (the SP) is redirected to their corporate SSO login page to authenticate. After successful authentication, they are redirected back to the external site, with a SAML Assertion verifying their identity.

Using SAML with Shiptify

To implement SAML on Shiptify, please contact your sales representative. Once confirmed, we will provide you with our digitally signed XML file and await yours to set up the protocol.