CoreBlox

Overview of the SP SSO flow

With the CoreBlox Integration Kit, PingFederate allows a service provider (SP) to start a CoreBlox session with user attributes from the identity provider (IdP).

The following figure illustrates an IdP-initiated single sign-on (SSO) scenario in which PingFederate uses the CoreBlox SP Adapter to parse an assertion and create a CoreBlox session cookie.

out1563995224942

Description

  1. The PingFederate SP server recieves an assertion from the IdP.

  2. PingFederate parses the assertion.

  3. The CoreBlox SP Adapter uses the user attributes to create and authorize a session with the CTS.

  4. The adapter redirects the browser with a request that contains the session cookie.