Identity Gateway 2023.11

Supported standards

IG implements the following RFCs, Internet-Drafts, and standards:

OpenID Connect 1.0

IG can be configured to play the role of OpenID Connect relying party. The OpenID Connect specifications depend on OAuth 2.0, JSON Web Token, Simple Web Discovery and related specifications. The following specifications make up OpenID Connect 1.0.

Representational State Transfer (REST)

Style of software architecture for web-based, distributed systems. IG’s APIs are RESTful APIs.

Security Assertion Markup Language (SAML)

Standard, XML-based framework for implementing a SAML service provider. IG supports multiple versions of SAML including 2.0, 1.1, and 1.0.

Specifications are available from the OASIS standards page.

Other Standards

RFC 4627: The application/json Media Type for JavaScript Object Notation (JSON). JSON text is encoded with Unicode; IG reads and stores JSON as Unicode.

RFC 4510: Lightweight Directory Access Protocol (LDAP), for authentication modules and when accessing data stores.

RFC 5280: Internet X.509 Public Key Infrastructure Certificate, supported for certificate-based authentication.

RFC 6265: HTTP State Management Mechanism regarding HTTP Cookies and Set-Cookie header fields.