Overview of the SP SSO flow

Page created: 24 Jul 2019 |

Page updated: 8 Feb 2022

| 1 min read

CoreBlox Other Documents Integrations Language English Integration Content Type Product documentation Audience Administrator

With the CoreBlox Integration Kit, PingFederate allows a service provider (SP) to start a CoreBlox session with user attributes from the identity provider (IdP).

The following figure illustrates an IdP-initiated single sign-on (SSO) scenario in which PingFederate uses the CoreBlox SP Adapter to parse an assertion and create a CoreBlox session cookie.

Description

The PingFederate SP server recieves an assertion from the IdP.
PingFederate parses the assertion.
The CoreBlox SP Adapter uses the user attributes to create and authorize a session with the CTS.
The adapter redirects the browser with a request that contains the session cookie.