Client and Mobile App SAML ECP Authentication

Owned by Christian Sprajc
Last updated: Jul 20, 2017
1 min read

Inhalt

User authentication from client and mobile apps is performed via ECP. The password is only exchanged with the Identity Provider and never reaches the PowerFolder Server.

Identity Provider discovery

The list of available identity providers is loaded from a discovery feed served by Apache (mod_shib). The discovery feed is provided in JSON format. The identity providers have to support ECP (Example).

UML sequence diagram