Single Sign On – Example
Single Sign-On – Example
Google (IdP – Identity Provider) and Gmail (SP – Service Provider) will be used as examples:
The principal steps of an SSO process are:
- The user requests access to an SP (Gmail)
- The SP (Gmail) redirects the user to the IdP (Google)
- The IdP (Google) prompts the user to enter their credentials
- The IdP (Google) verifies the user’s identity and generates an access token
- The IdP (Google) sends the access token to the user’s browser or app
- The user’s browser or app redirects the access token to the SP (Gmail)
- The SP (Gmail) validates the access token and grants the user access
![](https://josedacruz.com/wp-content/uploads/2023/07/single-sign-on-main-steps.excalidraw.png)