The figure below illustrates a sample flow with a description of each request from the browser to the back end application. This flow is taken from the Tutorial With WordPress. Try the tutorial yourself to learn how OpenIG works. The Flat-File attribute store contains only one set of credentials. OpenIG makes the assumption this user is logging into the sample application. In a real deployment OpenIG would look up the user credentials using its own session, a SAML2 assertion, or a header from an OpenAM policy agent. Use cases that follow show examples of these types of deployments.
-
User accesses the Portal.
-
Gateway intercepts request, finds no login page and passes it through.
-
Portal finds no local session and redirects to its login page for authentication.
-
Gateway intercepts the redirect, finds a match for the login page, fetches the credentials from the flat file.
-
Gateway creates the login form and POSTs it to the Portal login page.
-
Portal validates the credentials and redirects to the user's home page.
-
Gateway passes the request through to the browser.
