identity federation

Question 1

what does identity federation do?

Answer 1

using credentials from one account to log onto multiple systems

Question 2

how does toke based authentication work?

Answer 2

when your login into a server is successful, the server will create a token for authentication

Question 3

what is the token use for?

Answer 3

by using the toke, we avoid exchanging credentials.

Question 4

why does toke has a short lived?

Answer 4

if token that last for week or months, they could led to serious problems. as a result toke has short live and is regenerated by the server within the same session

Question 5

what is IAM

Answer 5

identity and access management systems

Question 6

SSO

Answer 6

single sign-on. it is a subset of identity federation

Question 7

how does SSO work?

Answer 7

one set of credential to access multiple apps or systems within the same organization.

Question 8

what is SAML

Answer 8

it stand for security assertion markup language.
it’s standard for sso implementations
authentication between two parties

Question 9

what is OAuth

Answer 9

standard for authorization between two parties

Authorizes servers, devices and APIs to run application on behalf other

Question 10

OIDC

Answer 10

OpenID Connect
standard for single sign-on implementations
build on top of OAuth