1 Introduction

Welcome to the developer guide of the 10Duke Identity Provider (IdP). The IdP service offers a quick and simple means of providing users access to cloud and corporate applications using a single identity. Using the same credentials users can access a variety of online services in a similar manner to the way accounts.google.com offers users access to all of Google's main applications. Provided on a white-label basis, this Single Sign On (SSO) facility can be extended to a variety of actors include public customers, business partners, applications and middleware components, enabling SSO for consumers as well as between organizations.

The IdP service supports use of OAuth 1.0a, OAuth 2.0 with OpenID Connect and SAML 2.0.

OpenID Connect is a simple identity layer on top of the OAuth 2.0 protocol, which allows clients to verify the identity of an end-user based on the authentication performed by the Identity Provider, as well as to obtain basic profile information about the end-user in an interoperable and REST-like manner.

Topics covered in the Identity Provider reference guide are:

  • Single Sign-on / Authentication
  • Single Sign-out (optional)
  • User registration
  • User profile
  • Graph API for general data access
  • REST API for accessing user, group and organization information

1.1 Prerequisites

Developers are assumed to have knowledge and experience with the following:

  • HTTP
  • Basics of security protocols, e.g. OAuth, SAML, etc. (required if developing service providers, not required if only using the IdP directly)
  • Concepts of modelling and using business entities and relations
  • XML
  • JSON

Accept & Close

We have placed cookies on your computer to help make this website better. You can change your cookie settings at any time. Otherwise, we'll assume you're OK to continue.