Book Image

Solutions Architect's Handbook

By : Saurabh Shrivastava, Neelanjali Srivastav
Book Image

Solutions Architect's Handbook

By: Saurabh Shrivastava, Neelanjali Srivastav

Overview of this book

Becoming a solutions architect gives you the flexibility to work with cutting-edge technologies and define product strategies. This handbook takes you through the essential concepts, design principles and patterns, architectural considerations, and all the latest technology that you need to know to become a successful solutions architect. This book starts with a quick introduction to the fundamentals of solution architecture design principles and attributes that will assist you in understanding how solution architecture benefits software projects across enterprises. You'll learn what a cloud migration and application modernization framework looks like, and will use microservices, event-driven, cache-based, and serverless patterns to design robust architectures. You'll then explore the main pillars of architecture design, including performance, scalability, cost optimization, security, operational excellence, and DevOps. Additionally, you'll also learn advanced concepts relating to big data, machine learning, and the Internet of Things (IoT). Finally, you'll get to grips with the documentation of architecture design and the soft skills that are necessary to become a better solutions architect. By the end of this book, you'll have learned techniques to create an efficient architecture design that meets your business requirements.
Table of Contents (18 chapters)

Security Assertion Markup Language (SAML)

Earlier in this section, under FIM and SSO, you learned about IdPs and SPs. To access a service, the user gets validated from the IdP, which in-turn has a trusted relationship with the SP. SAML is one of the mechanisms to establish a trusted relationship between an IdP and an SP. SAML uses extensible markup language (XML) to standardize communication between an IdP and an SP. SAML enables SSO, so users can use a single credential to access multiple applications.

A SAML assertion is an XML document that the IdP sends to the SP with user authorization. The following diagram illustrates the flow of the SAML assertion:

User authentication using SAML

As mentioned in the preceding diagram, the following steps are taken to implement user authentication using SAML:

  1. A user sends a request to access the service—for example, the Salesforce CRM application—as a service provider.
  2. The service provider (a CRM application) sends a SAML request...