Séafra Single Sign On for Cloud is a policy-based authentication service that provides an easy to embed single sign-on capability for Node.js. This service is provided directly from Séafra Consulting or through one of our Development Partners

The Single Sign On service in ExchangeAware™ supports several identity sources where your users’ credentials are stored:

  • SAML Enterprise. A user registry with an exchange of SAML tokens that completes the authentication.
  • Cloud Directory. A user registry that is hosted in the Microsoft Azure Cloud.
  • Social identity sources. The user registries that are maintained by Google, Facebook, and LinkedIn.

Before an application can embed single sign-on capability, there must be service instances and identity sources.

  • To create a service instance and add identity sources, the administrator account must have the roles of manager and developer. For step-by-step instructions, see Creating a single sign-on service.
  • To bind an application to a service instance, the developer account must have the role of developer. For step-by-step instructions, see Creating an app.

See additional information for specific deployment situations:

  • Optionally, an administrator can customize template pages for service instances.
  • SAML Enterprise configuration includes exchange of metadata by administrators. See SAML overview.
  • The Single Sign On service provides an identity bridge component for optional use in SAML Enterprise deployments.