The SAML IDP Service is the profile of the Curity Identity Server that acts like a SAML Identity Provider (IDP). It is capable of answering authentication requests from a SAML Service Provider and issue assertions that can be used to establish a user’s identity in the context of a Service Provider.
The user is authenticated by a referenced Authentication Service profile. This way, the SAML IDP Service can leverage all the features of the Authentication Service, such as multi-factor authentication, user management, and more, to respond to authentication requests.
Assertions that are issued by the SAML IDP Service can contain attributes about the authenticated user, such as their name, email address, and roles. The SAML IDP Service can also include additional attributes that are relevant to the Service Provider.
This version of the Curity Identity Server introduces a preview version of the SAML IDP Service. It can be used to learn how to integrate Curity as a SAML Identity Provider (IDP) in your environment, and to test the SAML IDP Service with your SAML Service Providers. The SAML IDP Service is not yet fully featured, but it is expected to be production ready in a future release with a feature set that conforms to the SAML 2.0 Web Browser SSO profile.