SAML Vs JWT

 What is the difference between SAML and JWT ?

SAML:

SAML is older format and is based on XML. Security Assertion Markup Language is an open standard for exchanging authentication and authorization data between Identity Provider and Security Provider. Identity provider authenticates user and provides to Service Provider if authentication assertion is successful where Service provider relies on the Identity provider to Authenticate users. There are some use-cases where SAML being used like access to application from a portal, Enterprise SSO, Centralized Identity Store etc.  

JWT:

JWT is based on json. It is used with the new authorization protocol like OpenId Connect and Oauth 2.0. Json Web Token is a ID token Based on JSON to pass user information as a Header, Payload and Signature Structure. There are some use-cases where JWT being used like Permanent or temporary access of resources and Mobile uses cases.






Comments

Popular posts from this blog

Maven Setting Mirror

Spring Session

Hibernate Version 5.0