SAML and B2B (grid computing?)

From the following site

https://blog.surfnet.nl/?p=1417

My understanding so far of SAML is the following:

SP                         Browser of                      IdP
                           Principal
-------------              -----------                     ---------
                             START

    <--- Contact SP ------------

    --- Redirect to Browser -->    
        to SSO URL
                                --- Redirect to IdP for --> Authenticate
                                    SSO URL
                 
                                <-- SAML response ---------

    <-- Broswer sends ---------
        response to ACS url
ACS 
verifies
    --- Success response -----> DONE

Open in new window


My question:  The above describes how SAML works within a browser based
system.  But what about a B2B or queuing system, in other
words a system that is not browser oriented.   ( I assume the correct word for
this is grid computing ?)

How does SAML work under those conditions.  Any links on how
that works?

What would be the difference in this case>
Anthony LuciaAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

mccarlIT Business Systems Analyst / Software DeveloperCommented:
But what about a B2B or queuing system, in other words a system that is not browser oriented
You've ask quite a number of questions recently that I guess are all along similar lines, but none of them have a lot of information in them for us to go on. I fear that you are wasting energy looking into these acronyms that you have heard of (SAML, OAuth, IdP, SP, etc, etc) when it really might be not what you are after at all.

Can you give a bit more detail on exactly WHAT you are trying to achieve? Without getting stuck too much on HOW you THINK you need to do it. I am talking about really high-level descriptions about what systems that you have and how they need to interact, etc
0
Anthony LuciaAuthor Commented:
In a B2B scenario, I want one business to send a message to another, in a non-browser based (Batch mode) scenario

An example might be a monthly accounting program that compares
Corporate account balances against their existing records in 'batch mode'

ABC corp                  XYZ Bank
---------                 --------

Batch Pgm -- get Bal -->  Bank Web Service

Open in new window


The Bank web service would look something like

XYZ Bank
======================================================

                  SAML IdP  -- validate user --> LDAP
                            <----- yes ---------
                    ^
                    |
                    |
Get Bal  --> Check SAML IdP  -->  Get Bal from DB
(Batch         
Mode)    <----------------------

(No browser involved)

Open in new window


Is this a valid business scario for SAML ?  

Can someone please post any documentation (that does not
involve browser redirects) on how to accomplish this?

Thanks
0
Anthony LuciaAuthor Commented:
I am sorry,, a better representation of the Bank web service would be

XYZ Bank
======================================================

                  SAML IdP  -- validate user --> LDAP
                            <----- yes ---------
                    ^
                    |
                    |
HTTP Req. --> Check SAML IdP  -->  Get Bal from DB

HTTP 
Response  <----------------------

Open in new window



(No browser involved)
0
mccarlIT Business Systems Analyst / Software DeveloperCommented:
From the above, I have one main question... Will there be multiple "ABC Corps" ? ie. an ABC corp, and a DEF corp, and a GHI corp, etc, etc? If so, can you give an idea of how many, 5, 50, 5000, different entities contacting the web service?
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Anthony LuciaAuthor Commented:
Yes there will be numerous clients connecting to the webservice, I would say about 100.

I used the example for explanatory purposes, but for what I am trying to accomplish its more like ABC dept connecting to a corporate department

ABC Dept                  Corporate Accounting
---------                 --------

Batch Pgm -- get Bal -->  Acct Web Service

Open in new window


Corporate Accounting Web Service
======================================================

                  SAML IdP  -- validate user --> LDAP
                            <----- yes ---------
                    ^
                    |
                    |
HTTP Req. --> Check SAML IdP  -->  Get Bal from DB

HTTP 
Response  <----------------------

Open in new window

0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Security

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.