SAML (Security Assertion Markup Language)

Overview

SAML is an XML-based standard for exchanging authentication and authorization assertions between an identity provider and a service provider. It is widely used for enterprise single sign-on, especially between organizations and SaaS services.

Key Points

• Keep credentials and tokens protected.
• Prefer current standards and well-maintained libraries.
• Validate trust boundaries and expiration rules.