Integration standards

1. Overview

This document describes the supported conformance profiles for authentication integration that PhenixID Authentication Services support.

If you have any questions, please contact us on support@phenixid.se.

2. SAML

The conformance spec for SAML is based on these OASIS standards

Identity Provider (IdP)
Profile Message flows Binding
Web SSO AuthnRequest from SP to IdP
HTTP redirect
Web SSO
AuthnRequest from SP to IdP
HTTP POST
Web SSO
IdP response from IdP to SP
HTTP POST
Identity Provider Discovery
Cookie setter
HTTP
Identity Provider Discovery
Cookie getter
HTTP
Single Logout
LogoutRequest
HTTP redirect
Single Logout
LogoutRequest
HTTP POST
Single Logout
LogoutResponse
HTTP redirect
Single Logout
LogoutResponse
HTTP POST
Metadata Consumption

Metadata Exchange

Service Provider (SP)
Profile
Message flows
Binding
Web SSO
AuthnRequest from SP to IdP
HTTP redirect
Web SSO
AuthnRequest from SP to IdP
HTTP POST
Web SSO
IdP response from IdP to SP
HTTP POST
Identity Provider Discovery
Cookie setter
HTTP
Identity Provider Discovery
Cookie getter
HTTP
Single Logout
LogoutRequest
HTTP redirect
Single Logout
LogoutRequest
HTTP POST
Single Logout
LogoutResponse
HTTP redirect
Single Logout
LogoutResponse
HTTP POST
Metadata
Consumption

Metadata
Exchange

3. OpenID Connect

OpenID Connect Provider (OP)

  • Supports Basic OP Conformance profile, click link (details viewed in chapter 3)
  • Supports Authorization code flow grant, click link
  • Support Implicit flow, click link
  • Supports Proof Key for Code Exchange, click link

OpenID Relying Party (RP)

Currently not supported, work in progress.
Please contact us for more information, support@phenixid.se.

4. oAuth2

oAuth2 Authorization Server (AS)

oAuth2 Relying Party (RP)

Currently not supported, work in progress.
Please contact us for more information, support@phenixid.se.

5. Radius

  • Supports PAP, click link
  • Supports EAP-TLS, click link
  • Supports RADIUS Access-Challenge
  • Supports Radius Proxy
  • Supports RADIUS attributes and vendor specific attributes