Something I would love to see about SSO is diving deeper into the SSO Authorization side as well. These examples are fantastic for the SSO authentication area but not diving into authorization to not just determine who the user is but also what they have access to. I love your videos and strongly recommend them to my coworkers to help explain complex topics very easily but I also struggle to properly explain SSO Authentication vs SSO Authorization and the importance of both.
I got your books few months ago when I was trying to learn system design without even knowing you were on youtube providing amazing contents. thanks a lot. I really love your content
Best explanation of SAML traffic flow I've seen. Other videos make it seem as though the IDP is making outbound connection to SP to deliver the assertion!
Thanks for the video! As a product manager, your videos are super useful and easy to understand. Your videos by far are the most well created and easy to understand for explaining complex concepts. I am currently trying to wrap my head around to understand how my developers implemented SSO in my company using OAuth2 and OIDC because I need to explain to people who have even less technical knowledge than I am. You'd think your own developers can explain what they have implemented, but having ability to explain complex concept to non-developers is not for everyone. Would be great if you can also provide a similar easy to understand video for how SSO is implemented with OAuth2 and OIDC. 🙏🙏🙏
Hi folks from Byte Byte Go. Your videos are great! But specifically for this one, I think you should explain how SAR, which is actually a XML document, is passed from SP to browser then to IdP (the same for the SAML assertion). I do not have deep knowledge in SAML, but I suspect the XLM document is compressed (deflate), base64 encoded, and passed as a query string into a HTTP 302 Redirect response. I don't know if I'm correct. But I think this explanation should be on the video. It's a very basic detail of implementation that everyone interested on the basic technical aspects of SAML (me included) should learn/be aware.
I don't ever think I've ever received so much valuable information, in such a short amount of time. That was a terrific video, keep up the good work! :)
SSO is an authentication scheme. SSO is built on a concept called federated identity. It enables sharing of identity information across trusted but independent systems. Key concepts: 1. Service Provider and Identify Provider 2. Federated Identity protocols: SAML (XML) vs OpenID (JWT)
You made it so easy for me to understand !! Thank you so much! Im now a subscriber and soon to be an active viewer. Thanks again for a fantastic breakdown!
Loved this style of video where you explain popular standards, more of this in the future i hope! I'm also a big fan of ur system desgin videos and was wondering if you would do a high frequency chat system like twitch chat or anything that involves combining the C10K problem with a chat channel. Maybe its just as simple as throwing together a redis microservice but im dying to know!
Spectacular video that simplifies a complex process in a short, digestible clip without any fluff. I loved the animations throughout the video. What app or tool are you using for the animations?
This is a powerhouse of information. A book I read on this was also a wealth of knowledge. "The Art of Meaningful Relationships in the 21st Century" by Leo Flint
Thanks for the video! I learned that there is another way SSO scheme called CAS, and I wonder that what different with OIDC and SAML. Would be great if you can also provide a similar easy to understand video.😁
Could you pls cover the following in future segments, if possible: Coordination Service Consensus algorithms B Trees Broadcast Protocols Vector Clocks Thanks!
Just watching your videos made me buy your books. Your diagrams and videos are amazing. Keep up the good work. One question in the above video, does Service Provider and IDP need to be preconfigured to support each other? i.e. Does the Service provider tells IDP in advance that "hey IDP I am using a SAML for clients" so please register me on your IDP. Otherwise, how will IDP know that this SAML is meant for this Service provider? 👏
Good explanation. Thanks. A question though- how does the identity provider know that user has already signed in? What information does user's browser provider to identity provider? If this information is cached in user's browser, is it not prone to client side security attacks?
LDAP is a vendor-neutral protocol to access directory services (think SQL for databases). You might have an Active Directory DS in your company, which you can query using LDAP. Meaning there is one single source of truth for technical user data. This allows for integration with other software, such as an IdP. In practice OIDC/SAML provide SSO (=login once, for everywhere), whereas directly LDAP-backed logins would require you to enter credentials every time.
Best tutorial about SSO. Just still have some confusion in step 4, the logging in page(in the video 2:07). I just tried one time, if I'm on the compnay's VPN, there isn't login page; is that login page for employee to log in the company's network or it's for logging into the ID service provider's network?
I really like your examples! I have one question, how the IDP know that this specific user can skip login and return a SAML assertion? Does this assertion contain SP info?
![Noob To Max With DRAGON REWORK In Blox Fruits [FULL MOVIE]](http://i.ytimg.com/vi/LnBMOinoOvA/mqdefault.jpg)
Even after landing the senior-level job, I still comeback time-to-time to refresh my memories
Thank you
I love the simplification of your tutorials. Great content
this channel is underrated, keep the good work.
I agree
This channel is not underated. it started from 2022/6/9 and it has reached 222 k subscriptions. Growing very fast!
@@goldfishbrainjohn2462 tbh this is the fastest growing tech channel I ever seen
Something I would love to see about SSO is diving deeper into the SSO Authorization side as well. These examples are fantastic for the SSO authentication area but not diving into authorization to not just determine who the user is but also what they have access to.
I love your videos and strongly recommend them to my coworkers to help explain complex topics very easily but I also struggle to properly explain SSO Authentication vs SSO Authorization and the importance of both.
I got your books few months ago when I was trying to learn system design without even knowing you were on youtube providing amazing contents.
thanks a lot.
I really love your content
You really are doing excellent videos. Way to translate difficult system design for the rest of us. Good job translating. THANK YOU!
Best explanation of SAML traffic flow I've seen. Other videos make it seem as though the IDP is making outbound connection to SP to deliver the assertion!
Thanks for the video!
As a product manager, your videos are super useful and easy to understand. Your videos by far are the most well created and easy to understand for explaining complex concepts.
I am currently trying to wrap my head around to understand how my developers implemented SSO in my company using OAuth2 and OIDC because I need to explain to people who have even less technical knowledge than I am. You'd think your own developers can explain what they have implemented, but having ability to explain complex concept to non-developers is not for everyone.
Would be great if you can also provide a similar easy to understand video for how SSO is implemented with OAuth2 and OIDC.
🙏🙏🙏
Hi folks from Byte Byte Go. Your videos are great! But specifically for this one, I think you should explain how SAR, which is actually a XML document, is passed from SP to browser then to IdP (the same for the SAML assertion). I do not have deep knowledge in SAML, but I suspect the XLM document is compressed (deflate), base64 encoded, and passed as a query string into a HTTP 302 Redirect response. I don't know if I'm correct. But I think this explanation should be on the video. It's a very basic detail of implementation that everyone interested on the basic technical aspects of SAML (me included) should learn/be aware.
Super simple yet very complete explanation. 10/10
I could listen to this guy all day. Doesn't even have to be tech stuff. He could open a cooking channel for all I care
Key concepts:
1. Service Provider and Identify Provider
2. Federated Identity protocols: SAML (XML) vs OpenID (JWT)
Simple, easy and direct to the point explanation of SSO. Thank you so much for the info and being so precise!
First, I give it a like then I watch because I believe the content
This video is fantastic. Definitely the best one I have seen for this topic that goes over SAML and OIDC topics!
For some reason these videos make me feel more relaxed
abstraction and simplification of a huge implementation, that's why
I don't ever think I've ever received so much valuable information, in such a short amount of time. That was a terrific video, keep up the good work! :)
Great explanation, easily understandable visual diagrams, all in under 5 mins..Thank you so much.
Thank you. You are the best one who is explaining the SSO.
Thanks for choosing SAML, for explanation.
SSO is an authentication scheme. SSO is built on a concept called federated identity. It enables sharing of identity information across trusted but independent systems.
Key concepts:
1. Service Provider and Identify Provider
2. Federated Identity protocols: SAML (XML) vs OpenID (JWT)
You deserve more subs. Keep up the great work.
You made it so easy for me to understand !! Thank you so much! Im now a subscriber and soon to be an active viewer. Thanks again for a fantastic breakdown!
Amazing and on point explanation provided enough to keep in mind and use when a real scenario is encountered. Thanks a ton sir. hare krishna
it is amazing how quickly this channel have grown. Great content!
good video and explanation 👍 hello from Russia, yaroslavl❤😎
What a clear, straight-forward explanation. Thanks man.
Very good video, thanks; special mention to the clarity of thought and presentation; this made the concept easier to grasp.
Loved this style of video where you explain popular standards, more of this in the future i hope! I'm also a big fan of ur system desgin videos and was wondering if you would do a high frequency chat system like twitch chat or anything that involves combining the C10K problem with a chat channel. Maybe its just as simple as throwing together a redis microservice but im dying to know!
Spectacular video that simplifies a complex process in a short, digestible clip without any fluff. I loved the animations throughout the video. What app or tool are you using for the animations?
This is a powerhouse of information. A book I read on this was also a wealth of knowledge. "The Art of Meaningful Relationships in the 21st Century" by Leo Flint
Thank you for the video. It's super clear. Loved this style of presentation
Finally! Great clear explanation! Thank you!
Great video. SSO explained so easily with SAML / openid flow.
Thank you. Such a nice explanation in short video... 👍👍 Really liked it.
I really like how you simplified sso 😀
Crisp and full of info. Love the bytes for a high level understanding
How is your editing skills so so good:!?!??
Very nice explanation, many thanks...
This is good video for learning single sign-on. But this video will good than more if having code example. Thank you.
Great video. The visuals are very well done
Great content! Excellent explanation of a complicated problem in a simple way.
Very good one. simple and without fluffs
great clarity. Thanks
Wonderful explanation! Thank you dear.
@bytebytego how do you create such crystal clear animated videos?
I'm sorry if my question sounds dumb.
Where does OAuth 2.0 and LDAP fit in this picture? I saw common protocols at 0:48 are SAML and OpenID Connect.
how to make these awesome animated slides i.e which tool do you use for this can you please tell
Thanks for the video!
I learned that there is another way SSO scheme called CAS, and I wonder that what different with OIDC and SAML.
Would be great if you can also provide a similar easy to understand video.😁
Wow excellent video.👍👍
Make a video on "How a react app works?"
Could you please share the tool that you used to create these videos
Could you pls cover the following in future segments, if possible:
Coordination Service
Consensus algorithms
B Trees
Broadcast Protocols
Vector Clocks
Thanks!
very simple explaination
Love this channel.
Great vid as always! Weird coincidence that I'm currently implementing SSO at my current org
Another epic video. Thanks
Just watching your videos made me buy your books. Your diagrams and videos are amazing. Keep up the good work.
One question in the above video, does Service Provider and IDP need to be preconfigured to support each other? i.e. Does the Service provider tells IDP in advance that "hey IDP I am using a SAML for clients" so please register me on your IDP. Otherwise, how will IDP know that this SAML is meant for this Service provider?
👏
Yes, service provider has to be manually added as relying party in Identity Provider configuration.
yes, SP has to register with the IDP and also setup users etc
Thank you I did confirm and learned something new. I'm subscribing.
Very well explained. Thanks a lot!
what tool you are using for this presentation?
Thanks for sharing rich information with nice view.
Good explanation. Thanks. A question though- how does the identity provider know that user has already signed in? What information does user's browser provider to identity provider? If this information is cached in user's browser, is it not prone to client side security attacks?
Great explanation, thank you so much.
could you add a video like this but for ADFS? thanks you amazing :)
Thank you for the tutorials. Id like to know with which tool you made this video
My friend, these videos are amaing.Would you mind sharing what application you use to built them ?
Great content!
Would also be great to see how the LDAP protocol fits into the picture.
LDAP is a vendor-neutral protocol to access directory services (think SQL for databases). You might have an Active Directory DS in your company, which you can query using LDAP. Meaning there is one single source of truth for technical user data. This allows for integration with other software, such as an IdP. In practice OIDC/SAML provide SSO (=login once, for everywhere), whereas directly LDAP-backed logins would require you to enter credentials every time.
Nice explanation, can you please explain OpenID implementation as well?
very helpful and nicely illustrated! Which program you are using to make these explanations?
Can you please tell me the name of software you use to create these animation, I'd like to learn it.....
Me too looking for it. Or it is just PowerPoint?
Following...
@@SiddheshPrabhugaonkar i thought that too but it's look much more refined than power point... And if it's powerpoint than he is at God level....
It had some zooms I don’t think it’s PowerPoint
It's After Effects.
Great content! Thank you so much for these creations!
👍very informative video. Thanks a lot
Great content
Simply perfect!
Solid explanation. Thank you.
love the tutorials. btw, what tool do you use for diagrams?
Thanks for the video. Clearly understandable.
This was a great video
Best tutorial about SSO. Just still have some confusion in step 4, the logging in page(in the video 2:07). I just tried one time, if I'm on the compnay's VPN, there isn't login page; is that login page for employee to log in the company's network or it's for logging into the ID service provider's network?
Did anyone else peep how he skipped Twitter when talking about the identity providers you can count on at the end?
lols twitter's n identity crisis right now
The subtle shade! Twitter has OAuth issues after Elon started tackling the claimed "microservices bloat"
I could be wrong but I think this channel is associated with Tik Tok, so it would make sense that they skip 🙂
I laughed loud at that point 😂
Twitterr handled it differently. If i'm not mistaken oauth1 and session based solution. Its different than others.
So so clear. Thank you, sir.
I just found out your channel and I love it. Good content easy to follow. Which Sw are you using to create your presentations?
animationa are spot on..
Great explanation. Thank you !!!
such a wonderfull simplification
So, when we talk about OAuth 2.0, we are always talking about a scenario of SSO ?
Thank you in advance,
Thanks for video, great content!
Super double great contents !!!
Interesting! What about ‘login with Apple’. What are they using?
Thanks for the excelent informatio.
can you create another video explaining differece between sso (saml, openid) vs oauth2
is there a video where you dive deeper into the OpenID?
Good video, thanks.
Very informative and concise
Great animations
I really like your examples! I have one question, how the IDP know that this specific user can skip login and return a SAML assertion? Does this assertion contain SP info?
Love your flow drawing - what do you use for that, if you can share?
Love this one! Thx!
How is that different to Oauth2.0 or oauth2.1 PKCE? are these the same?
Nice video BTW :)
I freaking love you man
❤
3:22 how would the IDP know that the user has already logged in? Is it through some session id or token?