.NET SDK GuideUsing the .NET SDK › Program Flow at the Relying Party

Previous Topic: Program Flow at the Asserting Party

Next Topic: Federation Manager .NET SDK Logging

Program Flow at the Relying Party

With Federation Manager at the relying party, the .NET application can receive user information from Federation Manager. Program flow with Federation Manager at the relying party proceeds as follows:

  1. Federation Manager receives a SAML Assertion during request processing.
  2. Federation Manager creates the cookie with the latest user information.
  3. Federation Manager encrypts the cookie using a FIPS-compliant algorithm. The key used to encrypt the cookie is derived from a shared secret, communicated between Federation Manager and the application out-of band.
  4. Federation Manager sends the encrypted open format cookie to the .NET application.
  5. The .NET application calls the .NET SDK to decrypt and process the cookie.
  6. The .NET application retrieves values for assertion attributes and principal attributes.

The following diagram shows program flow at the relying party:

FedMgrRelyingParty