Agent GuidesSAML Affiliate Agent GuideExtend a SAML Affiliate AgentPersistence API › Sequence of Events

Previous Topic: Persistence API

Next Topic: Lifetime of Entitlement Data
Sequence of Events

The following events occur when a persistence library is used to perform custom assertion management:

  1. A user makes an initial request for a resource at the consumer site.
  2. The SAML Affiliate Agent pulls the raw XML assertion data from the producer, and then passes the unparsed XML assertion to the persistence library in a call to PersistAssertion().
  3. Only profile information is sent. The SAML Affiliate Agent has removed the security information.
  4. The persistence library parses the assertion into entitlement name/value pairs and stores the entitlement data.
  5. The library also sends a lookup key to the Affiliate Agent in the output parameter of PersistAssertion(). Applications use the lookup key to retrieve the entitlement data.
  6. When the user makes resource requests during the session, the SAML Affiliate Agent sends the lookup key to the requesting application in an SMPERSISTENCEKEY HTTP header.
  7. The application uses the key to retrieve the entitlement data that the library has extracted from the assertion and stored.