This figure depicts data flow in the identity management framework model:
The token collector receives credentials, produces an identity token, and sends the token to OC4J.
The token asserter receives the token from OC4J, asserts the identity (accessing the third-party identity management system as necessary), and sends the identity back to OC4J in the form of a callback handler.
The login module receives the callback handler from OC4J, populates a subject (accessing the third-party identity management system as necessary), and sends the subject to OC4J.
The (optional) subject asserter receives the subject from OC4J and asserts the subject (accessing the third-party identity management system as necessary).
End of description.