Understand storefront SSO message flow

SAML 2.0 supports a variety of different message flows for authentication and authorization.

The following diagram illustrates the approach used by Commerce. It shows the flow of messages when a shopper logs into a Commerce storefront using storefront SSO. Note that in SAML terminology, Commerce is referred to as the service provider, while the external system that provides authentication is called the identity provider: