This figure shows a client web browser, an Oracle Event Processing server acting as HTTP server, and an Oracle WebLogic Server application server. The Oracle Event Processing server HTTP server is the SAML Service Provider (SP) and the Oracle WebLogic Server application server is the SAML Identity Provider (IDP). There is a firewall between the Web browser and the HTTP server and a firewall between the HTTP server and the application server. The Web browser sends a resource request to the HTTP server which redirects the request to the application server with an SSO token. The application server extracts the identity from the SSO token, authenticates the identity, and sends the resource response. The HTTP server forwards the resource response to the Web browser.