This static demo of the Security Assertion Markup Language (SAML)-based Single Sign-On Service for Google Hosted Services is labeled step-by-step to illustrate each step of the SAML workflow between Google and the Partner. You may also refer to the documented workflow.
This window contains information about actions that occur before the SAML-based SSO authentication process begins. The application assumes a user with the user account demouser@psosamldemo.net is trying to log into a Google-hosted version of the Gmail application.
These details are established between Google, the Service Provider, and the partner company, the Identity Provider, when Single Sign-On service is enabled for the partner's Hosted Services account.
The SAML authentication process begins when a user, who has not already been authenticated, tries to reach the URL for a hosted Google service. In this application, a user is trying to reach the URL http://mail.google.com/a/psosamldemo.net.