Platform SSO and Authorization

These workflows show you how to use the platform APIs to configure applications, sign-on policies, and user resources in your test environment and perform authorization and authentication actions. These use cases often call the following platform API resources:

Platform API	Description
OpenID Connect/OAuth 2	The PingOne authorization endpoint is used to interact with the resource owner and obtain an authorization grant.
Flows	The flow endpoint is used to interact with the user in a sign-on workflow.
SAML 2.0	The SAML endpoints are used by SAML applications to initiate sign-on and signoff operations.
Applications	Application resources define the connection between PingOne and the actual application, commonly referred to as a client connection.
Sign-On Policies	Sign-on policies determine the account authentication flow users must complete to access applications secured by PingOne services.
Resources	Resources are the protected endpoints that applications request access to using OAuth 2 authorization services.

Platform API

Description

OpenID Connect/OAuth 2

The PingOne authorization endpoint is used to interact with the resource owner and obtain an authorization grant.

Flows

The flow endpoint is used to interact with the user in a sign-on workflow.

SAML 2.0

The SAML endpoints are used by SAML applications to initiate sign-on and signoff operations.

Applications

Application resources define the connection between PingOne and the actual application, commonly referred to as a client connection.

Sign-On Policies

Sign-on policies determine the account authentication flow users must complete to access applications secured by PingOne services.

Resources

Resources are the protected endpoints that applications request access to using OAuth 2 authorization services.

PingOne Platform APIs

Platform SSO and Authorization