FoxIDs parties

FoxIDs is configured with up-parties and down-parties. Up-parties authenticate the internal users or optionally by trust to an external Identity Provider (IdP). Applications and APIs are connected to FoxIDs as down-parties.

There are four different party types:

• Login
• OpenID Connect
• OAuth 2.0
• SAML 2.0

Up-party

FoxIDs support tree different up-party types:

• Up-party Login
• Up-party OpenID Connect
• Up-party SAML 2.0

Down-party

FoxIDs support tree different down-party types:

• Down-party OpenID Connect
• Down-party OAuth 2.0
• Down-party SAML 2.0

JWT and SAML

OpenID Connect, OAuth 2.0, JWT and JWT claims are first class citizens in FoxIDs. Internally claims are always represented as JWT claims and request / response properties are described with OAuth 2.0 and OpenID Connect attributes.

FoxIDs converts between standards where attributes are converted to the same internal representation using JWT claims and OAuth 2.0 / OpenID Connect attributes.
Therefor, SAML 2.0 claims is internally converted to JWT claims between up-party and down-party.