Abstract: Methods and systems are provided for declaratively configuring a process and a page for a particular service provider. User interface(s) can be displayed at a user system and include options for declaratively configuring different log in processes and log in pages for the particular service provider. After receiving a selection of one of the options to configure the log in process and the log in page, inputs can be received that specify a type of identifiers associated with a user to be verified as part of the log in process, and an identity verification process to define how the user will be verified as part of the log in process for the service provider.

Abstract: Techniques are disclosed relating to contextual authentication across different applications based on user communications. In some embodiments, a user is preauthenticated to certain actions on a second application based on the user's communication via a first application. The user's communication via a first application provides contextual information that may be used to preauthenticate a request to perform an action on the second application. Contextual information may include the user's communication itself, communications characteristics that are determined from the user's communications, or both.

Abstract: Methods and systems are provided for declaratively configuring a process and a page for a particular service provider. User interface(s) can be displayed at a user system and include options for declaratively configuring different log in processes and log in pages for the particular service provider. After receiving a selection of one of the options to configure the log in process and the log in page, inputs can be received that specify a type of identifiers associated with a user to be verified as part of the log in process, and an identity verification process to define how the user will be verified as part of the log in process for the service provider.

Abstract: Methods and systems are provided for declaratively configuring a sign up process and a sign up page for a particular service provider. User interface(s), which can be displayed at a user system of a particular service provider, can include a plurality of options for declaratively configuring different sign up processes and sign up pages for the particular service provider. After receiving a selection of one of the options to configure the sign up process and the sign up page, inputs can be received that can include an input that specifies one of a plurality of different types of identifiers associated with a user to be verified as part of the sign up process, and one of a plurality of different types of identity verification processes to define how the user will be verified as part of the sign up process for the service provider.

Abstract: Methods and systems are provided for declaratively configuring a sign up process and a sign up page for a particular service provider. User interface(s), which can be displayed at a user system of a particular service provider, can include a plurality of options for declaratively configuring different sign up processes and sign up pages for the particular service provider. After receiving a selection of one of the options to configure the sign up process and the sign up page, inputs can be received that can include an input that specifies one of a plurality of different types of identifiers associated with a user to be verified as part of the sign up process, and one of a plurality of different types of identity verification processes to define how the user will be verified as part of the sign up process for the service provider.

Abstract: Systems, methods, and apparatuses for implementing authentication of a user login to an external website from a community in a cloud based computing environment. An exemplary system having at least a processor and a memory therein includes means for identifying a first domain where a user is to be allowed to login to an external web page hosted thereon, and means for connecting the external web page with a community of a cloud computing environment hosted on a second domain different than the identified first domain, the connecting means handling how the connected community authenticates the user when the user logs into the external web page and providing one of a plurality of login experiences for the user based on conditions determined at run time.

Abstract: Methods and systems are provided for configuring for declaratively configuring a user self-registration process and a user self-registration page process for a particular service provider. A graphical user interface is displayed that includes a plurality of options for declaratively configuring different user self-registration processes and corresponding user self-registration pages for the particular service provider. One of the options can be selected, and a type of identifier and a type of verification process can be specified from different types for each. The type of identifier is associated with a user to be verified as part of the user self-registration process, and can be specified to define how the user is identified and looked-up during the user self-registration process. The type of verification process can define how the user will be verified as part of the user self-registration process.

Abstract: Methods and systems are provided for configuring for declaratively configuring a user self-registration process and a user self-registration page process for a particular service provider. A graphical user interface is displayed that includes a plurality of options for declaratively configuring different user self-registration processes and corresponding user self-registration pages for the particular service provider. One of the options can be selected, and a type of identifier and a type of verification process can be specified from different types for each. The type of identifier is associated with a user to be verified as part of the user self-registration process, and can be specified to define how the user is identified and looked-up during the user self-registration process. The type of verification process can define how the user will be verified as part of the user self-registration process.

Abstract: Techniques are disclosed relating to contextual authentication across different applications based on user communications. In some embodiments, a user is preauthenticated to certain actions on a second application based on the user's communication via a first application. The user's communication via a first application provides contextual information that may be used to preauthenticate a request to perform an action on the second application. Contextual information may include the user's communication itself, communications characteristics that are determined from the user's communications, or both.

Abstract: Methods and systems are provided for configuring an interview-based log in process and a corresponding interview-based log in page for a particular service provider. A graphical user interface (GUI) is displayed at a user system of an administrator. The GUI includes a plurality of options for configuring different interview-based log in processes and corresponding interview-based log in pages for that particular service provider. The administrator to configure the interview-based log in process and the corresponding interview-based log in page for deployment. The administrator can specify a type of log in prompt to define how a user is identified and looked-up, and a type of authentication mechanism to define how the user will be authenticated for the service provider. The type of log in prompt and the type authentication mechanism can be one of a plurality of different types that can be specified by the administrator.

Abstract: Techniques are disclosed relating to contextual authentication across different applications based on user communications. In some embodiments, a user is preauthenticated to certain actions on a second application based on the user's communication via a first application. The user's communication via a first application provides contextual information that may be used to preauthenticate a request to perform an action on the second application. Contextual information may include the user's communication itself and/or communications characteristics that are determined from the user's communications.

Abstract: Systems, methods, and apparatuses for implementing authentication of a user login to an external website from a community in a cloud based computing environment. An exemplary system having at least a processor and a memory therein includes means for identifying a first domain where a user is to be allowed to login to an external web page hosted thereon, and means for connecting the external web page with a community of a cloud computing environment hosted on a second domain different than the identified first domain, the connecting means handling how the connected community authenticates the user when the user logs into the external web page and providing one of a plurality of login experiences for the user based on conditions determined at run time.

Abstract: Methods and systems are provided for configuring an interview-based log in process and a corresponding interview-based log in page for a particular service provider. A graphical user interface (GUI) is displayed at a user system of an administrator. The GUI includes a plurality of options for configuring different interview-based log in processes and corresponding interview-based log in pages for that particular service provider. The administrator to configure the interview-based log in process and the corresponding interview-based log in page for deployment. The administrator can specify a type of log in prompt to define how a user is identified and looked-up, and a type of authentication mechanism to define how the user will be authenticated for the service provider. The type of log in prompt and the type authentication mechanism can be one of a plurality of different types that can be specified by the administrator.

Abstract: Techniques are disclosed relating to contextual authentication across different applications based on user communications. In some embodiments, a user is preauthenticated to certain actions on a second application based on the user's communication via a first application. The user's communication via a first application provides contextual information that may be used to preauthenticate a request to perform an action on the second application. Contextual information may include the user's communication itself and/or communications characteristics that are determined from the user's communications.

Abstract: A method and a system are presented in which federated domains interact within a federated environment. Domains within a federation can initiate federated single-sign-on operations for a user at other federated domains. A point-of-contact server within a domain relies upon a trust proxy within the domain to manage trust relationships between the domain and the federation. Trust proxies interpret assertions from other federated domains as necessary. Trust proxies may have a trust relationship with one or more trust brokers, and a trust proxy may rely upon a trust broker for assistance in interpreting assertions. When a user is provisioned at a particular federated domain, the federated domain can provision the user to other federated domains within the federated environment. A provision operation may include creating or deleting an account for a user, pushing updated user account information including attributes, and requesting updates on account information including attributes.