* User accesses a custom application for the first time* Service Provider Secur

1. * User accesses a custom application for the first time
2. * Service Provider Security Filter checks if the security context is available
3. and redirects the user to IDP (Identity Provider) with a SAML SSO request
4. * IDP challenges the user with the authentication dialog and redirects the user to
5. Request Assertion Consumer Service (RACS) after the user has authenticated
6. * RACS validates the response from IDP, establishes a security context and redirects the user
7. to the original application endpoint
8. * Service Provider Security Filter enforces that a valid security context is available and lets the user
9. access the custom application.