generate-saml-request
Definition
-
This operation allows to generate a SAML request to an external IDP.
URL
-
<console-domain>/webservice/federation/rest/generate-saml-request
Method
-
POST
Headers
-
Accept = “application/json”
-
Content-Type = “application/json”
Authentication
-
Use an account with federation:serviceProvider permission
Request (body JSON)
-
user → user (or nick or alias)
-
identityProvider → identity provider public ID
-
serviceProviderName → service provider which requests the user authentication
-
sessionSeconds → max time for the user session inactivity
{
"user" : "lucasfr@soffid.poc",
"identityProvider" : "http://stasts-sof.arxus.eu/adfs/services/trust",
"serviceProviderName" : "http://portal.arxus.com",
"sessionSeconds" : "3600"
}
Response (JSON)
-
method → [POST|GET]
-
parameters
-
RelayState → identifier of the ticket of the SAML request
-
SAMLRequest → encoded SAML request
-
-
url → form’s target URL
{
"method": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
"parameters": {
"RelayState": "_457cab260c4948ef4c6d35a67cac000d3348d1ec48f53215",
"SAMLRequest": "PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48c2FtbDJ
wOkF1dGhuUmVxdWVzdCB4bWxuczpzYW1sMnA9InVybjpvYXNpczpuYW1lczp
0YzpTQU1MOjIuMDpwcm90b2NvbCIgQXNzZXJ0aW9uQ29uc3VtZXJTZXJ2aWN
lVVJMPSJodHRwczovL3BvcnRhbC5hcnh1cy5jb206NDQzL1NBTUwtcmVzcG9uc2UiIEZvcmNlQXV0aG49ImZhbHNlI
iBJRD0iXzQ1N2NhYjI2MGM0OTQ4ZWY0YzZkMzVhNjdjYWMwMDBkMzM0OGQxZ
WM0OGY1MzIxNSIgSXNzdWVJbnN0YW50PSIyMDE4LTAxLTExVDEyOjEzOjA0L
jY2NFoiIFZlcnNpb249IjIuMCI+PHNhbWwyOklzc3VlciB4bWxuczpzYW1sMj0idXJuOm9hc2lzOm5hbWVzOnRjOlN
BTUw6Mi4wOmFzc2VydGlvbiI+aHR0cDovL3BvcnRhbC5hcnh1cy5jb208L3NhbWwyOklzc3Vlcj48c2FtbDI6U3Via
mVjdCB4bWxuczpzYW1sMj0idXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6Mi4wO
mFzc2VydGlvbiI+PHNhbWwyOk5hbWVJRCBGb3JtYXQ9InVybjpvYXNpczpuY
W1lczp0YzpTQU1MOjEuMTpuYW1laWQtZm9ybWF0OmVtYWlsQWRkcmVzcyI+b
HVjYXNmckBzb2ZmaWQucG9jPC9zYW1sMjpOYW1lSUQ+PC9zYW1sMjpTdWJqZ
WN0Pjwvc2FtbDJwOkF1dGhuUmVxdWVzdD4="
},
"url": "https://stasts-sof.arxus.eu/adfs/ls/"
}