Set Tenant's SAML Settings via Metadata URL | API Reference

Authorization

AuthorizationRequiredBearer <token>

< Project ID >:< Management Key > as bearer

In: header

Request Body

application/jsonRequired

tenantIdstring

settingsobject

redirectUrlstring

domainsarray<string>

ssoIdstring

curl -X POST "https://api.descope.com/v1/mgmt/sso/saml/metadata" \
  -H "Authorization: Bearer <token>" \
  -H "Content-Type: application/json" \
  -d '{
    "tenantId": "string",
    "settings": {
      "idpMetadataUrl": "string",
      "roleMappings": [
        {
          "groups": [
            "string"
          ],
          "roleName": "string"
        }
      ],
      "attributeMapping": {
        "name": "string",
        "email": "string",
        "group": "string",
        "givenName": "string",
        "middleName": "string",
        "familyName": "string",
        "picture": "string",
        "customAttributes": {
          "property1": "string",
          "property2": "string"
        }
      },
      "spEncryptionKey": "string",
      "spSignKey": "string",
      "subjectNameIdFormat": "string",
      "spACSUrl": "string",
      "spEntityId": "string",
      "defaultSSORoles": [
        "string"
      ],
      "fgaMappings": {
        "property1": {
          "relations": [
            {
              "resource": "string",
              "relationDefinition": "string",
              "namespace": "string"
            }
          ]
        },
        "property2": {
          "relations": [
            {
              "resource": "string",
              "relationDefinition": "string",
              "namespace": "string"
            }
          ]
        }
      }
    },
    "redirectUrl": "string",
    "domains": [
      "string"
    ],
    "ssoId": "string"
  }'

Was this helpful?