Get Tenant's SAML/OIDC Settings | API Reference

Authorization

AuthorizationRequiredBearer <token>

< Project ID >:< Management Key > as bearer

In: header

Query Parameters

tenantIdstring

ssoIdstring

curl -X GET "https://api.descope.com/v2/mgmt/sso/settings?tenantId=string&ssoId=string" \
  -H "Authorization: Bearer <token>"

{
  "tenant": {
    "id": "string",
    "name": "string",
    "selfProvisioningDomains": [
      "string"
    ],
    "customAttributes": {},
    "authType": "string",
    "domains": [
      "string"
    ],
    "createdTime": 0,
    "disabled": true,
    "enforceSSO": true
  },
  "saml": {
    "idpEntityId": "string",
    "idpSSOUrl": "string",
    "idpCertificate": "string",
    "idpMetadataUrl": "string",
    "spEntityId": "string",
    "spACSUrl": "string",
    "spCertificate": "string",
    "attributeMapping": {
      "name": "string",
      "email": "string",
      "username": "string",
      "group": "string",
      "givenName": "string",
      "middleName": "string",
      "familyName": "string",
      "picture": "string",
      "customAttributes": {
        "property1": "string",
        "property2": "string"
      },
      "verifiedEmail": "string",
      "verifiedPhone": "string"
    },
    "groupsMapping": [
      {
        "role": {
          "id": "string",
          "name": "string"
        },
        "groups": [
          "string"
        ]
      }
    ],
    "redirectUrl": "string",
    "spSignCertificate": "string",
    "subjectNameIdFormat": "string",
    "defaultSSORoles": [
      "string"
    ],
    "fgaMappings": {
      "property1": {
        "relations": [
          {
            "resource": "string",
            "relationDefinition": "string",
            "namespace": "string"
          }
        ]
      },
      "property2": {
        "relations": [
          {
            "resource": "string",
            "relationDefinition": "string",
            "namespace": "string"
          }
        ]
      }
    }
  },
  "oidc": {
    "name": "string",
    "clientId": "string",
    "clientSecret": "string",
    "redirectUrl": "string",
    "authUrl": "string",
    "tokenUrl": "string",
    "userDataUrl": "string",
    "scope": [
      "string"
    ],
    "JWKsUrl": "string",
    "userAttrMapping": {
      "loginId": "string",
      "username": "string",
      "name": "string",
      "email": "string",
      "verifiedEmail": "string",
      "verifiedPhone": "string",
      "picture": "string",
      "givenName": "string",
      "middleName": "string",
      "familyName": "string",
      "customAttributes": {
        "property1": "string",
        "property2": "string"
      }
    },
    "manageProviderTokens": true,
    "callbackDomain": "string",
    "prompt": [
      "string"
    ],
    "grantType": "string",
    "issuer": "string"
  },
  "ssoId": "string"
}

Was this helpful?

Authorization

Query Parameters

Response

TypeScript