Skip to main content

types

Certificate

A certificate.

id : string

ID of the certificate.

federationId : string

ID of the federation that the certificate belongs to.

name : string

Name of the certificate.

description : string

Description of the certificate.

createdAt : google.protobuf.Timestamp

Creation timestamp.

data : string

Certificate data in PEM format.

Federation

A federation. For more information, see SAML-compatible identity federations.

id : string

ID of the federation.

organizationId : string

ID of the organization that the federation belongs to.

name : string

Name of the federation.

description : string

Description of the federation.

createdAt : google.protobuf.Timestamp

Creation timestamp.

cookieMaxAge : google.protobuf.Duration

Browser cookie lifetime in seconds. If the cookie is still valid, the management console authenticates the user immediately and redirects them to the home page.

autoCreateAccountOnLogin : bool

Add new users automatically on successful authentication. The user becomes member of the organization automatically, but you need to grant other roles to them.

If the value is false, users who aren't added to the organization can't log in, even if they have authenticated on your server.

issuer : string

ID of the IdP server to be used for authentication. The IdP server also responds to IAM with this ID after the user authenticates.

ssoBinding : BindingType

Single sign-on endpoint binding type. Most Identity Providers support the POST binding type.

SAML Binding is a mapping of a SAML protocol message onto standard messaging formats and/or communications protocols.

ssoUrl : string

Single sign-on endpoint URL. Specify the link to the IdP login page here.

securitySettings : FederationSecuritySettings

Federation security settings.

caseInsensitiveNameIds : bool

Use case insensitive Name IDs.

labels : string

Resource labels as key:value pairs. Maximum of 64 per resource.

FederationSecuritySettings

Federation security settings.

encryptedAssertions : bool

Enable encrypted assertions.

forceAuthn : bool

Value parameter ForceAuthn in SAMLRequest.