Can we create a json config file that contains creation of application and enterprise SSO connection using a0deploy? if so can i see sample config file.
Hi @tib10 , yes, this is possible. You haven’t mentioned what type of enterprise connection, so here’s an example yaml file that creates an application and a SAML connection:
clients:
- name: my-new-app
allowed_clients: []
allowed_logout_urls:
- https://example.com
app_type: spa
callbacks:
- https://example.com
client_aliases: []
cross_origin_auth: false
custom_login_page_on: true
grant_types:
- authorization_code
- implicit
- refresh_token
is_first_party: true
is_token_endpoint_ip_header_trusted: false
jwt_configuration:
alg: RS256
lifetime_in_seconds: 36000
secret_encoded: false
oidc_conformant: true
web_origins:
- https://example.com
connections:
- name: my-new-saml-conn
strategy: samlp
enabled_clients:
- my-new-app
is_domain_connection: false
options:
signingCert: >-
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
idpinitiated: {}
signInEndpoint: >-
https://example.com
show_as_button: true
A key thing to note here that the certificate of the connection (in case of a SAML connection) should be passed in the signingCert property as a base64-encoded string.
The settings you need to set will vary depending on the type of connection. If you aren’t sure, you can create the connection manually in the dashboard, do an export with the Deploy CLI and see what the output is like.
Also, you asked for the ‘config’ file but the config.json doesn’t matter here - it’s always needed and doesn’t need any special configuration. What I’ve pasted above is an example yaml file with the data.
1 Like
This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.