IDP Initiated SAML response type

jpalacios · February 3, 2025, 9:37pm

I am looking for some clarification on the response type parameter when using a SAML idp initiated flow.

When using OIDC: The code that is sent to the callback url doesn’t seem to work with the authorization_code grant type. I always receive invalid authorization code error. For now I am redirecting the user back through the authorize to get the token, but looking at the diagram here, it seems the users will request the saml endpoint from the IDP. (I haven’t been able to see this locally) Configure IdP-Initiated SAML Sign-on to OIDC Apps

When using SAML: I am not sure how to use this response to generate a token for the user as it seems auth0 doesn’t have the urn:ietf:params:oauth:grant-type:saml2-bearer grant type. What should I do with this response?

gerald.czifra · February 4, 2025, 9:16pm

Hi @jpalacios

Thank you for reaching out to us!

Please take moment and look through our IdP-Initiated SAML Sign In to OIDC Applications Knowledge Article which could prove more useful in your case than the documentation that you’ve mentioned. Using the Authorization Code grant type should be possible in this scenario with a few changes, code examples are provided in the above documentation.

Hope this helps with your implementation!
Gerald

Topic		Replies	Views
Problem with IdP-initated SAML login flow Help connections , saml-enterprise-connection	0	912	April 11, 2023
IdP-Initiated SAML Sign In to OIDC Applications Knowledge Articles saml , connections , oidc , redirect , idp-initiated , saml-enterprise-connections	1	7314	March 17, 2022
SAML auth flow and how to use the Code parameter Help	3	2966	September 1, 2021
Idp initiated SSO clarification Help sso , sso-integration , idp-initiated	2	4568	August 30, 2019
Flow for IDP Initiated SSO/SAML Help saml , idp-initiated	2	4658	December 24, 2018

IDP Initiated SAML response type

Related topics