SSO SAML Connection API

nikki · January 19, 2023, 11:40pm

Hello,

We are trying to create an SSO SAML connection through the API, but we are having trouble to setup the following and unable to find a good documentation on them:

IdP-initiated SSO Behavior (How to set Default Application, Response Protocol and Query String through API).
Login Experience (Home Realm Discovery) (looking for a way to set Identity Provider domains through API).

Edit: adding screenshots

1/24/2023: Still can’t find a way to set those up through API.
1/25/2023: Bumping this up. Need expert help. Thank you.

Thank you so much in advanced.

Regards,

Nikki

nikki · January 30, 2023, 2:53pm

Hello, can anyone shed a light on this? Thank you.

1/31/2023: Still need help

thanish.nizam · November 14, 2023, 7:58am

Hi @nikki ,
Did you figure out how to set this? I’m having the same issue and I couldn’t find any documentation.

thanish.nizam · November 14, 2023, 8:19am

Just found that we can set these fields under options when creating a connection.

tenant_domain: 'email-domain.com',
domain_aliases: ['email-domain.com', 'another-domain.com'],

nikki · November 14, 2023, 3:26pm

Hi @thanish.nizam,

Yes, we finally figured it out by creating a ticket with Auth0. Anyway, here’s the reply from the support team:

To set the IdP-initiated SSO Behavior (Default Application, Response Protocol and Query String) and Login Experience (Home Realm Discovery) via API when creating a new connection you would need to pass additional elements in options object similar to the below:

“options”: {

“idpinitiated”: {
“enabled”: true,
“client_id”: “{CLIENT_ID}”,
“client_protocol”: “samlp”,
“client_authorizequery”: “YOUR Query String”
},
“tenant_domain”: “test.com”,
“disableSignout”: true,
“domain_aliases”: [“test.com”]
}

https://auth0.com/docs/api/management/v2#!/Connections/post_connections