| Name | Type | Description | Notes |
|---|---|---|---|
| name | String | [optional] | |
| authenticationFlow | UUID | Flow used for authentication when the associated application is accessed by an un-authenticated user. | [optional] |
| authorizationFlow | UUID | Flow used when authorizing this provider. | [optional] |
| propertyMappings | [UUID] | [optional] | |
| acsUrl | String | [optional] | |
| audience | String | Value of the audience restriction field of the assertion. When left empty, no audience restriction will be added. | [optional] |
| issuer | String | Also known as EntityID | [optional] |
| assertionValidNotBefore | String | Assertion valid not before current time + this value (Format: hours=-1;minutes=-2;seconds=-3). | [optional] |
| assertionValidNotOnOrAfter | String | Assertion not valid on or after current time + this value (Format: hours=1;minutes=2;seconds=3). | [optional] |
| sessionValidNotOnOrAfter | String | Session not valid on or after current time + this value (Format: hours=1;minutes=2;seconds=3). | [optional] |
| nameIdMapping | UUID | Configure how the NameID value will be created. When left empty, the NameIDPolicy of the incoming request will be considered | [optional] |
| digestAlgorithm | DigestAlgorithmEnum | [optional] | |
| signatureAlgorithm | SignatureAlgorithmEnum | [optional] | |
| signingKp | UUID | Keypair used to sign outgoing Responses going to the Service Provider. | [optional] |
| verificationKp | UUID | When selected, incoming assertion's Signatures will be validated against this certificate. To allow unsigned Requests, leave on default. | [optional] |
| spBinding | SpBindingEnum | This determines how authentik sends the response back to the Service Provider. * `redirect` - Redirect * `post` - Post | [optional] |
| defaultRelayState | String | Default relay_state value for IDP-initiated logins | [optional] |
This repository has been archived by the owner on Apr 17, 2024. It is now read-only.