Discuss with expertTry it for free
© 2026 Direct Cursus Technology L.L.C.

SAML Application API, gRPC: ApplicationService.Update

Written by
Updated at May 27, 2026

Updates the specified SAML application.

gRPC request

rpc Update (UpdateApplicationRequest) returns (operation.Operation)

UpdateApplicationRequest

{
  "application_id": "string",
  "update_mask": "google.protobuf.FieldMask",
  "name": "string",
  "description": "string",
  "labels": "map<string, string>",
  "service_provider": {
    "entity_id": "string",
    "acs_urls": [
      {
        "url": "string",
        "index": "google.protobuf.Int64Value"
      }
    ],
    "slo_urls": [
      {
        "url": "string",
        "response_url": "string",
        "protocol_binding": "ProtocolBinding"
      }
    ]
  },
  "security_settings": {
    "signature_mode": "SignatureMode",
    "signature_certificate_id": "string"
  },
  "attribute_mapping": {
    "name_id": {
      "format": "Format",
      "value": "string"
    },
    "attributes": [
      {
        "name": "string",
        "value": "string"
      }
    ]
  },
  "group_claims_settings": {
    "group_distribution_type": "GroupDistributionType",
    "group_attribute_name": "string"
  }
}

Request to update an existing SAML application.

Field

Description

application_id

string

Required field. ID of the SAML application to update.

The maximum string length in characters is 50.

update_mask

google.protobuf.FieldMask

Field mask that specifies which fields of the application are going to be updated.

name

string

New name for the SAML application.

Value must match the regular expression |[a-z]([-a-z0-9]{0,61}[a-z0-9])?.

description

string

New description for the SAML application.

The maximum string length in characters is 256.

labels

object (map<string, string>)

New resource labels as key:value pairs.

The maximum string length in characters for each value is 63. The string length in characters for each key must be 1-63. Each key must match the regular expression [a-z][-_0-9a-z]*. Each value must match the regular expression [-_0-9a-z]*. No more than 64 per resource.

service_provider

ServiceProvider

New service provider configuration for the SAML application.

security_settings

SecuritySettings

New security settings for the SAML application.

attribute_mapping

AttributeMappingSpec

New attribute mapping configuration for the SAML application.

group_claims_settings

GroupClaimsSettings

New group claims settings for the SAML application.

ServiceProvider

Service provider configuration for SAML applications.

Field

Description

entity_id

string

Required field. Service provider entity ID.

The maximum string length in characters is 8000.

acs_urls[]

AssertionConsumerServiceURL

Assertion Consumer Service URLs.

The number of elements must be in the range 1-100.

slo_urls[]

SingleLogoutServiceURL

Single Logout Service URLs.

The number of elements must be in the range 0-100.

AssertionConsumerServiceURL

Assertion Consumer Service URL configuration.

Field

Description

url

string

Required field. The URL where SAML responses are sent.

The maximum string length in characters is 8000.

index

google.protobuf.Int64Value

Optional index for the assertion consumer service.

SingleLogoutServiceURL

Single Logout Service URL configuration.

Field

Description

url

string

Required field. The URL where logout requests are sent.

The maximum string length in characters is 8000.

response_url

string

Optional separate URL for logout responses.

The maximum string length in characters is 8000.

protocol_binding

enum ProtocolBinding

Required field. Protocol binding supported by the logout endpoint.

  • HTTP_POST: HTTP POST binding.
  • HTTP_REDIRECT: HTTP Redirect binding.

SecuritySettings

Security settings for SAML applications.

Field

Description

signature_mode

enum SignatureMode

Signature mode for SAML messages.

  • ASSERTIONS: Sign individual assertions.
  • RESPONSE: Sign the entire response.
  • RESPONSE_AND_ASSERTIONS: Sign both the response and individual assertions.

signature_certificate_id

string

ID of the signature certificate to use.

AttributeMappingSpec

Attribute mapping specification for SAML application.

Field

Description

name_id

NameIdSpec

Required field. NameID configuration.

attributes[]

Attribute

List of attribute mappings.

The maximum number of elements is 50.

NameIdSpec

NameID specification for SAML application.

Field

Description

format

enum Format

Required field. Format of the NameID.

  • PERSISTENT: Persistent NameID format.
    This provides a stable, opaque identifier for the user.
  • EMAIL: Email NameID format.
    This uses the user's email address as the identifier.

value

string

Value of the NameID.

The maximum string length in characters is 50.

Attribute

Attribute mapping for SAML applications.

Field

Description

name

string

Required field. Name of the SAML attribute.

The maximum string length in characters is 8000.

value

string

Required field. Value of the SAML attribute.

The maximum string length in characters is 50.

GroupClaimsSettings

Group claims settings for SAML applications.

Field

Description

group_distribution_type

enum GroupDistributionType

Distribution type for group claims.

  • NONE: No groups are provided to the application.
  • ASSIGNED_GROUPS: Only assigned groups are provided to the application.
  • ALL_GROUPS: All groups are provided to the application.

group_attribute_name

string

Name of the SAML attribute that contains group information.

The maximum string length in characters is 8000.

operation.Operation

{
  "id": "string",
  "description": "string",
  "created_at": "google.protobuf.Timestamp",
  "created_by": "string",
  "modified_at": "google.protobuf.Timestamp",
  "done": "bool",
  "metadata": "google.protobuf.Any",
  // Includes only one of the fields `error`, `response`
  "error": "google.rpc.Status",
  "response": "google.protobuf.Any"
  // end of the list of possible fields
}

An Operation resource. For more information, see Operation.

Field

Description

id

string

ID of the operation.

description

string

Description of the operation. 0-256 characters long.

created_at

google.protobuf.Timestamp

Creation timestamp.

created_by

string

ID of the user or service account who initiated the operation.

modified_at

google.protobuf.Timestamp

The time when the Operation resource was last modified.

done

bool

If the value is false, it means the operation is still in progress.
If true, the operation is completed, and either error or response is available.

metadata

google.protobuf.Any

Service-specific metadata associated with the operation.
It typically contains the ID of the target resource that the operation is performed on.
Any method that returns a long-running operation should document the metadata type, if any.

error

google.rpc.Status

The error result of the operation in case of failure or cancellation.

Includes only one of the fields error, response.

The operation result.
If done == false and there was no failure detected, neither error nor response is set.
If done == false and there was a failure detected, error is set.
If done == true, exactly one of error or response is set.

response

google.protobuf.Any

The normal response of the operation in case of success.
If the original method returns no data on success, such as Delete,
the response is google.protobuf.Empty.
If the original method is the standard Create/Update,
the response should be the target resource of the operation.
Any method that returns a long-running operation should document the response type, if any.

Includes only one of the fields error, response.

The operation result.
If done == false and there was no failure detected, neither error nor response is set.
If done == false and there was a failure detected, error is set.
If done == true, exactly one of error or response is set.
Previous
Create
Next
Delete