SAML Federation API, REST: Federation.List
Retrieves the list of federations in the specified organization.
HTTP request
GET https://organization-manager.api.yandexcloud.kz/organization-manager/v1/saml/federations
Query parameters
Field |
Description |
organizationId |
string Required field. ID of the organization to list federations in. |
pageSize |
string (int64) The maximum number of results per page to return. If the number of available |
pageToken |
string Page token. To get the next page of results, set |
filter |
string A filter expression that filters resources listed in the response.
|
Response
HTTP Code: 200 - OK
{
"federations": [
{
"id": "string",
"organizationId": "string",
"name": "string",
"description": "string",
"createdAt": "string",
"cookieMaxAge": "string",
"autoCreateAccountOnLogin": "boolean",
"issuer": "string",
"ssoBinding": "string",
"ssoUrl": "string",
"securitySettings": {
"encryptedAssertions": "boolean",
"forceAuthn": "boolean"
},
"caseInsensitiveNameIds": "boolean",
"labels": "object"
}
],
"nextPageToken": "string"
}
Field |
Description |
federations[] |
List of federations. |
nextPageToken |
string This token allows you to get the next page of results for list requests. If the number of results |
Federation
A federation.
For more information, see SAML-compatible identity federations.
Field |
Description |
id |
string Required field. ID of the federation. |
organizationId |
string ID of the organization that the federation belongs to. |
name |
string Required field. Name of the federation. |
description |
string Description of the federation. |
createdAt |
string (date-time) Creation timestamp. String in RFC3339 To work with values in this field, use the APIs described in the |
cookieMaxAge |
string (duration) Browser cookie lifetime in seconds. |
autoCreateAccountOnLogin |
boolean Add new users automatically on successful authentication. If the value is |
issuer |
string Required field. ID of the IdP server to be used for authentication. |
ssoBinding |
enum (BindingType) Single sign-on endpoint binding type. Most Identity Providers support the SAML Binding is a mapping of a SAML protocol message onto standard messaging
|
ssoUrl |
string Required field. Single sign-on endpoint URL. |
securitySettings |
Federation security settings. |
caseInsensitiveNameIds |
boolean Use case insensitive Name IDs. |
labels |
object (map<string, string>) Resource labels as |
FederationSecuritySettings
Federation security settings.
Field |
Description |
encryptedAssertions |
boolean Enable encrypted assertions. |
forceAuthn |
boolean Value parameter ForceAuthn in SAMLRequest. |