SAML identity providers

List SAML identity providers

get/identity-providers

List SAML identity providers.

SecurityCloudOneApiKey

Request

query Parameters

cursor	string <byte> Default: "" An encoded value used to retrieve the next set of results for a query that returns more than `limit` results.
limit	integer <int64> Default: 25 The maximum number of records to return.

header Parameters

Api-Version

required

string

The API version used in this request.

Value: "v1"

Responses

200

List of SAML identity providers.

400

Something about your request didn't quite make sense. The error message should help you figure out what went wrong.

401

Unauthorized

403

You tried to do something that you're not allowed to do. Check your privileges to see what you're actually allowed to do. This could also mean that your token has expired.

429

You have made too many requests too quickly. Check the Retry-After header for an indication of when you might be able to try again.

500

Something has gone terribly wrong. Sorry! The error message may help you figure out what went wrong, but it's unlikely that you'll be able to do anything about it unless you're the server administrator. It's possible that trying again will help, but it's more likely that you're out of luck for the moment.

503

The service is temporarily unavailable, likely due to maintenance. It should be available soon, check the Retry-After header for an indication of when you might be able to try again.

Response samples

200
400
401
500
503

application/json

{"identity-providers": [{"name": "IdentityProvider",
"description": "An example identity provider.",
"metadataURL": "https://tm.login-tmp.trendmicro.com/simplesaml/saml2/idp/metadata.php",
"mapping": {"name": "name",
"timezone": "timezone",
"locale": "locale",
"role": "groups",
"roles": {"admin": "urn:cloudone:identity:us-1:012345678901:role/full-access"
}
},
"urn": "urn:cloudone:identity:us-1:012345678901:identity-providers/saml/0ujsswThIGTUYm2K8FjOOfXtY1K",
"entityID": "https://example.com/saml",
"validUntil": "2021-04-01T00:00:00Z",
"created": "2020-04-01T00:00:00Z",
"updated": "2020-04-01T00:00:00Z"
}
],
"next": "dGhpcyB2YWx1ZSBpcyBvcGFxdWUsIGRlY29kaW5nIGl0IHdvbid0IGJlIHVzZWZ1bAo="
}

Create SAML identity provider

post/identity-providers

Create a SAML identity provider.

SecurityCloudOneApiKey

Request

header Parameters

Api-Version

required

string

The API version used in this request.

Value: "v1"

Request Body schema: application/json

created	string <date-time> The time that the identity provider was created.
description	string An optional description for this SAML identity provider.
entityID	string The entity ID extracted from the identity provider's metadata XML.
	object A mapping defining which attributes to use when processing the SAML response.
metadataURL	string The URL through which the metadata XML can be retrieved. The request body need contain only metadataURL or metadataXML; it cannot contain both; they are mutually exclusive.
metadataXML	string <byte> The metadata XML describing this SAML identity provider.
name	string The name to display for this SAML identity provider.
updated	string <date-time> The time that the identity provider was last updated.
urn	string The fully-qualified identifier for this SAML identity provider.
validUntil	string <date-time> The latest expiry date from the certificates in the identity provider's metadata XML.

Responses

201

The identity provider has been created.

400

Something about your request didn't quite make sense. The error message should help you figure out what went wrong.

401

Unauthorized

403

You tried to do something that you're not allowed to do. Check your privileges to see what you're actually allowed to do. This could also mean that your token has expired.

429

You have made too many requests too quickly. Check the Retry-After header for an indication of when you might be able to try again.

500

Something has gone terribly wrong. Sorry! The error message may help you figure out what went wrong, but it's unlikely that you'll be able to do anything about it unless you're the server administrator. It's possible that trying again will help, but it's more likely that you're out of luck for the moment.

503

The service is temporarily unavailable, likely due to maintenance. It should be available soon, check the Retry-After header for an indication of when you might be able to try again.

Request samples

Payload

application/json

{"name": "ADFS",
"mapping": {"name": "name",
"timezone": "timezone",
"locale": "locale",
"role": "groups",
"roles": {"administrator": "urn:cloudone:identity:us-1:0123456678901:role/full-access"
}
},
"metadataXML": "PD94bWwuLi4K"
}

Response samples

201
400
401
500
503

application/json

{"name": "IdentityProvider",
"description": "An example identity provider.",
"metadataURL": "https://tm.login-tmp.trendmicro.com/simplesaml/saml2/idp/metadata.php",
"mapping": {"name": "name",
"timezone": "timezone",
"locale": "locale",
"role": "groups",
"roles": {"admin": "urn:cloudone:identity:us-1:012345678901:role/full-access"
}
},
"urn": "urn:cloudone:identity:us-1:012345678901:identity-providers/saml/0ujsswThIGTUYm2K8FjOOfXtY1K",
"entityID": "https://example.com/saml",
"validUntil": "2021-04-01T00:00:00Z",
"created": "2020-04-01T00:00:00Z",
"updated": "2020-04-01T00:00:00Z"
}

Describe SAML identity provider

get/identity-providers/{id}

Describe a SAML identity provider.

SecurityCloudOneApiKey

Request

path Parameters

id

required

string

The SAML identity provider ID.

header Parameters

Api-Version

required

string

The API version used in this request.

Value: "v1"

Responses

200

The details of the SAML identity provider.

400

Something about your request didn't quite make sense. The error message should help you figure out what went wrong.

401

Unauthorized

403

You tried to do something that you're not allowed to do. Check your privileges to see what you're actually allowed to do. This could also mean that your token has expired.

404

The resource you were looking for doesn't exist.

429

You have made too many requests too quickly. Check the Retry-After header for an indication of when you might be able to try again.

500

Something has gone terribly wrong. Sorry! The error message may help you figure out what went wrong, but it's unlikely that you'll be able to do anything about it unless you're the server administrator. It's possible that trying again will help, but it's more likely that you're out of luck for the moment.

503

The service is temporarily unavailable, likely due to maintenance. It should be available soon, check the Retry-After header for an indication of when you might be able to try again.

Response samples

application/json

{"name": "IdentityProvider",
"description": "An example identity provider.",
"metadataURL": "https://tm.login-tmp.trendmicro.com/simplesaml/saml2/idp/metadata.php",
"mapping": {"name": "name",
"timezone": "timezone",
"locale": "locale",
"role": "groups",
"roles": {"admin": "urn:cloudone:identity:us-1:012345678901:role/full-access"
}
},
"urn": "urn:cloudone:identity:us-1:012345678901:identity-providers/saml/0ujsswThIGTUYm2K8FjOOfXtY1K",
"entityID": "https://example.com/saml",
"validUntil": "2021-04-01T00:00:00Z",
"created": "2020-04-01T00:00:00Z",
"updated": "2020-04-01T00:00:00Z"
}

Modify SAML identity provider

post/identity-providers/{id}

Modify a SAML identity provider.

SecurityCloudOneApiKey

Request

path Parameters

id

required

string

The SAML identity provider ID.

header Parameters

Api-Version

required

string

The API version used in this request.

Value: "v1"

Request Body schema: application/json

created	string <date-time> The time that the identity provider was created.
description	string An optional description for this SAML identity provider.
entityID	string The entity ID extracted from the identity provider's metadata XML.
	object A mapping defining which attributes to use when processing the SAML response.
metadataURL	string The URL through which the metadata XML can be retrieved. The request body need contain only metadataURL or metadataXML; it cannot contain both; they are mutually exclusive.
metadataXML	string <byte> The metadata XML describing this SAML identity provider.
name	string The name to display for this SAML identity provider.
updated	string <date-time> The time that the identity provider was last updated.
urn	string The fully-qualified identifier for this SAML identity provider.
validUntil	string <date-time> The latest expiry date from the certificates in the identity provider's metadata XML.

Responses

200

The SAML identity provider has been modified.

400

Something about your request didn't quite make sense. The error message should help you figure out what went wrong.

401

Unauthorized

403

You tried to do something that you're not allowed to do. Check your privileges to see what you're actually allowed to do. This could also mean that your token has expired.

404

The resource you were looking for doesn't exist.

429

You have made too many requests too quickly. Check the Retry-After header for an indication of when you might be able to try again.

500

Something has gone terribly wrong. Sorry! The error message may help you figure out what went wrong, but it's unlikely that you'll be able to do anything about it unless you're the server administrator. It's possible that trying again will help, but it's more likely that you're out of luck for the moment.

503

The service is temporarily unavailable, likely due to maintenance. It should be available soon, check the Retry-After header for an indication of when you might be able to try again.

Request samples

Payload

application/json

{"name": "ADFS",
"mapping": {"name": "name",
"timezone": "timezone",
"locale": "locale",
"role": "groups",
"roles": {"administrator": "urn:cloudone:identity:us-1:0123456678901:role/full-access"
}
},
"metadataXML": "PD94bWwuLi4K"
}

Response samples

application/json

{"name": "IdentityProvider",
"description": "An example identity provider.",
"metadataURL": "https://tm.login-tmp.trendmicro.com/simplesaml/saml2/idp/metadata.php",
"mapping": {"name": "name",
"timezone": "timezone",
"locale": "locale",
"role": "groups",
"roles": {"admin": "urn:cloudone:identity:us-1:012345678901:role/full-access"
}
},
"urn": "urn:cloudone:identity:us-1:012345678901:identity-providers/saml/0ujsswThIGTUYm2K8FjOOfXtY1K",
"entityID": "https://example.com/saml",
"validUntil": "2021-04-01T00:00:00Z",
"created": "2020-04-01T00:00:00Z",
"updated": "2020-04-01T00:00:00Z"
}

Delete SAML identity provider

delete/identity-providers/{id}

Delete a SAML identity provider.

SecurityCloudOneApiKey

Request

path Parameters

id

required

string

The SAML identity provider ID.

header Parameters

Api-Version

required

string

The API version used in this request.

Value: "v1"

Responses

204

The SAML identity provider has been deleted.

400

Something about your request didn't quite make sense. The error message should help you figure out what went wrong.

401

Unauthorized

403

You tried to do something that you're not allowed to do. Check your privileges to see what you're actually allowed to do. This could also mean that your token has expired.

429

You have made too many requests too quickly. Check the Retry-After header for an indication of when you might be able to try again.

500

Something has gone terribly wrong. Sorry! The error message may help you figure out what went wrong, but it's unlikely that you'll be able to do anything about it unless you're the server administrator. It's possible that trying again will help, but it's more likely that you're out of luck for the moment.

503

The service is temporarily unavailable, likely due to maintenance. It should be available soon, check the Retry-After header for an indication of when you might be able to try again.

Response samples

400
401
500
503

application/json

{"message": "Something went wrong."
}