LOGON_TRUSTED | LOGON Endpoint | |
/rpc/logon/?method=LOGON_TRUSTED | ||
Trusted log on using a trusted 3rd party (typically SAML) based Identity Provider. It works with similar behaviour to the LOGON method, but accepts different inputs to validate authentication (AuthN). By default, mydigitalstructure expects the user logon name to be an email address, as returned by the Identity Provider. |
PARAMETERS | TYPE | NOTES | |
Base64 | text (1) | true / false [default]. For SAML, is the SAMLResponse in base 64 | |
IdentityProviderType | text | 'saml' [default], 'url' | |
SAMLResponse | text | For when identityprovidertype='saml'; the Identity Provider passes this data in response to the SAML AuthRequest | |
Data | text | For when identityprovidertype='url'; the data to be sent to the URL setup on the site. Can pass [[logonkey]] to be replaced with the session's key |
RETURN | ||
A 302 redirect to "Audience" value in the SAML response using https. | ie https://app.1blankspace.com |
SAML | |
Example samlresponse from Google GSuite as Identity Provider | |