REST Resource: inboundSamlSsoProfiles

{
  "name": string,
  "customer": string,
  "displayName": string,
  "idpConfig": {
    object (SamlIdpConfig)
  },
  "spConfig": {
    object (SamlSpConfig)
  }
}

string

Output only. Resource name of the SAML SSO profile.

string

Immutable. The customer.

For example: customers/C0123abc.

string

Human-readable name of the SAML SSO profile.

object (SamlIdpConfig)

SAML identity provider configuration.

object (SamlSpConfig)

SAML service provider configuration for this SAML SSO profile. These are the service provider details provided by Google that should be configured on the corresponding identity provider.

{
  "entityId": string,
  "singleSignOnServiceUri": string,
  "logoutRedirectUri": string,
  "changePasswordUri": string
}

string

Required. The SAML Entity ID of the identity provider.

string

Required. The SingleSignOnService endpoint location (sign-in page URL) of the identity provider. This is the URL where the AuthnRequest will be sent. Must use HTTPS. Assumed to accept the HTTP-Redirect binding.

string

The Logout Redirect URL (sign-out page URL) of the identity provider. When a user clicks the sign-out link on a Google page, they will be redirected to this URL. This is a pure redirect with no attached SAML LogoutRequest i.e. SAML single logout is not supported. Must use HTTPS.

string

The Change Password URL of the identity provider. Users will be sent to this URL when changing their passwords at myaccount.google.com. This takes precedence over the change password URL configured at customer-level. Must use HTTPS.

{
  "entityId": string,
  "assertionConsumerServiceUri": string
}

string

Output only. The SAML Entity ID for this service provider.

string

Output only. The SAML Assertion Consumer Service (ACS) URL to be used for the IDP-initiated login. Assumed to accept response messages via the HTTP-POST binding.