Configuration for the SAML Auth flow.

Attributes

• attributeMapping (type: map(), default: nil) - Optional. The mapping of additional user attributes like nickname, birthday and address etc.. key is the name of this additional attribute. value is a string presenting as CEL(common expression language, go/cel) used for getting the value from the resources. Take nickname as an example, in this case, key is "attribute.nickname" and value is "assertion.nickname".
• groupPrefix (type: String.t, default: nil) - Optional. Prefix to prepend to group name.
• groupsAttribute (type: String.t, default: nil) - Optional. The SAML attribute to read groups from. This value is expected to be a string and will be passed along as-is (with the option of being prefixed by the group_prefix).
• identityProviderCertificates (type: list(String.t), default: nil) - Required. The list of IdP certificates to validate the SAML response against.
• identityProviderId (type: String.t, default: nil) - Required. The entity ID of the SAML IdP.
• identityProviderSsoUri (type: String.t, default: nil) - Required. The URI where the SAML IdP exposes the SSO service.
• userAttribute (type: String.t, default: nil) - Optional. The SAML attribute to read username from. If unspecified, the username will be read from the NameID element of the assertion in SAML response. This value is expected to be a string and will be passed along as-is (with the option of being prefixed by the user_prefix).
• userPrefix (type: String.t, default: nil) - Optional. Prefix to prepend to user name.