Skip to main content
POST
/
api
/
v1
/
sso
/
config
cURL
curl --request POST \
  --url https://us.infisical.com/api/v1/sso/config \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '{
  "organizationId": "<string>",
  "authProvider": "okta-saml",
  "isActive": true,
  "entryPoint": "<string>",
  "issuer": "<string>",
  "cert": "<string>",
  "enableGroupSync": true
}'
{
  "id": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
  "orgId": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
  "isActive": true,
  "lastUsed": "2023-11-07T05:31:56Z",
  "createdAt": "2023-11-07T05:31:56Z",
  "updatedAt": "2023-11-07T05:31:56Z",
  "authProvider": "<string>"
}

Authorizations

Authorization
string
header
required

An access token in Infisical

Body

application/json
organizationId
string
required

The ID of the organization to create the SAML config for.

authProvider
enum<string>
required

Authentication provider to use for SAML authentication.

Available options:
okta-saml,
azure-saml,
jumpcloud-saml,
google-saml,
keycloak-saml,
auth0-saml
isActive
boolean
required

Whether to enable or disable this SAML configuration.

entryPoint
string
required

The entry point for the SAML authentication. This is the URL that the user will be redirected to after they have authenticated with the SAML provider.

issuer
string
required

The SAML provider issuer URL or entity ID.

cert
string
required

The certificate to use for SAML authentication.

enableGroupSync
boolean

Whether to enable automatic synchronization of group memberships from the SAML provider to Infisical groups.

Response

Default Response

id
string<uuid>
required
orgId
string<uuid>
required
isActive
boolean
required
createdAt
string<date-time>
required
updatedAt
string<date-time>
required
authProvider
string
required
lastUsed
string<date-time> | null