<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D54z00008gLBlyCAGOkta Classic EngineAPI Access ManagementAnswered2024-03-25T15:58:20.000Z2023-01-19T20:58:07.000Z2023-01-20T21:11:32.000Z

04kzt (04kzt) asked a question.

January 19, 2023 at 8:58 PM
Missing APIs - Identity Provider attribute & route modifications

Hey,

 

I tried adding a new identity provider (SAML 2.0) using the API - to simulate what I did using the Admin panel.

I stumbled upon the following issues:

 

  1. When setting the algorithms payload:

"algorithms": {

"request": {

"signature": {

"algorithm": "SHA-256",

"scope": "REQUEST"

}

},

"response": {

"signature": {

"algorithm": "SHA-256",

"scope": "ASSERTION"

}

}

In the documentation, it's clearly stated that "ASSERTION" is a valid response scope.

However, when making an API request, it's flagged as an invalid value. Is it a bug?

 

2. I looked for an API for configuring routing rules, but I didn't find any. I found this answer from 5 months ago (https://support.okta.com/help/s/question/0D54z000080r4FuCAI/okta-api-for-routing-rules-configuration-for-idp?language=en_US) - is this still the case or has that option been added since then?

 

3. I also looked for an API to add a new attribute for the IDP I wanted to create.

In the UI, it involved going to my new IDP -> Edit Profile and Mapping -> Add attribute.

But I didn't find any API for that, am I missing something?

 

4. I also didn't find an API to add attributes for users (what I would normally do using the admin UI -> Directory -> Profile Editor - > User (Default) -> Add attribute.

 

5. Same goes for editing a user's profile (setting the value for the attribute I wanted to add)

 

 

I'd really appreciate help as it's really important for our future projects.

 

Thanks!

 

  • 1 answer
  • 397 views

  • Mihai Negoita - Okta (Okta, Inc.)

    Hi @04kzt (04kzt)​ , Thank you for reaching out to the Okta Community!

     

    The API is limited to the features described here:

    https://developer.okta.com/docs/reference/api/idps/

     

    Functionality available in the UI is not necessarily exposed to the public API.  

     

    You can suggest Feature Enhancements on the Okta Community page by going to the Community Ideas tab. Features suggested in our community are reviewed and can be voted and commented on by other members. High popularity will increase the likelihood of it being picked up by the Product Team and it being implemented.  

    More details here: 

    https://support.okta.com/help/s/blog/a674z000001cj7YAAQ/okta-ideas-faq?language=en_US

     

     

    If my answer helped, remember to mark it as best to increase its visibility for other members of the Okta Community who might have the same questions as you. 

     

    Hope my answer helps! 

    --------------------------------

    Community members help others by clicking Like or Select as Best on responses. Try it today.

    Expand Post
This question is closed.
Loading
Missing APIs - Identity Provider attribute & route modifications