Gigya Job Openings

fidm.saml.getConfig REST

Skip to end of metadata
Go to start of metadata
 Table of Contents

Description

This API retrieves the Gigya site configuration for SAML. 

 

Request URL


Where <Data_Center> is:
  • us1.gigya.com - For the US data center.
  • eu1.gigya.com - For the European data center.
  • au1.gigya.com - For the Australian data center.
  • ru1.gigya.com - For the Russian data center.
  • cn1.gigya-api.cn - For the Chinese data center.

If you are not sure of your site's data center, see Finding Your Data Center.

Parameters

RequiredNameTypeDescription
idpNamestringThe name of an external IdP config that was previously created in Gigya's database. 
If idpName is provided, then the metadata URL of this API's response will also include the idpName as a query param, i.e., https://fidm.gigya.com//v2.0/3_qpZQ8I3sjaDU-3XIjeoq-1YUKFhOtbBioAAi4QSVhgK0S_Arz4wUkZJ3JjOjOrFysp/metadata?idpName=media-id. When the metadata URL is accessed, the following attributes in the metadata will be created with values from the provided externalIdPConfig:
  • WantAssertionsSigned
  • AuthnRequestsSigned

If idpName is not provided or does not exist, these attributes will be created with default values (false).

format string Determines the format of the response. The options are:
  • json (default)
  • jsonp - if the format is jsonp then you are required to define a callback method (see parameter below).
callback string This parameter is required only when the format parameter is set to jsonp (see above). In such cases this parameter should define the name of the callback method to be called in the response, along with the jsonp response data.
context string/JSON This parameter may be used to pass data through the current method and return it, unchanged, within the response.
dontHandleScreenSet Boolean This parameter may be used in order to suppress the showing of screen-sets as a result of API calls. Default is false.
httpStatusCodes Boolean The default value of this parameter is false, which means that the HTTP status code in Gigya's response is always 200 (OK), even if an error occurs. The error code and message is given within the response data (see below). If this parameter is set to true, the HTTP status code in Gigya's response would reflect an error, if one occurred.

Authorization Parameters

Each REST API request must contain identification and authorization parameters.

Some REST APIs may function without these authorization parameters, however, when that occurs, these calls are treated as client-side calls and all client-side rate limits will apply. In order to not reach client-side IP rate limits that may impact your implementation when using server-to-server REST calls, it is Recommended Best Practice to always sign the request or use a secret. A non-exhaustive list of REST APIs that this may apply to are as follows:

  • accounts.login
  • socialize.login
  • accounts.notifyLogin
  • socialize.notifyLogin
  • accounts.finalizeRegistration
  • accounts.linkAccounts

Please refer to the Authorization Parameters section for details. 

Response Data

FieldTypeDescription
configJSON objectThe Gigya site SAML configuration object to be retrieved. See below for it's data members. By default this API returns XML, for JSON, include the format parameter.
 
errorCode integer The result code of the operation. Code '0' indicates success, any other number indicates failure. For a complete list of error codes, see the Error Codes table.
errorMessage string A short textual description of an error, associated with the errorCode, for logging purposes. This field will appear in the response only in case of an error.
errorDetails string This field will appear in the response only in case of an error and will contain the exception info, if available.
fullEventName string The full name of the event that triggered the response. This is an internally used parameter that is not always returned and should not be relied upon by your implementation.
callId string Unique identifier of the transaction, for debugging purposes.
time string The time of the response represented in ISO 8601 format, i.e., yyyy-mm-dd-Thh:MM:ss.SSSZ or
statusCode integer The HTTP response code of the operation. Code '200' indicates success.
This property is deprecated and only returned for backward compatibility.
statusReason string A brief explanation of the status code.
This property is deprecated and only returned for backward compatibility.

 

 

Data Members

PropertyTypeDescription
entityIDstringThe provider's entity ID, which is also called "issuer".
certificatestringThe Gigya x509 certificate. This is a fixed value field and cannot be set, it is only returned when retrieving the configuration.
certificatesJSON array

Contains the supported signature algorithms for this SP and their corresponding x509 certificate. Includes:

  • SHA1
  • SHA256
spAssertionConsumerServiceUrlstring

The Gigya SP ACS URL. Receives the SSO assertion from the IdP. The endpoint logs in the user specified in the assertion and continues the user-initiated login process. This is a fixed value field and cannot be set, it is only returned when retrieving the configuration.

The format is: fidm.gigya.com/saml/v2.0/<api key>/sp/acs.

spSingleLogoutServiceUrlstring

The Gigya SP SLO URL. Receives an IdP initiated SLO request. Logs out the user. This is a fixed value field and cannot be set, it is only returned when retrieving the configuration.

The format is: fidm.gigya.com/saml/v2.0/<api key>/sp/slo.

spMetadataUrlstring

The Gigya SP metadata URL. Returns the metadata xml for the Gigya SP. This is a fixed value field and cannot be set, it is only returned when retrieving the configuration.

The format is: fidm.gigya.com/saml/v2.0/<api key>/sp/metadata.

spMetadataUrlsJSON array

Contains the metadata URLs for the supported signature algorithms. Includes:

  • SHA1
  • SHA256

 

A field that does not contain data will not appear in the response.

Response Example

<?xml version="1.0" encoding="utf-8"?>
<GetConfigResponse xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
  <statusCode>200</statusCode>
  <errorCode>0</errorCode>
  <statusReason>OK</statusReason>
  <callId>f39db600485b4c39a5eb547bd3e1d326</callId>
  <time>2017-03-15T12:04:01.333Z</time>
  <config>
    <siteID>73xxxx1</siteID>
    <name>https://fidm.gigya.com/saml/v2.0/3_xxxxxxxxMs0TkcBjOI1s47bu7jxPZYLdU1Z9FpCM7Stly4wt6rgPtVH6VD0L52ai</name>
    <entityID>https://fidm.gigya.com/saml/v2.0/3_xxxxxxxxMs0TkcBjOI1s47bu7jxPZYLdU1Z9FpCM7Stly4wt6rgPtVH6VD0L52ai</entityID>
			<certificate>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</certificate>
	<certificates>
		<SHA1>MIICujCCAaKgAwIBAgIQHFD0XsJbGrBGbMS...</SHA1>
		<SHA256>MIICujCCAaKgAwIBAgIQHFD0XsJbGrBGbMS...</SHA256>
	</certificates>
	<spAssertionConsumerServiceUrl>https://fidm.us1.gigya.com/saml/v2.0/3_xxxxxxxxMs0TkcBjOI1s47bu7jxPZYLdU1Z9FpCM7Stly4wt6rgPtVH6VD0L52ai/sp/acs</spAssertionConsumerServiceUrl>
    <spSingleLogoutServiceUrl>https://fidm.us1.gigya.com/saml/v2.0/3_xxxxxxxxMs0TkcBjOI1s47bu7jxPZYLdU1Z9FpCM7Stly4wt6rgPtVH6VD0L52ai/sp/slo</spSingleLogoutServiceUrl>
    <spMetadataUrl>https://fidm.us1.gigya.com/saml/v2.0/3_xxxxxxxxMs0TkcBjOI1s47bu7jxPZYLdU1Z9FpCM7Stly4wt6rgPtVH6VD0L52ai/sp/metadata?idPName=</spMetadataUrl>
  	<spMetadataUrls>
		<SHA1>https://fidm.il1.gigya.com/saml/v2.0/3_X14tZ07lVwVIoVsz...._pWSq0ONKDnCKx-0/sp/metadata?signAlgorithm=SHA1</SHA1>
		<SHA256>https://fidm.il1.gigya.com/saml/v2.0/3_X14tZ07lVwVIoVsz...._pWSq0ONKDnCKx-0/sp/metadata?signAlgorithm=SHA256</SHA256>
	</spMetadataUrls>
  </config>
</GetConfigResponse>