Feature | Version | |
---|---|---|
connection | 3 |
Feature | Version | |
---|---|---|
connection | 3 |
Required
An identifier specifying the identity provider.Specifies the URL that the client is using to request resources from the server through a proxy that is rewriting URLs to reach the server.
Ideally, the client should not set this value. Instead, the proxy should set it with its authority if it is not specified by a previous proxy.
Example: ININ-ICWS-Original-URL: https://proxy/api/server/icws/connection/version/
Required
A comma delimited list of client capabilities for single sign-on. The server will make a decision on how to contact the identity provider through the client. The currently supported options are:
saml2Post
- SAML 2.0 HTTP POST capability. Recommended for web browser-based applications.saml2Redirect
- SAML 2.0 HTTP redirect capability. Recommended for other types of applications.Example: singleSignOnCapabilities=saml2Redirect,saml2Post
Specifies origin of the client running inside a web browser. This is used as the target origin for sending the token via window.postMessage
.
If not specified, the token will not be issued via window.postMessage
for security reasons.
For origins not using the standard HTTP ports (80 for HTTP and 443 for HTTPS), the port must be specified on the URL along with the scheme.
For example, an application running at https://applicationHost/theApplication
, use webBrowserApplicationOrigin=https%3A%2F%2FapplicationHost
.
After completing the single sign-on process, the ICWS
server directs the client back to the URI specified by this parameter.
When this process is used, the icws_sso_response
cookie will be set on the redirect to the client. This cookie should be provided to GET /icws/connection/single-sign-on/response to retreive the results from the single sign-on process.
Feature | Version | |
---|---|---|
connection | 5 |
Required
Specifies the URL of the provider that the client should redirect to.
Example: Location: https://identityProvider/login?singleSignOnRequest=dafsdt35rasdfad43674
Required
Specifies the URL of the provider that the client should redirect to.
Example: Location: https://identityProvider/login?singleSignOnRequest=dafsdt35rasdfad43674
Required
A message that describes the current error.