diff --git a/auth0/resource_auth0_connection.go b/auth0/resource_auth0_connection.go
index 7bb75fde3..42be8ad70 100644
--- a/auth0/resource_auth0_connection.go
+++ b/auth0/resource_auth0_connection.go
@@ -600,6 +600,21 @@ var connectionSchema = map[string]*schema.Schema{
Optional: true,
Description: "SAML single logout URL for the connection.",
},
+ "disable_sign_out": {
+ Type: schema.TypeBool,
+ Optional: true,
+ Description: "When enabled, will disable sign out.",
+ },
+ "metadata_xml": {
+ Type: schema.TypeString,
+ Optional: true,
+ Description: "The XML content for the SAML metadata document.",
+ },
+ "metadata_url": {
+ Type: schema.TypeString,
+ Optional: true,
+ Description: "The URL of the SAML metadata document.",
+ },
"fields_map": {
Type: schema.TypeString,
Optional: true,
diff --git a/auth0/resource_auth0_connection_test.go b/auth0/resource_auth0_connection_test.go
index c4c37cc67..db79d86a4 100644
--- a/auth0/resource_auth0_connection_test.go
+++ b/auth0/resource_auth0_connection_test.go
@@ -1337,9 +1337,12 @@ func TestAccConnectionSAML(t *testing.T) {
resource.TestCheckResourceAttr("auth0_connection.my_connection", "show_as_button", "false"),
resource.TestCheckResourceAttr("auth0_connection.my_connection", "options.#", "1"),
resource.TestCheckResourceAttr("auth0_connection.my_connection", "options.0.sign_out_endpoint", "https://saml.provider/sign_out"),
+ resource.TestCheckResourceAttr("auth0_connection.my_connection", "options.0.disable_sign_out", "false"),
resource.TestCheckResourceAttr("auth0_connection.my_connection", "options.0.entity_id", ""),
resource.TestCheckResourceAttr("auth0_connection.my_connection", "options.0.idp_initiated.0.client_authorize_query", "type=code&timeout=30"),
resource.TestCheckResourceAttr("auth0_connection.my_connection", "options.0.fields_map", "{\"email\":[\"emailaddress\",\"nameidentifier\"],\"family_name\":\"surname\",\"name\":[\"name\",\"nameidentifier\"]}"),
+ resource.TestCheckResourceAttr("auth0_connection.my_connection", "options.0.metadata_url", ""),
+ resource.TestCheckResourceAttr("auth0_connection.my_connection", "options.0.metadata_xml", ""),
),
},
{
@@ -1349,8 +1352,11 @@ func TestAccConnectionSAML(t *testing.T) {
resource.TestCheckResourceAttr("auth0_connection.my_connection", "options.#", "1"),
resource.TestCheckResourceAttr("auth0_connection.my_connection", "options.0.idp_initiated.0.client_authorize_query", "type=code&timeout=60"),
resource.TestCheckResourceAttr("auth0_connection.my_connection", "options.0.sign_out_endpoint", ""),
+ resource.TestCheckResourceAttr("auth0_connection.my_connection", "options.0.disable_sign_out", "true"),
resource.TestCheckResourceAttr("auth0_connection.my_connection", "options.0.entity_id", "example"),
resource.TestCheckResourceAttr("auth0_connection.my_connection", "options.0.fields_map", "{\"email\":[\"emailaddress\",\"nameidentifier\"],\"family_name\":\"appelido\",\"name\":[\"name\"]}"),
+ resource.TestCheckResourceAttr("auth0_connection.my_connection", "options.0.metadata_url", "https://saml.provider/imi/ns/FederationMetadata.xml"),
+ resource.TestCheckResourceAttr("auth0_connection.my_connection", "options.0.metadata_xml", ""),
),
},
},
@@ -1391,6 +1397,7 @@ ZsUkLw2I7zI/dNlWdB8Xp7v+3w9sX5N3J/WuJ1KOO5m26kRlHQo7EzT3974g
EOF
sign_in_endpoint = "https://saml.provider/sign_in"
sign_out_endpoint = "https://saml.provider/sign_out"
+ disable_sign_out = false
user_id_attribute = "https://saml.provider/imi/ns/identity-200810"
tenant_domain = "example.com"
domain_aliases = ["example.com", "example.coz"]
@@ -1409,6 +1416,8 @@ EOF
client_protocol = "samlp"
client_authorize_query = "type=code&timeout=30"
}
+ metadata_xml = ""
+ metadata_url = ""
}
}
`
@@ -1447,6 +1456,7 @@ ZsUkLw2I7zI/dNlWdB8Xp7v+3w9sX5N3J/WuJ1KOO5m26kRlHQo7EzT3974g
EOF
sign_in_endpoint = "https://saml.provider/sign_in"
sign_out_endpoint = ""
+ disable_sign_out = true
tenant_domain = "example.com"
domain_aliases = ["example.com", "example.coz"]
protocol_binding = "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
@@ -1463,6 +1473,8 @@ EOF
client_protocol = "samlp"
client_authorize_query = "type=code&timeout=60"
}
+ metadata_xml = ""
+ metadata_url = "https://saml.provider/imi/ns/FederationMetadata.xml"
}
}
`
diff --git a/auth0/structure_auth0_connection.go b/auth0/structure_auth0_connection.go
index c81fedb02..e1bca94c5 100644
--- a/auth0/structure_auth0_connection.go
+++ b/auth0/structure_auth0_connection.go
@@ -347,6 +347,7 @@ func flattenConnectionOptionsSAML(options *management.ConnectionOptionsSAML) (in
"domain_aliases": options.DomainAliases,
"sign_in_endpoint": options.GetSignInEndpoint(),
"sign_out_endpoint": options.GetSignOutEndpoint(),
+ "disable_sign_out": options.GetDisableSignOut(),
"signature_algorithm": options.GetSignatureAlgorithm(),
"digest_algorithm": options.GetDigestAglorithm(),
"sign_saml_request": options.GetSignSAMLRequest(),
@@ -356,6 +357,8 @@ func flattenConnectionOptionsSAML(options *management.ConnectionOptionsSAML) (in
"set_user_root_attributes": options.GetSetUserAttributes(),
"non_persistent_attrs": options.GetNonPersistentAttrs(),
"entity_id": options.GetEntityID(),
+ "metadata_url": options.GetMetadataURL(),
+ "metadata_xml": options.GetMetadataXML(),
}
fieldsMap, err := structure.FlattenJsonToString(options.FieldsMap)
@@ -782,6 +785,7 @@ func expandConnectionOptionsSAML(d ResourceData) (*management.ConnectionOptionsS
DomainAliases: Set(d, "domain_aliases").List(),
SignInEndpoint: String(d, "sign_in_endpoint"),
SignOutEndpoint: String(d, "sign_out_endpoint"),
+ DisableSignOut: Bool(d, "disable_sign_out"),
SignatureAlgorithm: String(d, "signature_algorithm"),
DigestAglorithm: String(d, "digest_algorithm"),
SignSAMLRequest: Bool(d, "sign_saml_request"),
@@ -791,6 +795,8 @@ func expandConnectionOptionsSAML(d ResourceData) (*management.ConnectionOptionsS
SetUserAttributes: String(d, "set_user_root_attributes"),
NonPersistentAttrs: castToListOfStrings(Set(d, "non_persistent_attrs").List()),
EntityID: String(d, "entity_id"),
+ MetadataXML: String(d, "metadata_xml"),
+ MetadataURL: String(d, "metadata_url"),
}
var err error
diff --git a/auth0/testdata/recordings/TestAccConnectionSAML.yaml b/auth0/testdata/recordings/TestAccConnectionSAML.yaml
index e2ac9f263..512cbae2b 100644
--- a/auth0/testdata/recordings/TestAccConnectionSAML.yaml
+++ b/auth0/testdata/recordings/TestAccConnectionSAML.yaml
@@ -3,7 +3,7 @@ version: 1
interactions:
- request:
body: |
- {"name":"Acceptance-Test-SAML-TestAccConnectionSAML","display_name":"Acceptance-Test-SAML-TestAccConnectionSAML","strategy":"samlp","show_as_button":false,"options":{"idpinitiated":{"client_id":"client_id","client_protocol":"samlp","client_authorizequery":"type=code\u0026timeout=30"},"signingCert":"-----BEGIN CERTIFICATE-----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\n-----END CERTIFICATE-----\n","protocolBinding":"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST","tenant_domain":"example.com","domain_aliases":["example.com","example.coz"],"signInEndpoint":"https://saml.provider/sign_in","signOutEndpoint":"https://saml.provider/sign_out","signatureAlgorithm":"rsa-sha256","digestAlgorithm":"sha256","fieldsMap":{"email":["emailaddress","nameidentifier"],"family_name":"surname","name":["name","nameidentifier"]},"requestTemplate":"\u003csamlp:AuthnRequest xmlns:samlp=\"urn:oasis:names:tc:SAML:2.0:protocol\"\n@@AssertServiceURLAndDestination@@\n ID=\"@@ID@@\"\n IssueInstant=\"@@IssueInstant@@\"\n ProtocolBinding=\"@@ProtocolBinding@@\" Version=\"2.0\"\u003e\n \u003csaml:Issuer xmlns:saml=\"urn:oasis:names:tc:SAML:2.0:assertion\"\u003e@@Issuer@@\u003c/saml:Issuer\u003e\n\u003c/samlp:AuthnRequest\u003e","user_id_attribute":"https://saml.provider/imi/ns/identity-200810","icon_url":"https://example.com/logo.svg","non_persistent_attrs":null}}
+ {"name":"Acceptance-Test-SAML-TestAccConnectionSAML","display_name":"Acceptance-Test-SAML-TestAccConnectionSAML","strategy":"samlp","show_as_button":false,"options":{"idpinitiated":{"client_id":"client_id","client_protocol":"samlp","client_authorizequery":"type=code\u0026timeout=30"},"signingCert":"-----BEGIN CERTIFICATE-----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\n-----END CERTIFICATE-----\n","protocolBinding":"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST","tenant_domain":"example.com","domain_aliases":["example.com","example.coz"],"signInEndpoint":"https://saml.provider/sign_in","signOutEndpoint":"https://saml.provider/sign_out","disableSignout":false,"metadataUrl":"","metadataXml":"", "signatureAlgorithm":"rsa-sha256","digestAlgorithm":"sha256","fieldsMap":{"baz":"baa","foo":"bar"},"requestTemplate":"\u003csamlp:AuthnRequest xmlns:samlp=\"urn:oasis:names:tc:SAML:2.0:protocol\"\n@@AssertServiceURLAndDestination@@\n ID=\"@@ID@@\"\n IssueInstant=\"@@IssueInstant@@\"\n ProtocolBinding=\"@@ProtocolBinding@@\" Version=\"2.0\"\u003e\n \u003csaml:Issuer xmlns:saml=\"urn:oasis:names:tc:SAML:2.0:assertion\"\u003e@@Issuer@@\u003c/saml:Issuer\u003e\n\u003c/samlp:AuthnRequest\u003e","user_id_attribute":"https://saml.provider/imi/ns/identity-200810","icon_url":"https://example.com/logo.svg","non_persistent_attrs":null}}
form: {}
headers:
Content-Type:
@@ -15,7 +15,7 @@ interactions:
response:
body: '{"id":"con_TLEYKd6xG3WKGE4P","options":{"idpinitiated":{"client_id":"client_id","client_protocol":"samlp","client_authorizequery":"type=code&timeout=30","enabled":true},"signingCert":"-----BEGIN
CERTIFICATE-----\nMIID6TCCA1ICAQEwDQYJKoZIhvcNAQEFBQAwgYsxCzAJBgNVBAYTAlVTMRMwEQYD\nVQQIEwpDYWxpZm9ybmlhMRYwFAYDVQQHEw1TYW4gRnJhbmNpc2NvMRQwEgYDVQQK\nEwtHb29nbGUgSW5jLjEMMAoGA1UECxMDRW5nMQwwCgYDVQQDEwNhZ2wxHTAbBgkq\nhkiG9w0BCQEWDmFnbEBnb29nbGUuY29tMB4XDTA5MDkwOTIyMDU0M1oXDTEwMDkw\nOTIyMDU0M1owajELMAkGA1UEBhMCQVUxEzARBgNVBAgTClNvbWUtU3RhdGUxITAf\nBgNVBAoTGEludGVybmV0IFdpZGdpdHMgUHR5IEx0ZDEjMCEGA1UEAxMaZXVyb3Bh\nLnNmby5jb3JwLmdvb2dsZS5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIK\nAoICAQC6pgYt7/EibBDumASF+S0qvqdL/f+nouJw2T1Qc8GmXF/iiUcrsgzh/Fd8\npDhz/T96Qg9IyR4ztuc2MXrmPra+zAuSf5bevFReSqvpIt8Duv0HbDbcqs/XKPfB\nuMDe+of7a9GCywvAZ4ZUJcp0thqD9fKTTjUWOBzHY1uNE4RitrhmJCrbBGXbJ249\nbvgmb7jgdInH2PU7PT55hujvOoIsQW2osXBFRur4pF1wmVh4W4lTLD6pjfIMUcML\nICHEXEN73PDic8KS3EtNYCwoIld+tpIBjE1QOb1KOyuJBNW6Esw9ALZn7stWdYcE\nqAwvv20egN2tEXqj7Q4/1ccyPZc3PQgC3FJ8Be2mtllM+80qf4dAaQ/fWvCtOrQ5\npnfe9juQvCo8Y0VGlFcrSys/MzSg9LJ/24jZVgzQved/Qupsp89wVidwIzjt+WdS\nfyWfH0/v1aQLvu5cMYuW//C0W2nlYziL5blETntM8My2ybNARy3ICHxCBv2RNtPI\nWQVm+E9/W5rwh2IJR4DHn2LHwUVmT/hHNTdBLl5Uhwr4Wc7JhE7AVqb14pVNz1lr\n5jxsp//ncIwftb7mZQ3DF03Yna+jJhpzx8CQoeLT6aQCHyzmH68MrHHT4MALPyUs\nPomjn71GNTtDeWAXibjCgdL6iHACCF6Htbl0zGlG0OAK+bdn0QIDAQABMA0GCSqG\nSIb3DQEBBQUAA4GBAOKnQDtqBV24vVqvesL5dnmyFpFPXBn3WdFfwD6DzEb21UVG\n5krmJiu+ViipORJPGMkgoL6BjU21XI95VQbun5P8vvg8Z+FnFsvRFY3e1CCzAVQY\nZsUkLw2I7zI/dNlWdB8Xp7v+3w9sX5N3J/WuJ1KOO5m26kRlHQo7EzT3974g\n-----END
- CERTIFICATE-----\n","protocolBinding":"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST","tenant_domain":"example.com","domain_aliases":["example.com","example.coz"],"signInEndpoint":"https://saml.provider/sign_in","signOutEndpoint":"https://saml.provider/sign_out","signatureAlgorithm":"rsa-sha256","digestAlgorithm":"sha256","fieldsMap":{"email":["emailaddress","nameidentifier"],"family_name":"surname","name":["name","nameidentifier"]},"requestTemplate":"", "signatureAlgorithm":"rsa-sha256","digestAlgorithm":"sha256","fieldsMap":{"baz":"baa","foo":"bar"},"requestTemplate":"\n @@Issuer@@\n","user_id_attribute":"https://saml.provider/imi/ns/identity-200810","icon_url":"https://example.com/logo.svg","non_persistent_attrs":null,"expires":"2010-09-09T22:05:43.000Z","subject":{"countryName":"AU","stateOrProvinceName":"Some-State","organizationName":"Internet
Widgits Pty Ltd","commonName":"europa.sfo.corp.google.com"},"thumbprints":["b93611bf2cfdb64110c7aae1485718cc9385e151"],"cert":"-----BEGIN
@@ -43,7 +43,7 @@ interactions:
CERTIFICATE-----\n","expires":"2010-09-09T22:05:43.000Z","subject":{"commonName":"europa.sfo.corp.google.com","countryName":"AU","organizationName":"Internet
Widgits Pty Ltd","stateOrProvinceName":"Some-State"},"icon_url":"https://example.com/logo.svg","fieldsMap":{"name":["name","nameidentifier"],"email":["emailaddress","nameidentifier"],"family_name":"surname"},"signingCert":"-----BEGIN
CERTIFICATE-----\nMIID6TCCA1ICAQEwDQYJKoZIhvcNAQEFBQAwgYsxCzAJBgNVBAYTAlVTMRMwEQYD\nVQQIEwpDYWxpZm9ybmlhMRYwFAYDVQQHEw1TYW4gRnJhbmNpc2NvMRQwEgYDVQQK\nEwtHb29nbGUgSW5jLjEMMAoGA1UECxMDRW5nMQwwCgYDVQQDEwNhZ2wxHTAbBgkq\nhkiG9w0BCQEWDmFnbEBnb29nbGUuY29tMB4XDTA5MDkwOTIyMDU0M1oXDTEwMDkw\nOTIyMDU0M1owajELMAkGA1UEBhMCQVUxEzARBgNVBAgTClNvbWUtU3RhdGUxITAf\nBgNVBAoTGEludGVybmV0IFdpZGdpdHMgUHR5IEx0ZDEjMCEGA1UEAxMaZXVyb3Bh\nLnNmby5jb3JwLmdvb2dsZS5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIK\nAoICAQC6pgYt7/EibBDumASF+S0qvqdL/f+nouJw2T1Qc8GmXF/iiUcrsgzh/Fd8\npDhz/T96Qg9IyR4ztuc2MXrmPra+zAuSf5bevFReSqvpIt8Duv0HbDbcqs/XKPfB\nuMDe+of7a9GCywvAZ4ZUJcp0thqD9fKTTjUWOBzHY1uNE4RitrhmJCrbBGXbJ249\nbvgmb7jgdInH2PU7PT55hujvOoIsQW2osXBFRur4pF1wmVh4W4lTLD6pjfIMUcML\nICHEXEN73PDic8KS3EtNYCwoIld+tpIBjE1QOb1KOyuJBNW6Esw9ALZn7stWdYcE\nqAwvv20egN2tEXqj7Q4/1ccyPZc3PQgC3FJ8Be2mtllM+80qf4dAaQ/fWvCtOrQ5\npnfe9juQvCo8Y0VGlFcrSys/MzSg9LJ/24jZVgzQved/Qupsp89wVidwIzjt+WdS\nfyWfH0/v1aQLvu5cMYuW//C0W2nlYziL5blETntM8My2ybNARy3ICHxCBv2RNtPI\nWQVm+E9/W5rwh2IJR4DHn2LHwUVmT/hHNTdBLl5Uhwr4Wc7JhE7AVqb14pVNz1lr\n5jxsp//ncIwftb7mZQ3DF03Yna+jJhpzx8CQoeLT6aQCHyzmH68MrHHT4MALPyUs\nPomjn71GNTtDeWAXibjCgdL6iHACCF6Htbl0zGlG0OAK+bdn0QIDAQABMA0GCSqG\nSIb3DQEBBQUAA4GBAOKnQDtqBV24vVqvesL5dnmyFpFPXBn3WdFfwD6DzEb21UVG\n5krmJiu+ViipORJPGMkgoL6BjU21XI95VQbun5P8vvg8Z+FnFsvRFY3e1CCzAVQY\nZsUkLw2I7zI/dNlWdB8Xp7v+3w9sX5N3J/WuJ1KOO5m26kRlHQo7EzT3974g\n-----END
- CERTIFICATE-----\n","thumbprints":["b93611bf2cfdb64110c7aae1485718cc9385e151"],"idpinitiated":{"enabled":true,"client_id":"client_id","client_protocol":"samlp","client_authorizequery":"type=code&timeout=30"},"tenant_domain":"example.com","domain_aliases":["example.com","example.coz"],"signInEndpoint":"https://saml.provider/sign_in","digestAlgorithm":"sha256","protocolBinding":"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST","requestTemplate":"", "digestAlgorithm":"sha256","protocolBinding":"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST","requestTemplate":"\n @@Issuer@@\n","signOutEndpoint":"https://saml.provider/sign_out","user_id_attribute":"https://saml.provider/imi/ns/identity-200810","signatureAlgorithm":"rsa-sha256","non_persistent_attrs":null},"strategy":"samlp","name":"Acceptance-Test-SAML-TestAccConnectionSAML","provisioning_ticket_url":"https://terraform-provider-auth0-dev.eu.auth0.com/p/samlp/C2odVaA2","is_domain_connection":false,"show_as_button":false,"display_name":"Acceptance-Test-SAML-TestAccConnectionSAML","enabled_clients":[],"realms":["Acceptance-Test-SAML-TestAccConnectionSAML"]}'
headers:
@@ -68,7 +68,7 @@ interactions:
CERTIFICATE-----\n","expires":"2010-09-09T22:05:43.000Z","subject":{"commonName":"europa.sfo.corp.google.com","countryName":"AU","organizationName":"Internet
Widgits Pty Ltd","stateOrProvinceName":"Some-State"},"icon_url":"https://example.com/logo.svg","fieldsMap":{"name":["name","nameidentifier"],"email":["emailaddress","nameidentifier"],"family_name":"surname"},"signingCert":"-----BEGIN
CERTIFICATE-----\nMIID6TCCA1ICAQEwDQYJKoZIhvcNAQEFBQAwgYsxCzAJBgNVBAYTAlVTMRMwEQYD\nVQQIEwpDYWxpZm9ybmlhMRYwFAYDVQQHEw1TYW4gRnJhbmNpc2NvMRQwEgYDVQQK\nEwtHb29nbGUgSW5jLjEMMAoGA1UECxMDRW5nMQwwCgYDVQQDEwNhZ2wxHTAbBgkq\nhkiG9w0BCQEWDmFnbEBnb29nbGUuY29tMB4XDTA5MDkwOTIyMDU0M1oXDTEwMDkw\nOTIyMDU0M1owajELMAkGA1UEBhMCQVUxEzARBgNVBAgTClNvbWUtU3RhdGUxITAf\nBgNVBAoTGEludGVybmV0IFdpZGdpdHMgUHR5IEx0ZDEjMCEGA1UEAxMaZXVyb3Bh\nLnNmby5jb3JwLmdvb2dsZS5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIK\nAoICAQC6pgYt7/EibBDumASF+S0qvqdL/f+nouJw2T1Qc8GmXF/iiUcrsgzh/Fd8\npDhz/T96Qg9IyR4ztuc2MXrmPra+zAuSf5bevFReSqvpIt8Duv0HbDbcqs/XKPfB\nuMDe+of7a9GCywvAZ4ZUJcp0thqD9fKTTjUWOBzHY1uNE4RitrhmJCrbBGXbJ249\nbvgmb7jgdInH2PU7PT55hujvOoIsQW2osXBFRur4pF1wmVh4W4lTLD6pjfIMUcML\nICHEXEN73PDic8KS3EtNYCwoIld+tpIBjE1QOb1KOyuJBNW6Esw9ALZn7stWdYcE\nqAwvv20egN2tEXqj7Q4/1ccyPZc3PQgC3FJ8Be2mtllM+80qf4dAaQ/fWvCtOrQ5\npnfe9juQvCo8Y0VGlFcrSys/MzSg9LJ/24jZVgzQved/Qupsp89wVidwIzjt+WdS\nfyWfH0/v1aQLvu5cMYuW//C0W2nlYziL5blETntM8My2ybNARy3ICHxCBv2RNtPI\nWQVm+E9/W5rwh2IJR4DHn2LHwUVmT/hHNTdBLl5Uhwr4Wc7JhE7AVqb14pVNz1lr\n5jxsp//ncIwftb7mZQ3DF03Yna+jJhpzx8CQoeLT6aQCHyzmH68MrHHT4MALPyUs\nPomjn71GNTtDeWAXibjCgdL6iHACCF6Htbl0zGlG0OAK+bdn0QIDAQABMA0GCSqG\nSIb3DQEBBQUAA4GBAOKnQDtqBV24vVqvesL5dnmyFpFPXBn3WdFfwD6DzEb21UVG\n5krmJiu+ViipORJPGMkgoL6BjU21XI95VQbun5P8vvg8Z+FnFsvRFY3e1CCzAVQY\nZsUkLw2I7zI/dNlWdB8Xp7v+3w9sX5N3J/WuJ1KOO5m26kRlHQo7EzT3974g\n-----END
- CERTIFICATE-----\n","thumbprints":["b93611bf2cfdb64110c7aae1485718cc9385e151"],"idpinitiated":{"enabled":true,"client_id":"client_id","client_protocol":"samlp","client_authorizequery":"type=code&timeout=30"},"tenant_domain":"example.com","domain_aliases":["example.com","example.coz"],"signInEndpoint":"https://saml.provider/sign_in","digestAlgorithm":"sha256","protocolBinding":"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST","requestTemplate":"", "digestAlgorithm":"sha256","protocolBinding":"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST","requestTemplate":"\n @@Issuer@@\n","signOutEndpoint":"https://saml.provider/sign_out","user_id_attribute":"https://saml.provider/imi/ns/identity-200810","signatureAlgorithm":"rsa-sha256","non_persistent_attrs":null},"strategy":"samlp","name":"Acceptance-Test-SAML-TestAccConnectionSAML","provisioning_ticket_url":"https://terraform-provider-auth0-dev.eu.auth0.com/p/samlp/C2odVaA2","is_domain_connection":false,"show_as_button":false,"display_name":"Acceptance-Test-SAML-TestAccConnectionSAML","enabled_clients":[],"realms":["Acceptance-Test-SAML-TestAccConnectionSAML"]}'
headers:
@@ -93,7 +93,7 @@ interactions:
CERTIFICATE-----\n","expires":"2010-09-09T22:05:43.000Z","subject":{"commonName":"europa.sfo.corp.google.com","countryName":"AU","organizationName":"Internet
Widgits Pty Ltd","stateOrProvinceName":"Some-State"},"icon_url":"https://example.com/logo.svg","fieldsMap":{"name":["name","nameidentifier"],"email":["emailaddress","nameidentifier"],"family_name":"surname"},"signingCert":"-----BEGIN
CERTIFICATE-----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\n-----END
- CERTIFICATE-----\n","thumbprints":["b93611bf2cfdb64110c7aae1485718cc9385e151"],"idpinitiated":{"enabled":true,"client_id":"client_id","client_protocol":"samlp","client_authorizequery":"type=code&timeout=30"},"tenant_domain":"example.com","domain_aliases":["example.com","example.coz"],"signInEndpoint":"https://saml.provider/sign_in","digestAlgorithm":"sha256","protocolBinding":"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST","requestTemplate":"", "digestAlgorithm":"sha256","protocolBinding":"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST","requestTemplate":"\n @@Issuer@@\n","signOutEndpoint":"https://saml.provider/sign_out","user_id_attribute":"https://saml.provider/imi/ns/identity-200810","signatureAlgorithm":"rsa-sha256","non_persistent_attrs":null},"strategy":"samlp","name":"Acceptance-Test-SAML-TestAccConnectionSAML","provisioning_ticket_url":"https://terraform-provider-auth0-dev.eu.auth0.com/p/samlp/C2odVaA2","is_domain_connection":false,"show_as_button":false,"display_name":"Acceptance-Test-SAML-TestAccConnectionSAML","enabled_clients":[],"realms":["Acceptance-Test-SAML-TestAccConnectionSAML"]}'
headers:
@@ -104,7 +104,7 @@ interactions:
duration: 1ms
- request:
body: |
- {"display_name":"Acceptance-Test-SAML-TestAccConnectionSAML","is_domain_connection":false,"show_as_button":true,"options":{"debug":false,"idpinitiated":{"client_id":"client_id","client_protocol":"samlp","client_authorizequery":"type=code\u0026timeout=60"},"signingCert":"-----BEGIN CERTIFICATE-----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\n-----END CERTIFICATE-----\n","protocolBinding":"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST","tenant_domain":"example.com","domain_aliases":["example.com","example.coz"],"signInEndpoint":"https://saml.provider/sign_in","signatureAlgorithm":"rsa-sha256","digestAlgorithm":"sha256","fieldsMap":{"email":["emailaddress","nameidentifier"],"family_name":"appelido","name":["name"]},"signSAMLRequest":false,"entityId":"example","non_persistent_attrs":null}}
+ {"display_name":"Acceptance-Test-SAML-TestAccConnectionSAML","is_domain_connection":false,"show_as_button":true,"options":{"debug":false,"idpinitiated":{"client_id":"client_id","client_protocol":"samlp","client_authorizequery":"type=code\u0026timeout=60"},"signingCert":"-----BEGIN CERTIFICATE-----\nMIID6TCCA1ICAQEwDQYJKoZIhvcNAQEFBQAwgYsxCzAJBgNVBAYTAlVTMRMwEQYD\nVQQIEwpDYWxpZm9ybmlhMRYwFAYDVQQHEw1TYW4gRnJhbmNpc2NvMRQwEgYDVQQK\nEwtHb29nbGUgSW5jLjEMMAoGA1UECxMDRW5nMQwwCgYDVQQDEwNhZ2wxHTAbBgkq\nhkiG9w0BCQEWDmFnbEBnb29nbGUuY29tMB4XDTA5MDkwOTIyMDU0M1oXDTEwMDkw\nOTIyMDU0M1owajELMAkGA1UEBhMCQVUxEzARBgNVBAgTClNvbWUtU3RhdGUxITAf\nBgNVBAoTGEludGVybmV0IFdpZGdpdHMgUHR5IEx0ZDEjMCEGA1UEAxMaZXVyb3Bh\nLnNmby5jb3JwLmdvb2dsZS5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIK\nAoICAQC6pgYt7/EibBDumASF+S0qvqdL/f+nouJw2T1Qc8GmXF/iiUcrsgzh/Fd8\npDhz/T96Qg9IyR4ztuc2MXrmPra+zAuSf5bevFReSqvpIt8Duv0HbDbcqs/XKPfB\nuMDe+of7a9GCywvAZ4ZUJcp0thqD9fKTTjUWOBzHY1uNE4RitrhmJCrbBGXbJ249\nbvgmb7jgdInH2PU7PT55hujvOoIsQW2osXBFRur4pF1wmVh4W4lTLD6pjfIMUcML\nICHEXEN73PDic8KS3EtNYCwoIld+tpIBjE1QOb1KOyuJBNW6Esw9ALZn7stWdYcE\nqAwvv20egN2tEXqj7Q4/1ccyPZc3PQgC3FJ8Be2mtllM+80qf4dAaQ/fWvCtOrQ5\npnfe9juQvCo8Y0VGlFcrSys/MzSg9LJ/24jZVgzQved/Qupsp89wVidwIzjt+WdS\nfyWfH0/v1aQLvu5cMYuW//C0W2nlYziL5blETntM8My2ybNARy3ICHxCBv2RNtPI\nWQVm+E9/W5rwh2IJR4DHn2LHwUVmT/hHNTdBLl5Uhwr4Wc7JhE7AVqb14pVNz1lr\n5jxsp//ncIwftb7mZQ3DF03Yna+jJhpzx8CQoeLT6aQCHyzmH68MrHHT4MALPyUs\nPomjn71GNTtDeWAXibjCgdL6iHACCF6Htbl0zGlG0OAK+bdn0QIDAQABMA0GCSqG\nSIb3DQEBBQUAA4GBAOKnQDtqBV24vVqvesL5dnmyFpFPXBn3WdFfwD6DzEb21UVG\n5krmJiu+ViipORJPGMkgoL6BjU21XI95VQbun5P8vvg8Z+FnFsvRFY3e1CCzAVQY\nZsUkLw2I7zI/dNlWdB8Xp7v+3w9sX5N3J/WuJ1KOO5m26kRlHQo7EzT3974g\n-----END CERTIFICATE-----\n","protocolBinding":"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST","tenant_domain":"example.com","domain_aliases":["example.com","example.coz"],"signInEndpoint":"https://saml.provider/sign_in","disableSignout":true,"metadataUrl":"https://saml.provider/imi/ns/FederationMetadata.xml","metadataXml":"","signatureAlgorithm":"rsa-sha256","digestAlgorithm":"sha256","fieldsMap":{"baz":"baa","foo":"bar"},"signSAMLRequest":false,"entityId":"example","non_persistent_attrs":null}}
form: {}
headers:
Content-Type:
@@ -118,7 +118,7 @@ interactions:
CERTIFICATE-----\n","debug":false,"expires":"2010-09-09T22:05:43.000Z","subject":{"commonName":"europa.sfo.corp.google.com","countryName":"AU","organizationName":"Internet
Widgits Pty Ltd","stateOrProvinceName":"Some-State"},"entityId":"example","fieldsMap":{"name":["name"],"email":["emailaddress","nameidentifier"],"family_name":"appelido"},"signingCert":"-----BEGIN
CERTIFICATE-----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\n-----END
- CERTIFICATE-----\n","thumbprints":["b93611bf2cfdb64110c7aae1485718cc9385e151"],"idpinitiated":{"enabled":true,"client_id":"client_id","client_protocol":"samlp","client_authorizequery":"type=code&timeout=60"},"tenant_domain":"example.com","domain_aliases":["example.com","example.coz"],"signInEndpoint":"https://saml.provider/sign_in","digestAlgorithm":"sha256","protocolBinding":"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST","signSAMLRequest":false,"signatureAlgorithm":"rsa-sha256","non_persistent_attrs":null},"strategy":"samlp","name":"Acceptance-Test-SAML-TestAccConnectionSAML","provisioning_ticket_url":"https://terraform-provider-auth0-dev.eu.auth0.com/p/samlp/C2odVaA2","is_domain_connection":false,"show_as_button":true,"display_name":"Acceptance-Test-SAML-TestAccConnectionSAML","enabled_clients":[],"realms":["Acceptance-Test-SAML-TestAccConnectionSAML"]}'
+ CERTIFICATE-----\n","thumbprints":["b93611bf2cfdb64110c7aae1485718cc9385e151"],"idpinitiated":{"enabled":true,"client_id":"client_id","client_protocol":"samlp","client_authorizequery":"type=code&timeout=60"},"tenant_domain":"example.com","domain_aliases":["example.com","example.coz"],"signInEndpoint":"https://saml.provider/sign_in","disableSignout":true,"metadataUrl":"https://saml.provider/imi/ns/FederationMetadata.xml","metadataXml":"","digestAlgorithm":"sha256","protocolBinding":"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST","signSAMLRequest":false,"signatureAlgorithm":"rsa-sha256","non_persistent_attrs":null},"strategy":"samlp","name":"Acceptance-Test-SAML-TestAccConnectionSAML","provisioning_ticket_url":"https://terraform-provider-auth0-dev.eu.auth0.com/p/samlp/8DGlTRQj","is_domain_connection":false,"show_as_button":true,"display_name":"Acceptance-Test-SAML-TestAccConnectionSAML","enabled_clients":[],"realms":["Acceptance-Test-SAML-TestAccConnectionSAML"]}'
headers:
Content-Type:
- application/json; charset=utf-8
@@ -141,7 +141,7 @@ interactions:
CERTIFICATE-----\n","debug":false,"expires":"2010-09-09T22:05:43.000Z","subject":{"commonName":"europa.sfo.corp.google.com","countryName":"AU","organizationName":"Internet
Widgits Pty Ltd","stateOrProvinceName":"Some-State"},"entityId":"example","fieldsMap":{"name":["name"],"email":["emailaddress","nameidentifier"],"family_name":"appelido"},"signingCert":"-----BEGIN
CERTIFICATE-----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\n-----END
- CERTIFICATE-----\n","thumbprints":["b93611bf2cfdb64110c7aae1485718cc9385e151"],"idpinitiated":{"enabled":true,"client_id":"client_id","client_protocol":"samlp","client_authorizequery":"type=code&timeout=60"},"tenant_domain":"example.com","domain_aliases":["example.com","example.coz"],"signInEndpoint":"https://saml.provider/sign_in","digestAlgorithm":"sha256","protocolBinding":"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST","signSAMLRequest":false,"signatureAlgorithm":"rsa-sha256","non_persistent_attrs":null},"strategy":"samlp","name":"Acceptance-Test-SAML-TestAccConnectionSAML","provisioning_ticket_url":"https://terraform-provider-auth0-dev.eu.auth0.com/p/samlp/C2odVaA2","is_domain_connection":false,"show_as_button":true,"display_name":"Acceptance-Test-SAML-TestAccConnectionSAML","enabled_clients":[],"realms":["Acceptance-Test-SAML-TestAccConnectionSAML"]}'
+ CERTIFICATE-----\n","thumbprints":["b93611bf2cfdb64110c7aae1485718cc9385e151"],"idpinitiated":{"enabled":true,"client_id":"client_id","client_protocol":"samlp","client_authorizequery":"type=code&timeout=60"},"tenant_domain":"example.com","domain_aliases":["example.com","example.coz"],"signInEndpoint":"https://saml.provider/sign_in","disableSignout":true,"metadataUrl":"https://saml.provider/imi/ns/FederationMetadata.xml","metadataXml":"","digestAlgorithm":"sha256","protocolBinding":"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST","signSAMLRequest":false,"signatureAlgorithm":"rsa-sha256","non_persistent_attrs":null},"strategy":"samlp","name":"Acceptance-Test-SAML-TestAccConnectionSAML","provisioning_ticket_url":"https://terraform-provider-auth0-dev.eu.auth0.com/p/samlp/8DGlTRQj","is_domain_connection":false,"show_as_button":true,"display_name":"Acceptance-Test-SAML-TestAccConnectionSAML","enabled_clients":[],"realms":["Acceptance-Test-SAML-TestAccConnectionSAML"]}'
headers:
Content-Type:
- application/json; charset=utf-8
@@ -164,7 +164,7 @@ interactions:
CERTIFICATE-----\n","debug":false,"expires":"2010-09-09T22:05:43.000Z","subject":{"commonName":"europa.sfo.corp.google.com","countryName":"AU","organizationName":"Internet
Widgits Pty Ltd","stateOrProvinceName":"Some-State"},"entityId":"example","fieldsMap":{"name":["name"],"email":["emailaddress","nameidentifier"],"family_name":"appelido"},"signingCert":"-----BEGIN
CERTIFICATE-----\nMIID6TCCA1ICAQEwDQYJKoZIhvcNAQEFBQAwgYsxCzAJBgNVBAYTAlVTMRMwEQYD\nVQQIEwpDYWxpZm9ybmlhMRYwFAYDVQQHEw1TYW4gRnJhbmNpc2NvMRQwEgYDVQQK\nEwtHb29nbGUgSW5jLjEMMAoGA1UECxMDRW5nMQwwCgYDVQQDEwNhZ2wxHTAbBgkq\nhkiG9w0BCQEWDmFnbEBnb29nbGUuY29tMB4XDTA5MDkwOTIyMDU0M1oXDTEwMDkw\nOTIyMDU0M1owajELMAkGA1UEBhMCQVUxEzARBgNVBAgTClNvbWUtU3RhdGUxITAf\nBgNVBAoTGEludGVybmV0IFdpZGdpdHMgUHR5IEx0ZDEjMCEGA1UEAxMaZXVyb3Bh\nLnNmby5jb3JwLmdvb2dsZS5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIK\nAoICAQC6pgYt7/EibBDumASF+S0qvqdL/f+nouJw2T1Qc8GmXF/iiUcrsgzh/Fd8\npDhz/T96Qg9IyR4ztuc2MXrmPra+zAuSf5bevFReSqvpIt8Duv0HbDbcqs/XKPfB\nuMDe+of7a9GCywvAZ4ZUJcp0thqD9fKTTjUWOBzHY1uNE4RitrhmJCrbBGXbJ249\nbvgmb7jgdInH2PU7PT55hujvOoIsQW2osXBFRur4pF1wmVh4W4lTLD6pjfIMUcML\nICHEXEN73PDic8KS3EtNYCwoIld+tpIBjE1QOb1KOyuJBNW6Esw9ALZn7stWdYcE\nqAwvv20egN2tEXqj7Q4/1ccyPZc3PQgC3FJ8Be2mtllM+80qf4dAaQ/fWvCtOrQ5\npnfe9juQvCo8Y0VGlFcrSys/MzSg9LJ/24jZVgzQved/Qupsp89wVidwIzjt+WdS\nfyWfH0/v1aQLvu5cMYuW//C0W2nlYziL5blETntM8My2ybNARy3ICHxCBv2RNtPI\nWQVm+E9/W5rwh2IJR4DHn2LHwUVmT/hHNTdBLl5Uhwr4Wc7JhE7AVqb14pVNz1lr\n5jxsp//ncIwftb7mZQ3DF03Yna+jJhpzx8CQoeLT6aQCHyzmH68MrHHT4MALPyUs\nPomjn71GNTtDeWAXibjCgdL6iHACCF6Htbl0zGlG0OAK+bdn0QIDAQABMA0GCSqG\nSIb3DQEBBQUAA4GBAOKnQDtqBV24vVqvesL5dnmyFpFPXBn3WdFfwD6DzEb21UVG\n5krmJiu+ViipORJPGMkgoL6BjU21XI95VQbun5P8vvg8Z+FnFsvRFY3e1CCzAVQY\nZsUkLw2I7zI/dNlWdB8Xp7v+3w9sX5N3J/WuJ1KOO5m26kRlHQo7EzT3974g\n-----END
- CERTIFICATE-----\n","thumbprints":["b93611bf2cfdb64110c7aae1485718cc9385e151"],"idpinitiated":{"enabled":true,"client_id":"client_id","client_protocol":"samlp","client_authorizequery":"type=code&timeout=60"},"tenant_domain":"example.com","domain_aliases":["example.com","example.coz"],"signInEndpoint":"https://saml.provider/sign_in","digestAlgorithm":"sha256","protocolBinding":"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST","signSAMLRequest":false,"signatureAlgorithm":"rsa-sha256","non_persistent_attrs":null},"strategy":"samlp","name":"Acceptance-Test-SAML-TestAccConnectionSAML","provisioning_ticket_url":"https://terraform-provider-auth0-dev.eu.auth0.com/p/samlp/C2odVaA2","is_domain_connection":false,"show_as_button":true,"display_name":"Acceptance-Test-SAML-TestAccConnectionSAML","enabled_clients":[],"realms":["Acceptance-Test-SAML-TestAccConnectionSAML"]}'
+ CERTIFICATE-----\n","thumbprints":["b93611bf2cfdb64110c7aae1485718cc9385e151"],"idpinitiated":{"enabled":true,"client_id":"client_id","client_protocol":"samlp","client_authorizequery":"type=code&timeout=60"},"tenant_domain":"example.com","domain_aliases":["example.com","example.coz"],"signInEndpoint":"https://saml.provider/sign_in","disableSignout":true,"metadataUrl":"https://saml.provider/imi/ns/FederationMetadata.xml","metadataXml":"","digestAlgorithm":"sha256","protocolBinding":"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST","signSAMLRequest":false,"signatureAlgorithm":"rsa-sha256","non_persistent_attrs":null},"strategy":"samlp","name":"Acceptance-Test-SAML-TestAccConnectionSAML","provisioning_ticket_url":"https://terraform-provider-auth0-dev.eu.auth0.com/p/samlp/8DGlTRQj","is_domain_connection":false,"show_as_button":true,"display_name":"Acceptance-Test-SAML-TestAccConnectionSAML","enabled_clients":[],"realms":["Acceptance-Test-SAML-TestAccConnectionSAML"]}'
headers:
Content-Type:
- application/json; charset=utf-8
diff --git a/docs/resources/connection.md b/docs/resources/connection.md
index b354580d9..876087cdc 100644
--- a/docs/resources/connection.md
+++ b/docs/resources/connection.md
@@ -454,6 +454,7 @@ With the `samlp` connection strategy, `options` supports the following arguments
* `domain_aliases` - (Optional) List of the domains that can be authenticated using the Identity Provider. Only needed for Identifier First authentication flows.
* `sign_in_endpoint` - SAML single login URL for the connection.
* `sign_out_endpoint` - (Optional) SAML single logout URL for the connection.
+* `disable_sign_out` - (Optional) (Boolean) Disables or enables user sign out.
* `fields_map` - (Optional) SAML Attributes mapping. If you're configuring a SAML enterprise connection for a non-standard PingFederate Server, you must update the attribute mappings.
* `sign_saml_request` - (Optional) (Boolean) When enabled, the SAML authentication request will be signed.
* `signature_algorithm` - (Optional) Sign Request Algorithm
@@ -463,6 +464,8 @@ With the `samlp` connection strategy, `options` supports the following arguments
* `set_user_root_attributes` - (Optional) Determines whether the 'name', 'given_name', 'family_name', 'nickname', and 'picture' attributes can be independently updated when using the external IdP. Default is `on_each_login` and can be set to `on_first_login`.
* `non_persistent_attrs` - (Optional) If there are user fields that should not be stored in Auth0 databases due to privacy reasons, you can add them to the denylist. See [here](https://auth0.com/docs/security/denylist-user-attributes) for more info.
* `entity_id` - (Optional) Custom Entity ID for the connection.
+* `metadata_url` - (Optional) URL of the SAML metadata document.
+* `metadata_xml` - (Optional) XML content for the SAML metadata document.
**Example**:
```hcl
@@ -473,6 +476,7 @@ resource "auth0_connection" "samlp" {
signing_cert = ""
sign_in_endpoint = "https://saml.provider/sign_in"
sign_out_endpoint = "https://saml.provider/sign_out"
+ disable_sign_out = true
tenant_domain = "example.com"
domain_aliases = ["example.com", "alias.example.com"]
protocol_binding = "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
@@ -480,6 +484,7 @@ resource "auth0_connection" "samlp" {
user_id_attribute = "https://saml.provider/imi/ns/identity-200810"
signature_algorithm = "rsa-sha256"
digest_algorithm = "sha256"
+ metadata_url = "https://saml.provider/imi/ns/FederationMetadata.xml"
fields_map = jsonencode({
"name": ["name", "nameidentifier"]
"email": ["emailaddress", "nameidentifier"]