Deprecated: Get Identity Provider (IDP) by ID
This endpoint has been deprecated and may be removed in future versions of the API.
Returns an identity provider (social/enterprise login) by its ID e.g Google, AzureAD, etc that is configured on the organization.
Path Parameters
- id string required
Header Parameters
- x-zitadel-orgid string
The default is always the organization of the requesting user. If you like to get/set a result of another organization include the header. Make sure the user has permission to access the requested data.
- 200
- default
A successful response.
- application/json
- application/grpc
- application/grpc-web+proto
- Schema
- Example (from schema)
Schema
idp object
id stringdetails object
sequence uint64on read: the sequence of the last event reduced by the projection
on manipulation: the timestamp of the event(s) added by the manipulation
creationDate date-timeon read: the timestamp of the first event of the object
on create: the timestamp of the event(s) added by the manipulation
changeDate date-timeon read: the timestamp of the last event reduced by the projection
on manipulation: the
resourceOwner resource_owner is the organization an object belongs tostate stringPossible values: [
IDP_STATE_UNSPECIFIED
,IDP_STATE_ACTIVE
,IDP_STATE_INACTIVE
]Default value:
IDP_STATE_UNSPECIFIED
the state of the identity provider
name stringstylingType stringPossible values: [
STYLING_TYPE_UNSPECIFIED
,STYLING_TYPE_GOOGLE
]Default value:
STYLING_TYPE_UNSPECIFIED
some identity providers specify the styling of the button to their login
owner stringPossible values: [
IDP_OWNER_TYPE_UNSPECIFIED
,IDP_OWNER_TYPE_SYSTEM
,IDP_OWNER_TYPE_ORG
]Default value:
IDP_OWNER_TYPE_UNSPECIFIED
the administrator of this identity provider
oidcConfig object
clientId stringclient id generated by the identity provider
issuer stringthe OIDC issuer of the identity provider
scopes string[]the scopes requested by ZITADEL during the request on the identity provider
displayNameMapping stringPossible values: [
OIDC_MAPPING_FIELD_UNSPECIFIED
,OIDC_MAPPING_FIELD_PREFERRED_USERNAME
,OIDC_MAPPING_FIELD_EMAIL
]Default value:
OIDC_MAPPING_FIELD_UNSPECIFIED
definition which field is mapped to the display name of the user
usernameMapping stringPossible values: [
OIDC_MAPPING_FIELD_UNSPECIFIED
,OIDC_MAPPING_FIELD_PREFERRED_USERNAME
,OIDC_MAPPING_FIELD_EMAIL
]Default value:
OIDC_MAPPING_FIELD_UNSPECIFIED
definition which field is mapped to the email of the user
jwtConfig object
jwtEndpoint stringthe endpoint where the JWT can be extracted
issuer stringthe issuer of the JWT (for validation)
keysEndpoint stringthe endpoint to the key (JWK) which is used to sign the JWT with
headerName stringthe name of the header where the JWT is sent in, default is authorization
autoRegister boolean
{
"idp": {
"id": "69629023906488334",
"details": {
"sequence": "2",
"creationDate": "2023-05-02",
"changeDate": "2023-05-02",
"resourceOwner": "69629023906488334"
},
"state": "IDP_STATE_UNSPECIFIED",
"name": "google",
"stylingType": "STYLING_TYPE_UNSPECIFIED",
"owner": "IDP_OWNER_TYPE_UNSPECIFIED",
"oidcConfig": {
"clientId": "string",
"issuer": "https://accounts.google.com",
"scopes": [
"openid",
"profile",
"email"
],
"displayNameMapping": "OIDC_MAPPING_FIELD_UNSPECIFIED",
"usernameMapping": "OIDC_MAPPING_FIELD_UNSPECIFIED"
},
"jwtConfig": {
"jwtEndpoint": "https://accounts.google.com",
"issuer": "https://accounts.google.com",
"keysEndpoint": "https://accounts.google.com/keys",
"headerName": "x-auth-token"
},
"autoRegister": true
}
}
- Schema
- Example (from schema)
Schema
idp object
id stringdetails object
sequence uint64on read: the sequence of the last event reduced by the projection
on manipulation: the timestamp of the event(s) added by the manipulation
creationDate date-timeon read: the timestamp of the first event of the object
on create: the timestamp of the event(s) added by the manipulation
changeDate date-timeon read: the timestamp of the last event reduced by the projection
on manipulation: the
resourceOwner resource_owner is the organization an object belongs tostate stringPossible values: [
IDP_STATE_UNSPECIFIED
,IDP_STATE_ACTIVE
,IDP_STATE_INACTIVE
]Default value:
IDP_STATE_UNSPECIFIED
the state of the identity provider
name stringstylingType stringPossible values: [
STYLING_TYPE_UNSPECIFIED
,STYLING_TYPE_GOOGLE
]Default value:
STYLING_TYPE_UNSPECIFIED
some identity providers specify the styling of the button to their login
owner stringPossible values: [
IDP_OWNER_TYPE_UNSPECIFIED
,IDP_OWNER_TYPE_SYSTEM
,IDP_OWNER_TYPE_ORG
]Default value:
IDP_OWNER_TYPE_UNSPECIFIED
the administrator of this identity provider
oidcConfig object
clientId stringclient id generated by the identity provider
issuer stringthe OIDC issuer of the identity provider
scopes string[]the scopes requested by ZITADEL during the request on the identity provider
displayNameMapping stringPossible values: [
OIDC_MAPPING_FIELD_UNSPECIFIED
,OIDC_MAPPING_FIELD_PREFERRED_USERNAME
,OIDC_MAPPING_FIELD_EMAIL
]Default value:
OIDC_MAPPING_FIELD_UNSPECIFIED
definition which field is mapped to the display name of the user
usernameMapping stringPossible values: [
OIDC_MAPPING_FIELD_UNSPECIFIED
,OIDC_MAPPING_FIELD_PREFERRED_USERNAME
,OIDC_MAPPING_FIELD_EMAIL
]Default value:
OIDC_MAPPING_FIELD_UNSPECIFIED
definition which field is mapped to the email of the user
jwtConfig object
jwtEndpoint stringthe endpoint where the JWT can be extracted
issuer stringthe issuer of the JWT (for validation)
keysEndpoint stringthe endpoint to the key (JWK) which is used to sign the JWT with
headerName stringthe name of the header where the JWT is sent in, default is authorization
autoRegister boolean
{
"idp": {
"id": "69629023906488334",
"details": {
"sequence": "2",
"creationDate": "2023-05-02",
"changeDate": "2023-05-02",
"resourceOwner": "69629023906488334"
},
"state": "IDP_STATE_UNSPECIFIED",
"name": "google",
"stylingType": "STYLING_TYPE_UNSPECIFIED",
"owner": "IDP_OWNER_TYPE_UNSPECIFIED",
"oidcConfig": {
"clientId": "string",
"issuer": "https://accounts.google.com",
"scopes": [
"openid",
"profile",
"email"
],
"displayNameMapping": "OIDC_MAPPING_FIELD_UNSPECIFIED",
"usernameMapping": "OIDC_MAPPING_FIELD_UNSPECIFIED"
},
"jwtConfig": {
"jwtEndpoint": "https://accounts.google.com",
"issuer": "https://accounts.google.com",
"keysEndpoint": "https://accounts.google.com/keys",
"headerName": "x-auth-token"
},
"autoRegister": true
}
}
- Schema
- Example (from schema)
Schema
idp object
id stringdetails object
sequence uint64on read: the sequence of the last event reduced by the projection
on manipulation: the timestamp of the event(s) added by the manipulation
creationDate date-timeon read: the timestamp of the first event of the object
on create: the timestamp of the event(s) added by the manipulation
changeDate date-timeon read: the timestamp of the last event reduced by the projection
on manipulation: the
resourceOwner resource_owner is the organization an object belongs tostate stringPossible values: [
IDP_STATE_UNSPECIFIED
,IDP_STATE_ACTIVE
,IDP_STATE_INACTIVE
]Default value:
IDP_STATE_UNSPECIFIED
the state of the identity provider
name stringstylingType stringPossible values: [
STYLING_TYPE_UNSPECIFIED
,STYLING_TYPE_GOOGLE
]Default value:
STYLING_TYPE_UNSPECIFIED
some identity providers specify the styling of the button to their login
owner stringPossible values: [
IDP_OWNER_TYPE_UNSPECIFIED
,IDP_OWNER_TYPE_SYSTEM
,IDP_OWNER_TYPE_ORG
]Default value:
IDP_OWNER_TYPE_UNSPECIFIED
the administrator of this identity provider
oidcConfig object
clientId stringclient id generated by the identity provider
issuer stringthe OIDC issuer of the identity provider
scopes string[]the scopes requested by ZITADEL during the request on the identity provider
displayNameMapping stringPossible values: [
OIDC_MAPPING_FIELD_UNSPECIFIED
,OIDC_MAPPING_FIELD_PREFERRED_USERNAME
,OIDC_MAPPING_FIELD_EMAIL
]Default value:
OIDC_MAPPING_FIELD_UNSPECIFIED
definition which field is mapped to the display name of the user
usernameMapping stringPossible values: [
OIDC_MAPPING_FIELD_UNSPECIFIED
,OIDC_MAPPING_FIELD_PREFERRED_USERNAME
,OIDC_MAPPING_FIELD_EMAIL
]Default value:
OIDC_MAPPING_FIELD_UNSPECIFIED
definition which field is mapped to the email of the user
jwtConfig object
jwtEndpoint stringthe endpoint where the JWT can be extracted
issuer stringthe issuer of the JWT (for validation)
keysEndpoint stringthe endpoint to the key (JWK) which is used to sign the JWT with
headerName stringthe name of the header where the JWT is sent in, default is authorization
autoRegister boolean
{
"idp": {
"id": "69629023906488334",
"details": {
"sequence": "2",
"creationDate": "2023-05-02",
"changeDate": "2023-05-02",
"resourceOwner": "69629023906488334"
},
"state": "IDP_STATE_UNSPECIFIED",
"name": "google",
"stylingType": "STYLING_TYPE_UNSPECIFIED",
"owner": "IDP_OWNER_TYPE_UNSPECIFIED",
"oidcConfig": {
"clientId": "string",
"issuer": "https://accounts.google.com",
"scopes": [
"openid",
"profile",
"email"
],
"displayNameMapping": "OIDC_MAPPING_FIELD_UNSPECIFIED",
"usernameMapping": "OIDC_MAPPING_FIELD_UNSPECIFIED"
},
"jwtConfig": {
"jwtEndpoint": "https://accounts.google.com",
"issuer": "https://accounts.google.com",
"keysEndpoint": "https://accounts.google.com/keys",
"headerName": "x-auth-token"
},
"autoRegister": true
}
}
An unexpected error response.
- application/json
- application/grpc
- application/grpc-web+proto
- Schema
- Example (from schema)
Schema
- code int32
- message string
details object[]
Array [@type string]
{
"code": 0,
"message": "string",
"details": [
{
"@type": "string"
}
]
}
- Schema
- Example (from schema)
Schema
- code int32
- message string
details object[]
Array [@type string]
{
"code": 0,
"message": "string",
"details": [
{
"@type": "string"
}
]
}
- Schema
- Example (from schema)
Schema
- code int32
- message string
details object[]
Array [@type string]
{
"code": 0,
"message": "string",
"details": [
{
"@type": "string"
}
]
}