Struct SamlSource

pub struct SamlSource {

    pub pk: Uuid,
    pub name: String,
    pub slug: String,
    pub enabled: Option<bool>,
    pub authentication_flow: Option<Option<Uuid>>,
    pub enrollment_flow: Option<Option<Uuid>>,
    pub component: String,
    pub verbose_name: String,
    pub verbose_name_plural: String,
    pub meta_model_name: String,
    pub policy_engine_mode: Option<PolicyEngineMode>,
    pub user_matching_mode: Option<UserMatchingModeEnum>,
    pub managed: Option<String>,
    pub user_path_template: Option<String>,
    pub icon: Option<String>,
    pub pre_authentication_flow: Uuid,
    pub issuer: Option<String>,
    pub sso_url: String,
    pub slo_url: Option<Option<String>>,
    pub allow_idp_initiated: Option<bool>,
    pub name_id_policy: Option<NameIdPolicyEnum>,
    pub binding_type: Option<BindingTypeEnum>,
    pub verification_kp: Option<Option<Uuid>>,
    pub signing_kp: Option<Option<Uuid>>,
    pub digest_algorithm: Option<DigestAlgorithmEnum>,
    pub signature_algorithm: Option<SignatureAlgorithmEnum>,
    pub temporary_user_delete_after: Option<String>,
}

SamlSource : SAMLSource Serializer

Fields

pk: Uuid

name: String

Source’s display Name.

slug: String

Internal source name, used in URLs.

enabled: Option<bool>

authentication_flow: Option<Option<Uuid>>

Flow to use when authenticating existing users.

enrollment_flow: Option<Option<Uuid>>

Flow to use when enrolling new users.

component: String

Get object component so that we know how to edit the object

verbose_name: String

Return object’s verbose_name

verbose_name_plural: String

Return object’s plural verbose_name

meta_model_name: String

Return internal model name

policy_engine_mode: Option<PolicyEngineMode>

user_matching_mode: Option<UserMatchingModeEnum>

How the source determines if an existing user should be authenticated or a new user enrolled. * identifier - Use the source-specific identifier * email_link - Link to a user with identical email address. Can have security implications when a source doesn’t validate email addresses. * email_deny - Use the user’s email address, but deny enrollment when the email address already exists. * username_link - Link to a user with identical username. Can have security implications when a username is used with another source. * username_deny - Use the user’s username, but deny enrollment when the username already exists.

managed: Option<String>

Objects that are managed by authentik. These objects are created and updated automatically. This flag only indicates that an object can be overwritten by migrations. You can still modify the objects via the API, but expect changes to be overwritten in a later update.

user_path_template: Option<String>

icon: Option<String>

Get the URL to the Icon. If the name is /static or starts with http it is returned as-is

pre_authentication_flow: Uuid

Flow used before authentication.

issuer: Option<String>

Also known as Entity ID. Defaults the Metadata URL.

sso_url: String

URL that the initial Login request is sent to.

slo_url: Option<Option<String>>

Optional URL if your IDP supports Single-Logout.

allow_idp_initiated: Option<bool>

Allows authentication flows initiated by the IdP. This can be a security risk, as no validation of the request ID is done.

name_id_policy: Option<NameIdPolicyEnum>

NameID Policy sent to the IdP. Can be unset, in which case no Policy is sent. * urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress - Email * urn:oasis:names:tc:SAML:2.0:nameid-format:persistent - Persistent * urn:oasis:names:tc:SAML:2.0:nameid-format:X509SubjectName - X509 * urn:oasis:names:tc:SAML:2.0:nameid-format:WindowsDomainQualifiedName - Windows * urn:oasis:names:tc:SAML:2.0:nameid-format:transient - Transient

binding_type: Option<BindingTypeEnum>

verification_kp: Option<Option<Uuid>>

When selected, incoming assertion’s Signatures will be validated against this certificate. To allow unsigned Requests, leave on default.

signing_kp: Option<Option<Uuid>>

Keypair used to sign outgoing Responses going to the Identity Provider.

digest_algorithm: Option<DigestAlgorithmEnum>

signature_algorithm: Option<SignatureAlgorithmEnum>

temporary_user_delete_after: Option<String>

Time offset when temporary users should be deleted. This only applies if your IDP uses the NameID Format ‘transient’, and the user doesn’t log out manually. (Format: hours=1;minutes=2;seconds=3).

Implementations

impl SamlSource

pub fn new( pk: Uuid, name: String, slug: String, component: String, verbose_name: String, verbose_name_plural: String, meta_model_name: String, managed: Option<String>, icon: Option<String>, pre_authentication_flow: Uuid, sso_url: String, ) -> SamlSource

SAMLSource Serializer

Trait Implementations

impl Clone for SamlSource

fn clone(&self) -> SamlSource

Returns a duplicate of the value.

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source.

impl Debug for SamlSource

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter.

impl Default for SamlSource

fn default() -> SamlSource

Returns the “default value” for a type.

impl<'de> Deserialize<'de> for SamlSource

fn deserialize<__D>(__deserializer: __D) -> Result<Self, __D::Error>

where __D: Deserializer<'de>,

Deserialize this value from the given Serde deserializer.

impl PartialEq for SamlSource

fn eq(&self, other: &SamlSource) -> bool

Tests for self and other values to be equal, and is used by ==.

fn ne(&self, other: &Rhs) -> bool

Tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.

impl Serialize for SamlSource

fn serialize<__S>(&self, __serializer: __S) -> Result<__S::Ok, __S::Error>

where __S: Serializer,

Serialize this value into the given Serde serializer.

impl StructuralPartialEq for SamlSource