Step 9: Create a sign-on policy action
POST {{apiPath}}/environments/{{envID}}/signOnPolicies/{{samlSignonPolicyID}}/actions
Associate a sign-on policy action of type IDENTIFIER_FIRST with the new sign-on policy that you created in the previous step. The POST /environments/{{destinationEnvID}}/signOnPolicies/{{policyID}}/actions request creates the sign-on policy action resource.
Set
{{policyID}}to the sign-on policy you created in the previous step.Enabling
registrationis optional, but recommended. To enable registration, you must include thepopIDfor the destination environment population into which users will be placed. For more information, see Read All Populations.
For more information, see Sign-On Policy Actions.
Request Body
{"type"=>"IDENTIFIER_FIRST", "condition"=>{"greater"=>600, "secondsSince"=>"${session.lastSignOn.withAuthenticator.pwd.at}"}, "priority"=>10, "recovery"=>{"enabled"=>false}, "registration"=>{"enabled"=>true, "population"=>{"id"=>"{{popID}}"}}, "socialProviders"=>[{"id"=>"{{samlIdpID}}"}]}
HEADERS
| Key | Datatype | Required | Description |
|---|---|---|---|
Authorization | string | ||
Content-Type | string |