Step 7: Create a sign-on policy action
POST {{apiPath}}/environments/{{destinationEnvID}}/signOnPolicies/{{oidcSignonPolicyID}}/actions
Use a POST {{apiPath}}/environments/{{destinationEnvID}}/signOnPolicies/{{policyID}}/actions request to associate a sign-on policy action of type IDENTIFIER_FIRST with the new sign-on policy that you created in the previous step.
In the request URL, set
{{oidcSignonPolicyID}}to the UUID of the sign-on policy you created in step 6.In the request body, set
typetoIDENTIFIER_FIRST.Set
socialProviders.idto the UUID of the identity provider you created in step 5.
See the example request body for other required properties.
See Sign-On Policy Actions for more information.
Request Body
{"type"=>"IDENTIFIER_FIRST", "condition"=>{"greater"=>600, "secondsSince"=>"${session.lastSignOn.withAuthenticator.pwd.at}"}, "priority"=>10, "recovery"=>{"enabled"=>false}, "socialProviders"=>[{"id"=>"{{oidcProviderID}}"}]}
HEADERS
| Key | Datatype | Required | Description |
|---|---|---|---|
Authorization | string | ||
Content-Type | string |