All REST Endpoints
OIFR1/Orchestrator
The OIF Federation Wiring REST service will establish Federation trust between the IdP and an SP Partner and enable or disable Federation SSO between those two partners. This service will be invoked by the DevOps automation scripts, or by a Self Service Admin page.
- The input provided to this service will consist of
- The name of the tenant in PaaS
- The type of service that will act as an SP (PaaS, Taleo, RightNow)
- The connection information to access the various components needed to be configured (PaaS OID, PaaS OIF, PaaS OAM, SaaS OIF...)
- Whether or not to enable Federation SSO
- The service will allow a client to:
- Establish trust between an IdP and an SP and enable Federation SSO between those partners so that the user at the SP will be redirected to the IdP for authentication
- Disable Federation SSO between those partners so that the user at the SP will be challenged for local authentication
- Orchestrator Service
- Method: postPath:
/oam/services/rest/11.1.2.0.0/fed/admin/orchestratorservice
OIFR1/SSO Service
The REST endpoint POST request is used to configure the SSO service. This API is used for wiring with Fusion Applications and it configures the FAAuthScheme.
For Fusion Applications, IdP is configured at global level to:
- Enable SAML 2.0 only.
- Enable SSO POST, SSO Artifact, SLO Redirect profiles only.
- NameID:
- Email Address with mail as the attribute of the user.
- Unspecified with uid as the attribute of the user (default).
- One set of keys/certificates for SAML operations.
OAM/Fed will be able to have specific SP Partner configuration:
- SSO binding to be used.
- NameID format and value to be used.
- Extra attributes to be sent
- NameID value sent as an attribute: SP Partner will indicate the SAML Attribute name, and whether to send user's ID or email address.
- Static attribute value used by the SP during Assertion mapping operations: SP Partner will indicate the SAML Attribute name and its value.
- Configure SSO Service
- Method: postPath:
/oam/services/rest/11.1.2.0.0/fed/admin/ssoservice
OIFR1/Trusted Partner/IDP Partner
The services hosting the SAML 2.0 SP server, such as OIF, PaaS, Taleo, RightNow... will provide an implementation of the REST APIs interface defined in this section that will be invoked by the Federation Wiring Tool to provision an IdP and configure Federation SSO at the various service SPs
- Create Partner
- Method: postPath:
/oam/services/rest/11.1.2.0.0/fed/admin/trustedidppartners
OIFR1/Trusted Partner/SP Partner
The REST endpoint service request to support create trusted SP partners.
- Create Partner
- Method: postPath:
/oam/services/rest/11.1.2.0.0/fed/admin/trustedsppartners
R2PS3 | 12C/Fed Global
The REST endpoint service request is used to configure, update and retrieve the Fed Global parameters.
- Configure Fed Global
- Method: postPath:
/oam/services/rest/11.1.2.0.0/fed/admin/fedglobal
- Update Fed Global
- Method: putPath:
/oam/services/rest/11.1.2.0.0/fed/admin/fedglobal
- View Fed Global
- Method: getPath:
/oam/services/rest/11.1.2.0.0/fed/admin/fedglobal
R2PS3 | 12C/Orchestrator
The OIF Federation Wiring REST service will establish Federation trust between the IdP and an SP Partner and enable or disable Federation SSO between those two partners. This service will be invoked by the DevOps automation scripts, or by a Self Service Admin page.
- The input provided to this service will consist of
- The name of the tenant in PaaS
- The type of service that will act as an SP (PaaS, Taleo, RightNow)
- The connection information to access the various components needed to be configured (PaaS OID, PaaS OIF, PaaS OAM, SaaS OIF...)
- Whether or not to enable Federation SSO
- The service will allow a client to:
- Establish trust between an IdP and an SP and enable Federation SSO between those partners so that the user at the SP will be redirected to the IdP for authentication
- Disable Federation SSO between those partners so that the user at the SP will be challenged for local authentication
- Orchestrator Service
- Method: postPath:
/oam/services/rest/11.1.2.0.0/fed/admin/orchestrator
R2PS3 | 12C/SSO Service
The REST endpoint is used to configure, update and retrieve SSO Service parameters.
- Configure SSO Service
- Method: postPath:
/oam/services/rest/11.1.2.0.0/fed/admin/sso
- Update SSO Service
- Method: putPath:
/oam/services/rest/11.1.2.0.0/fed/admin/sso
- View SSO Service
- Method: getPath:
/oam/services/rest/11.1.2.0.0/fed/admin/sso
R2PS3 | 12C/Test SP SSO
The REST endpoint service request is used to enable, disable and retrieve Test SP SSO.
NOTE: When not used, the Test SP must be disabled by DevOps/Customer
- Configure Test SP SSO
- Method: postPath:
/oam/services/rest/11.1.2.0.0/fed/admin/testsp
- Disable Test SP SSO
- Method: putPath:
/oam/services/rest/11.1.2.0.0/fed/admin/testsp
- View Test SP SSO
- Method: getPath:
/oam/services/rest/11.1.2.0.0/fed/admin/testsp
R2PS3 | 12C/Trusted Partner/IDP Partner
Create, Update and Delete Trusted IDP partner.
- Create Partner
- Method: postPath:
/oam/services/rest/11.1.2.0.0/fed/admin/trustedpartners/idp/{partnerName}
- Delete Partner
- Method: deletePath:
/oam/services/rest/11.1.2.0.0/fed/admin/trustedpartners/idp/{partnerName}
- List Partners
- Method: getPath:
/oam/services/rest/11.1.2.0.0/fed/admin/trustedpartners/idp
- Update Partner
- Method: putPath:
/oam/services/rest/11.1.2.0.0/fed/admin/trustedpartners/idp/{partnerName}
- View Partner
- Method: getPath:
/oam/services/rest/11.1.2.0.0/fed/admin/trustedpartners/idp/{partnerName}
R2PS3 | 12C/Trusted Partner/SP Partner
Create, Update and Delete Trusted SP partner.
- Create Partner
- Method: postPath:
/oam/services/rest/11.1.2.0.0/fed/admin/trustedpartners/sp/{partnerName}
- Delete Partner
- Method: deletePath:
/oam/services/rest/11.1.2.0.0/fed/admin/trustedpartners/sp/{partnerName}
- List Partners
- Method: getPath:
/oam/services/rest/11.1.2.0.0/fed/admin/trustedpartners/sp
- Update Partner
- Method: putPath:
/oam/services/rest/11.1.2.0.0/fed/admin/trustedpartners/sp/{partnerName}
- View Partner
- Method: getPath:
/oam/services/rest/11.1.2.0.0/fed/admin/trustedpartners/sp/{partnerName}