Initiate SAML login (explicit connection)

GET

session

saml

{provider_id}

{connection_id}

initiate

Initiate SAML login (explicit connection)

curl --request GET \
  --url https://{appId}.session.prelude.dev/v1/session/login/saml/{provider_id}/{connection_id}/initiate

{
  "redirect_url": "<string>"
}

provider_id

string

required

The SAML provider identifier (okta or google).

Examples:

"okta"

"google"

connection_id

string

required

The SAML connection identifier (prefixed with samlc_).

Example:

"samlc_01jqebhswje1ka1z7ahr9rfsgt"

redirect_uri

string

URI to redirect to after authentication. Must be allowlisted for the app. Falls back to the connection's default_redirect_uri when omitted.

Example:

"https://app.acme.com/callback"

code_challenge

string

PKCE code challenge (S256) bound to the eventual login finalize.

Example:

"E9Melhoa2OwvFrEMTJguCHaoeK1t8URWbuGJSstw-cM"

dispatch_id

string

The identifier of the dispatch from the front-end SDK.

Example:

"123e4567-e89b-12d3-a456-426614174000"

redirect_url

string

required

The Identity Provider URL to redirect the user to.

Example:

"https://acme.okta.com/app/abc/sso/saml?SAMLRequest=...&RelayState=..."

Initiate SAML login (explicit connection)

curl --request GET \
  --url https://{appId}.session.prelude.dev/v1/session/login/saml/{provider_id}/{connection_id}/initiate

{
  "redirect_url": "<string>"
}