Example: SSO login with SAML Provider

This example walks you through getting a user logged in via SSO Login with a SAML provider.

This exercise assumes that:

  • The SAML login domain is set up on the Akana API Platform.
  • The user has a valid account with the SAML identity provider.

Follow the detailed instructions below.

To log a user in to the Akana API Platform using a SAML login domain

  1. Make a call to the GET /api/login/ssoLogin operation:

    URL and request headers:

    GET /api/login/ssoLogin, request

    Request parameters:

    GET /api/login/ssoLogin, request parameters

  2. From the response body, capture the SAMLRequest and RelayState parameters:

    Capture the parameters from the response

  3. Use the SAMLRequest and RelayState values, captured from the response, to call the SAML Identity Provider, and capture the SAMLResponse and RelayState values from that response.

    Note: The exact call is not shown here as it varies for each provider.

  4. Make a call to the POST /api/login/ssoLogin operation:

    Request headers:

    POST /api/login/ssoLogin, request headers

    Request body/parameters:

    POST /api/login/ssoLogin, request body

    Response body:

    POST /api/login/ssoLogin, response body

    Response cookies—AtmoAuthToken_{fedmember}:

    POST /api/login/ssoLogin, response body, login cookie

    Response cookies—Csrf-Token_{fedmember}:

    POST /api/login/ssoLogin, response body, CSRF cookie

    With the 200 response, the user is logged in and can use the Community Manager developer portal.