The POST /environments/{environmentId}/applications operation adds a new application resource to the specified environment. If you set the protocol attribute to SAML, you must provide values for the following SAML settings:

Base application data model (SAML application)

Property Required? Type
enabled Y Boolean
name Y String
description N String
protocol Y One of: OPENID_CONNECT, SAML
homePageUrl N URL
loginPageUrl N URL N UUID
icon.href N URL
assignActorRoles N Boolean
tags N Array, available values: PING_FED_CONNECTION_INTEGRATION
accessControl.role.type N One of: ADMIN_USERS_ONLY. For ADMIN_USERS_ONLY, users must have at least one role assigned in order to receive a token. When omitted, there is no role restriction. N One of ALL_GROUPS, ANY_GROUP. For ALL_GROUPS, users must belong to all referenced groups, and for ANY_GROUP, users must belong to at least one referenced group. When omitted, there is no role restriction. N Array N UUID

Additional SAML settings

Property Required? Type
spEntityID Y String
acsUrls Y One or more URLS
assertionDuration Y Integer
defaultTargetUrl N URL
sloBinding N One of: HTTP_REDIRECT, HTTP_POST; default HTTP_POST
sloEndpoint N URL
sloResponseEndpoint N URL
responseSigned N Boolean
assertionSigned N Boolean
idpSigning.key.algorithm N String
spEncryption.algorithm N String N UUID
spVerification.authnRequestSigned N Boolean N One or more UUIDs
nameIdFormat N One of: urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified, urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress, urn:oasis:names:tc:SAML:2.0:nameid-format:persistent, urn:oasis:names:tc:SAML:2.0:nameid-format:transient