| Name | Type | Description | Notes |
|---|---|---|---|
| name | Option<String> | [optional] | |
| authentication_flow | Option<uuid::Uuid> | Flow used for authentication when the associated application is accessed by an un-authenticated user. | [optional] |
| authorization_flow | Option<uuid::Uuid> | Flow used when authorizing this provider. | [optional] |
| invalidation_flow | Option<uuid::Uuid> | Flow used ending the session from a provider. | [optional] |
| property_mappings | Option<Vecuuid::Uuid> | [optional] | |
| acs_url | Option<String> | [optional] | |
| audience | Option<String> | Value of the audience restriction field of the assertion. When left empty, no audience restriction will be added. | [optional] |
| issuer | Option<String> | Also known as EntityID | [optional] |
| assertion_valid_not_before | Option<String> | Assertion valid not before current time + this value (Format: hours=-1;minutes=-2;seconds=-3). | [optional] |
| assertion_valid_not_on_or_after | Option<String> | Assertion not valid on or after current time + this value (Format: hours=1;minutes=2;seconds=3). | [optional] |
| session_valid_not_on_or_after | Option<String> | Session not valid on or after current time + this value (Format: hours=1;minutes=2;seconds=3). | [optional] |
| name_id_mapping | Option<uuid::Uuid> | Configure how the NameID value will be created. When left empty, the NameIDPolicy of the incoming request will be considered | [optional] |
| digest_algorithm | Option<models::DigestAlgorithmEnum> | [optional] | |
| signature_algorithm | Option<models::SignatureAlgorithmEnum> | [optional] | |
| signing_kp | Option<uuid::Uuid> | Keypair used to sign outgoing Responses going to the Service Provider. | [optional] |
| verification_kp | Option<uuid::Uuid> | When selected, incoming assertion's Signatures will be validated against this certificate. To allow unsigned Requests, leave on default. | [optional] |
| encryption_kp | Option<uuid::Uuid> | When selected, incoming assertions are encrypted by the IdP using the public key of the encryption keypair. The assertion is decrypted by the SP using the the private key. | [optional] |
| sign_assertion | Option<bool> | [optional] | |
| sign_response | Option<bool> | [optional] | |
| sp_binding | Option<models::SpBindingEnum> | This determines how authentik sends the response back to the Service Provider. | [optional] |
| default_relay_state | Option<String> | Default relay_state value for IDP-initiated logins | [optional] |