WSFederationApplications
The WSFederation-protocol applications in the environment.
View-Specific Information
SELECT
Reading data from this entity requires Read Application/applications:read:application permission.We recommend using the built-in Client Application Developer role.
The 本製品 uses the PingOne Platform API to process WHERE clause conditions built with the following columns and operators.
- Id supports the following operators: =, IN.
All other filters are processed client-side within the 本製品.
For example, the following queries are processed server-side:
SELECT * FROM Administrators.WSFederationApplications WHERE Id = 'c4f584e4-eee8-4e19-a08c-0a05f8e21a72';
SELECT * FROM Administrators.WSFederationApplications WHERE Id IN ('c4f584e4-eee8-4e19-a08c-0a05f8e21a72', 'c207adc7-723c-47bb-a53f-c1086bb942c6');
Columns
| Name | Type | References | Description |
| Id [KEY] | String | The application identifier (UUID). | |
| Name | String | The name of the application. | |
| Description | String | The application's description. | |
| IsEnabled | Boolean | Boolean value indicating whether the application is enabled for authorization to PingOne. | |
| Type | String | The type of the application. Possible values are: 'WEB_APP', 'NATIVE_APP', 'SINGLE_PAGE_APP', 'SERVICE', 'CUSTOM_APP', 'WORKER', 'PING_ONE_SELF_SERVICE', 'PING_ONE_ADMIN_CONSOLE', 'PING_ONE_PORTAL', 'TEMPLATE_APP' and 'PORTAL_LINK_APP'. | |
| EnvironmentId | String | Information.Environments.Id | The identifier (UUID) of the environment in which the application exists. |
| CreatedAt | Datetime | The time at which the application was created. | |
| UpdatedAt | Datetime | The time at which the application was last updated. | |
| LoginPageURL | String | The application's login page URL. | |
| HomePageURL | String | The application's home page URL. | |
| IsHiddenFromPortal | Boolean | Boolean value indicating whether the application is hidden in the application portal. | |
| IconURL | String | The URL of the application's icon. | |
| AccessControlRolesCriteria | String | The user role criteria for accessing the application. Possible values are 'ADMIN_USERS_ONLY'. A user is an admin user if they have one or more of the following roles: 'Organization Admin', 'Environment Admin', 'Identity Data Admin' or 'Client Application Developer'. | |
| CORSRestriction | String | The application's restriction in regards to CORS requests. Possible values are 'ALLOW_NO_ORIGINS' and 'ALLOW_SPECIFIC_ORIGINS'. 'ALLOWS_NO_ORIGINS' rejects all CORS requests. 'ALLOW_SPECIFIC_ORIGINS' rejects all CORS requests except those listed in the 'CORSAllowedOrigins' column. | |
| CORSAllowedOrigins | String | The origins from which CORS requests to the Authorization and Authentication APIs are allowed. This applies only when 'CORSRestriction' is set to 'ALLOW_SPECIFIC_ORIGINS'. | |
| DomainName | String | The federated domain name (for example, the Azure custom domain). | |
| SigningAlgorithm | String | The algorithm used by the identity provider (IdP) signing key. Possible values are: 'SHA256withRSA', 'SHA384withRSA', 'SHA512withRSA', 'SHA256withECDSA', 'SHA384withECDSA', and 'SHA512withECDSA'. | |
| SigningKeyId | String | The identifier (UUID) of the certificate to be used by the identity provider to sign assertions and responses. | |
| ReplyURL | String | The URL that the replying party (such as, Office365) uses to accept submissions of 'RequestSecurityTokenResponse' messages that are a result of SSO requests. | |
| SLOEndpoint | String | The single logout endpoint URL. | |
| NameIdFormat | String | The format to use for the subject's NameIdentifier attribute. Possible values are: 'urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified' and 'urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress'. |