|
AppId
|
- Type
- reference
- Properties
- Filter, Group, Nillable, Sort
- Description
- The ID of the app provider seeking authentication.
|
|
AuthSessionId
|
- Type
- reference
- Properties
- Filter, Group, Nillable, Sort
- Description
- The ID of the authentication session.
|
|
ErrorCode
|
- Type
- picklist
- Properties
- Filter, Group, Restricted picklist, Sort
- Description
- The error code for the authentication issue.
- Possible values are:
-
AppAccessDenied—Error: App access denied
-
AppBlocked—Error: App blocked
-
ClientUnapproved—Error: Invalid grant
-
CodeExpired—Error: Expired authorization code
-
InternalError—Error: Internal Error
-
InvalidAuthnRequest—Error: Unable to parse AuthnRequest from service provider
-
InvalidClientCredentials—Error: Invalid client credentials
-
InvalidCode—Error: Invalid authorization code
-
InvalidDeviceId—Error: Invalid device ID
-
InvalidIdpEndpoint—Error: Invalid Identity Provider Endpoint URL
-
InvalidIssuer—Error: Invalid Issuer
-
InvalidScope—Error: Invalid scope(s)
-
InvalidSessionLevel—Error: Invalid session level
-
InvalidSettings—Error: IdP certificate is invalid or does not exist
-
InvalidSignature—Error: Invalid Signature
-
InvalidSp—Error: Misconfigured or invalid service provider
-
InvalidSpokeSp—Error: Invalid spoke SP settings
-
InvalidUserCredentials—Error: Invalid user credentials
-
NoAccess—Error: User does not have access to this service provider
-
NoCustomAttrValue—Error: User does not have a value for the subject custom attribute
-
NoCustomField—Error: Custom field not found
-
NoSpokeId—Error: No Spoke ID found
-
NoSubdomain—Error: Org has not configured My Domains yet
-
NoUserFedId—Error: User does not have a Federation Identifier selected
-
OauthError—OAuth Error
- Success
-
UnableToResolve—Error: Unable to resolve request into a Service Provider
-
UnknownError—Unknown Error
|
|
IdentityUsed
|
- Type
- string
- Properties
- Filter, Nillable, Sort
- Description
- The identity (username) of the user being authenticated.
|
|
InitiatedBy
|
- Type
- picklist
- Properties
- Filter, Group, Restricted picklist, Sort
- Description
- The code describing how the authentication request was initiated.
- Possible values are:
-
IdP—IdP-Initiated SAML
-
OauthAuthorize—OAuth Authorization
-
OauthTokenExchange—OAuth Token Exchange
-
SP—SP-Initiated SAML
|
|
OptionsHasLogoutUrl
|
- Type
- boolean
- Properties
- Filter
- Description
- Whether a logout URL has been assigned to the app. This URL is where users
are redirected when they log out.
|
|
SamlEntityUrl
|
- Type
- string
- Properties
- Filter, Sort
- Description
- The authentication URL of the SAML provider.
|
|
SsoType
|
- Type
- picklist
- Properties
- Filter, Group, Nillable, Restricted picklist, Sort
- Description
- The type of SSO. Options are:
-
|
|
Timestamp
|
- Type
- dateTime
- Properties
- Filter, Nillable, Sort
- Description
- The date and time on which the event occurred.
|
|
UserId
|
- Type
- reference
- Properties
- Filter, Group, Nillable, Sort
- Description
- The ID of the user seeking authentication.
|
j