Help Center/ IAM Identity Center/ API Reference/ API/ Service Provider (SP) Management/ Querying Service Provider Configurations
Updated on 2025-08-21 GMT+08:00

Querying Service Provider Configurations

Function

This API is used to query service provider configurations. It can be called only from the organization's management account or from a delegated administrator account of a cloud service.

URI

GET /v1/identity-stores/{identity_store_id}/sp-config

Table 1 Path parameters

Parameter

Mandatory

Type

Description

identity_store_id

Yes

String

Globally unique ID of an identity source.

Request Parameters

Table 2 Parameters in the request header

Parameter

Mandatory

Type

Description

X-Security-Token

No

String

Security token (session token) of your temporary security credentials. If a temporary security credential is used, this header is required.

Response Parameters

Status code: 200

Table 3 Parameters in the response body

Parameter

Type

Description

sp_oidc_config

SPOIDCConfig object

OIDC configuration of a service provider.

sp_saml_config

SPSAMLConfig object

SAML configuration of a service provider.

Table 4 SPOIDCConfig

Parameter

Type

Description

redirect_url

String

Redirect URL.

Table 5 SPSAMLConfig

Parameter

Type

Description

acs_url

String

Response address of a service provider's assertion.

issuer

String

Service provider issuer.

metadata

String

Service provider metadata.

Status code: 400

Table 6 Parameters in the response body

Parameter

Type

Description

error_code

String

Error code.

error_msg

String

Error message.

request_id

String

Unique ID of a request.

Status code: 403

Table 7 Parameters in the response body

Parameter

Type

Description

error_code

String

Error code.

error_msg

String

Error message.

request_id

String

Unique ID of a request.

encoded_authorization_message

String

Encrypted error message.

Example Request

Querying service provider configurations

GET https://{hostname}/v1/identity-stores/{identity_store_id}/sp-config

Example Response

Status code: 200

Successful

{
  "sp_oidc_config" : {
    "redirect_url" : "https://cn-north-4.signin.huaweicloud.com/platform/oauth2/callback/xxxxx"
  },
  "sp_saml_config" : {
    "acs_url" : "https://cn-north-4-signin.huaweicloud.com/v1/platform/saml/acs/xxxxx",
    "issuer" : "https://cn-north-4.signin.huaweicloud.com/platform/saml/xxxxx",
    "metadata" : "<?xml version=\"1.0\" encoding=\"UTF-8\"?><md:EntityDescriptor xmlns:md=\"urn:oasis:names:tc:SAML:2.0:metadata\" entityID=\"https:xxxxxx\">xxxxx</md:EntityDescriptor>"
  }
}

Status Codes

Status Codes

Description

200

Successful.

400

Bad request.

403

Forbidden.

Error Codes

For details, see Error Codes.