Supported Providers
Okta
Azure AD
Google Workspace
OneLogin
SAML Configuration
{
"saml": {
"enabled": true,
"entityId": "https://api.zalt.io/saml/realm_xxx",
"acsUrl": "https://api.zalt.io/saml/realm_xxx/acs",
"idpMetadataUrl": "https://your-idp.com/metadata.xml",
"signRequests": true,
"wantAssertionsSigned": true,
"attributeMapping": {
"email": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress",
"firstName": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname",
"lastName": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname"
}
}
}OAuth / OIDC
// Zalt as OAuth Provider
{
"issuer": "https://api.zalt.io",
"authorization_endpoint": "https://api.zalt.io/oauth/authorize",
"token_endpoint": "https://api.zalt.io/oauth/token",
"userinfo_endpoint": "https://api.zalt.io/oauth/userinfo",
"jwks_uri": "https://api.zalt.io/.well-known/jwks.json"
}Social Login
Enable social login providers for your realm:
{
"socialProviders": {
"google": {
"enabled": true,
"clientId": "xxx.apps.googleusercontent.com",
"clientSecret": "stored-in-secrets-manager"
},
"apple": {
"enabled": true,
"clientId": "com.yourapp.auth",
"teamId": "XXXXXXXXXX"
}
}
}