Get IDP configuration

GET

identity-providers

config

curl --request GET \
  --url https://app.usechar.ai/api/identity-providers/config \
  --header 'Authorization: Bearer <token>'

{
  "idp_type": "okta",
  "allowed_audiences": [
    "<string>"
  ],
  "idp_domain": "<string>",
  "idp_issuer": "<string>",
  "allowed_domains": [
    "<string>"
  ]
}

Authorizations

Authorization

string

header

required

WorkOS JWT token. Obtain via WorkOS AuthKit authentication flow. The token must include organization_id claim for organization-scoped endpoints.

Response

Identity provider configuration for SSO-first widget authentication

idp_type

enum<string> | null

required

Type of identity provider

Available options:

okta,

azure,

auth0,

google,

custom_oidc,

workos,

firebase,

onelogin,

logto

allowed_audiences

string[] | null

required

Allowed OIDC client IDs for audience validation (required for production)

idp_domain

string | null

required

Provider domain (e.g., acme.okta.com)

idp_issuer

string | null

required

Full issuer URL for custom OIDC providers

allowed_domains

string<uri>[]

required

Allowed domains for widget embedding (e.g., https://crm.acme.com)

Clear IDP configurationRemove the IDP configuration for the organization. This will disable SSO-first widget authentication. Only admins can do this.

⌘I

Get IDP configuration

curl --request GET \
  --url https://app.usechar.ai/api/identity-providers/config \
  --header 'Authorization: Bearer <token>'

{
  "idp_type": "okta",
  "allowed_audiences": [
    "<string>"
  ],
  "idp_domain": "<string>",
  "idp_issuer": "<string>",
  "allowed_domains": [
    "<string>"
  ]
}

API Reference

Agent Reference

MCP Reference

Security Reference

Auth

OAuth

Subscriptions

End Users

Users

Organizations

Organization Skills

Directories

Plan Tiers

Threads

Usage Analytics

Identity Providers

OAuth Discovery

Get IDP configuration

Authorizations

Response