Used to update an existing SAML connection using an IDP metadata URL.
A newly created connection will not become active until all the following are provided:
- attribute_mapping (must be supplied using Update SAML Connection)
Our RBAC implementation offers out-of-the-box handling of authorization checks for this endpoint. If you pass in a header containing a session_token or a session_jwt for an unexpired Member Session, we will check that the Member Session has permission to perform the update action on the stytch.sso Resource.
If the Member Session does not contain a Role that satisfies the requested permission, or if the Member's Organization does not match the organization_id passed in the request, a 403 error will be thrown. Otherwise, the request will proceed as normal.
To learn more about our RBAC implementation, see our RBAC guide.