How to Specify which Assertion Consumer Service URL to call?

Question

In SAML-based Sign-on, I have added four Reply URL (Assertion Consumer Service URL), a saml endpoint sap/saml2/sp/acs/001 is checked for default. And there's a token endpoint /oauth/token added, and whenever I want to request an api call, it goes to the default one, which I don't want. How can I specify this token endpoint /oauth/token which I want to call?

I can see there are other checkboxes for index. How does it work? And how can I reorder so that I can use /oauth/token without changing the default one?

Answer 1

Hello @Sabti SM (Shaikhah) IT

Thank you for reaching out.

I would like to confirm that you can set multiple reply URLs in a given enterprise application and maximum limit is 256 which is documented here. Despite having multiple reply URL's the token can only be posted to one of the Reply URLs configured in the application, depending on which Reply URL or Assertion Consumer Service URL is included in the authentication request. If the Assertion Consumer Service URL is not included, the SAML Response will be sent to the first Reply URL in the list.

Even though there can be multiple reply URLs configured in the application, the token will only be posted to the one included in the SAML request.

This question was answered by one of my colleagues as well and a sample request was provided in this thread.

I hope the thread mentioned above will answer your query.

Please "Accept the answer" if the information helped you. This will help us and others in the community as well.