identity-provider create jwtauth
qlik identity-provider create jwtauth
Creates a new IdP
Synopsis
This endpoint creates an identity provider resource. It returns a 201 Created when creation is successful with a header “QLIK-IDP-POPTS” (A unique string representing a hash of the current configuration being tested), returns a 403 Forbidden for a non TenantAdmin user JWT or if the tenantID in the JWT does not match with any of the tenantIDs in the payload. An IdP can be created with Pending Options or options depending whether the IdP is interactive or not.
qlik identity-provider create jwtauth [flags]
Options
--clockToleranceSec int There can be clock skew between the IdP and Qlik's login server, in these cases a tolerance can be set, decimals will be rounded off.
--description string Payload for creating an identity provider using JWT authentication.
-f, --file string Reads request from a file
-h, --help help for jwtauth
--interval int Duration in seconds to wait between retries, at least 1 (default 1)
--options-issuer string The JWT issuer.
--options-staticKeys string Keys for verifying JWTs. Limited to 1 key per identity provider. (JSON array)
Array of JSON-objects with the fields:
"kid" - Key ID used to sign the JWTs. (string)
"pem" - Pem-encoded public key for verifying the JWTs. (string)
(Required fields: kid, pem)
Example value: '[{"kid":"abc","pem":"abc"}]' (default "[]")
--protocol string The protocol to be used for communicating with the identity provider.
--provider string The identity provider to be used.
-q, --quiet Return only IDs from the command
--raw Return original response from server without any processing
--retry int Number of retries to do before failing, max 10
--tenantIds strings The tenant identifiers that map to the given IdP.
Options inherited from parent commands
-c, --config string path/to/config.yml where parameters can be set instead of on the command line
--context string Name of the context used when connecting to Qlik Associative Engine
--headers stringToString HTTP headers to use when connecting to Qlik Associative Engine (default [])
--insecure Enabling insecure will make it possible to connect using self-signed certificates
--json Returns output in JSON format, if possible. Disables verbose and traffic output
-s, --server string URL to Qlik Cloud or directly to a Qlik Associative Engine
--server-type string The type of server you are using: cloud, Windows (Enterprise on Windows) or engine
-v, --verbose Log extra information