Note: SSO integration is available to those with space(s) on the Business or Enterprise tiers. See Spatial.io/pricing for more info and to subscribe. |
Introduction to SSO using SAML
Single Sign-On (SSO) using Security Assertion Markup Language (SAML) is an authentication method that allows users to access multiple applications with a single set of login credentials. At Spatial, we're excited to offer this feature to our valued business subscription customers, enhancing security and streamlining the login process.
How It Works
When a user attempts to access Spatial, they are redirected to your organization's identity provider for authentication. Once authenticated, the identity provider sends a SAML assertion to Spatial, confirming the user's identity and permissions. Spatial then grants access based on this assertion, eliminating the need for a separate login process.
Getting Started
To integrate your login system with Spatial using SAML:
- Ensure you have an active Spatial Business or Enterprise subscription.
- Open a ticket to our Support team to initiate the SSO setup process. Please provide the following information:
- Email Subject: SSO Setup Request
- Organization Name
- Organization ID (if one exists)
- Entity ID
- SSO URL
- Public Certificate for SAML Signing
- Configure your IdP with Spatial's service provider details
- Callback URL :
https://spatial-mobile.firebaseapp.com/__/auth/handler
- Setting to include email address on SAML response
- Callback URL :
{
"mappings": {
"email": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress"
},
"nameIdentifierFormat": "urn:oasis:names:tc:SAML:2.0:nameid-format:persistent",
"nameIdentifierProbes": [
"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress"
]
}
Support
If you're a Spatial Business or Enterprise subscriber and need help setting up SSO, please contact our Support team at Support@Spatial.io.