If you use SAML 2.0 as protocol, you can activate Single Sign On (SSO) for Lanes & Planes based on your users’ email addresses.
If you want to set this up, Lanes & Planes will give you a redirect URL, like this:
https://api.lanes-planes.com/auth/example/callback
You will enter that URL into the configuration as explained below.
1) SAML Configuration
Please configure these settings on your system.
- Assertion Consumer Service (ACS) URL:
https://api.lanes-planes.com/auth/:provider/callback
- (
:provider
will be assigned to you by Lanes & Planes support team.)
- (
- Service Provider Entity ID:
lanesplanessaml
- Add attribute mapping: User email →
email
- Please note that the email address from your system must match the email of the user at lanes-planes.com
- The attribute name must be EXACTLY
email
. Do not add any namespacing/prefix such ashttp://schemas.xmlsoap.org/ws/2005/05/identity/claims/email
- Please make sure you are setting an Attribute, not a Claim
Example Microsoft Entra ID
2) XML Metadata
After the above are set, please provide us with your XML Metadata:
- Go to your org settings at https://api.lanes-planes.com/org_admin/organizations/:your_org_id/
- Click on "Single Sign on".
- Select
SAML
- Enter either the XML metadata or a DIRECT URL to the XML.
You are ready to log in. From a different browser session (so you can continue to make changes to your configuration if needed), log in at https://app.lanes-planes.com
IMPORTANT: The e-mail addresses of the users must be absolutely identical in both systems (case-sensitive).
Comments
Please sign in to leave a comment.