Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.spacemedia.uk/llms.txt

Use this file to discover all available pages before exploring further.

SSO Identity Provider

Identity SSO lets an organization admin use SpaceMedia as the identity provider for an organization-owned application.

Admin flow

  1. Enter the external application’s redirect URI.
  2. Generate the OAuth client for the organization.
  3. Store the returned client credentials securely.
  4. Optionally configure JWT return settings when the external app expects JWT handoff.
  5. Enable or disable the identity SSO configuration from the dashboard.

Generated OAuth fields

FieldMeaning
client_idOrganization OAuth client identifier.
client_secretOrganization OAuth client secret. Store it securely.
oauth_client_idOAuth client ID persisted for the organization.
oauth_client_secretOAuth client secret persisted for the organization.
redirect_uriExternal app redirect URI.

JWT fields

FieldMeaning
jwt_secretSecret used for JWT handoff.
jwt_return_urlURL that receives the JWT handoff.

Access boundary

Only organization admins can manage identity SSO. API examples must not expose client secrets, JWT secrets, or return URLs from real organizations.