How to Configure SAML 2.0 for Moesif API Analytics

Read this before you enable SAML

Enabling SAML will affect all users who use this application, which means that users will not be able to sign in through their regular log in page. They will only be able to access the app through the Okta service.

Backup URL

Moesif does not provide backup log-in URL where users can sign-in using their normal username and password. You can contact Moesif Support (support@moesif.com) to turn off SAML, if necessary.


Supported Features

The Okta/Moesif API Analytics SAML integration currently supports the following features:

For more information on the listed features, visit the Okta Glossary.

Configuration Steps

  1. Contact the Moesif Support team (support@moesif.com) and request that they enable SAML 2.0 for your account.

  2. Save, then attach the following Metadata file to your request:

    Sign into the Okta Admin dashboard to generate this value.

  3. The Moesif Support team will process your request. After receiving a confirmation email, you can start assigning people to the application.

  4. In Okta select the Sign On tab for the Moesif API Analytics SAML app, then click Edit:

    • Enter your Okta company domain replacing any "." with "-" into the corresponding field.

      For example, if your Okta company domain is test-acme.okta.com, enter test-acme-okta-com.

    • Click Save:

    Moesif Sign On settings

  5. Done!


See Custom Attributes to add custom attributes.

SP-initiated SSO

  1. Go to https://www.moesif.com

  2. Click LOGIN/REGISTER, then select the Log In tab:

    Moesif > LOGIN > Log In tab

  3. Enter your email, then click LOG IN tab:

    Moesif > click LOG IN

Custom Attributes

By default Okta sends only 3 SAML attributes in the SAML assertion: email, given_name, and family_name.

To send the custom attribute role, follow the steps below:

  1. In Okta, navigate to Directory > Profile Editor.

    Okta > Profile > Editor

  2. Search for the Moesif API Analytics app, then click the Profile edit button:

    locate Moesif app, then click edit

  3. Click Add Attribute, then enter the following:

    • Display Name: Enter role.

    • Variable Name: Enter role.

    • Check Define enumerated list of values and add the three predefined roles supported by Moesif:

      • admin

      • member

      • read-only

    • Click Save:

      Note: Scope (optional): If you checkĀ User personal, the current attribute will be available both when you assign a single user to the app and when you assign a group to the app.

  4. Now, when you assign users to the Moesif API Analytics SAML app, you can select the role attribute:

  5. Edit User Assignment, select custom Role attribute

  6. Done!