Cobrowse.io Docs
HomeProductDemoPricing
Search…
Getting started
SDK Installation
Web
iOS
Android
React Native
Xamarin
MacOS
Windows
SDK Features
Account config
Identify your devices
Use 6-digit codes
Redact sensitive data
Customize the interface
Initiate sessions with push
Listening for events
Full device capabilities
Advanced configuration
Agent-side integrations
Agent-side overview
Platform integrations
Custom integrations
Agent SDK
Authentication (JWTs)
Authentication (SAML 2.0)
IFrame embeds
Enterprise self-hosting
Self-hosting overview
Docker Compose
Helm chart
AWS terraform
Azure terraform
GCP terraform
Sizing guidelines
Running your instance
Monitoring your instance
Advanced configuration
Troubleshooting
Powered By GitBook
Authentication (SAML 2.0)

Overview

Allow your users to authenticate using your SAML 2.0 identity provider for simple SSO.

Configure SAML 2.0

In your account settings, go to dashboard/settings/integrations and under SAML config enter your:
  • SAML certificate and
  • entrypoint URL (for a Service Provider-initiated request).
This will generate a login URL in the format:
https://<your hosted domain>/login/saml/<provider ID>
where <your hosted domain> defaults to the domain that is hosting your cobrowse account, e.g. cobrowse.io in most cases.
This URL can be used as the login page for your agents.

Configure within your identity provider

You may be required to add configuration for Cobrowse.io within your identity provider.

Registering Cobrowse.io

If your SAML identity provider requires registering Cobrowse.io as an approved application, then please use the following information:
  • service provider id: cobrowseio-saml
  • ACS / Callback / Recipient / Destination / SSO URL: https://<your hosted domain>/api/1/saml/auth/callback
<your hosted domain> is cobrowse.io when using our hosted service.

Configuring Admin users

All users who login via SAML will by default have the Support Agent role. If you'd like to manage your Admin users through SAML, you must:
  • create a group/role named "Cobrowse.io Administrator" within your identity provider
  • pass this value through as an attribute in your SAML profile as a value or an array, e.g.:
    • "groups" : "Cobrowse.io Administrator"
    • "groups" : ["Cobrowse.io Administrator", "abc", "def", ...]

IFrame integrations

If you are running Cobrowse in your own IFrame integration, then you may optionally choose to perform the SSO within the IFrame by loading it from:
https://<your hosted domain>/api/1/saml/auth?provider=<provider ID>&redirectTo=<your URI encoded Cobrowse route>
The parameter <your URI encoded Cobrowse route> is the endpoint specified by your choice of IFrame embed and must be correctly URI encoded, e.g. for /code use %2Fcode.
<your hosted domain> is cobrowse.io when using our hosted service.
Your IFrame settings and identity provider must allow sharing of cookies to your IFramed domain. This includes for additional steps with your provider, such as MFA.
Previous
JWT Policies
Next - Agent-side integrations
IFrame embeds
Last modified 1mo ago
Copy link
On this page
Overview
Configure SAML 2.0
Configure within your identity provider
Registering Cobrowse.io
Configuring Admin users
IFrame integrations