This site contains the documentation that is relevant to older WSO2 product versions and offerings.
For the latest WSO2 documentation, visit https://wso2.com/documentation/.
Identity Provider Related Tables
This section lists out all the identity provider related tables and their attributes in the WSO2 Identity Server database.
IDP
When an Identity Provider is added, the details are stored in this table. Following are the columns of the table.
- ID
- TENANT_ID
- NAME
- IS_ENABLED
- IS_PRIMARY
- HOME_REALM_ID
- IMAGE
- CERTIFICATE
- ALIAS
- INBOUND_PROV_ENABLED
- INBOUND_PROV_USER_STORE_ID
- USER_CLAIM_URI
- ROLE_CLAIM_URI
- DESCRIPTION
- DEFAULT_AUTHENTICATOR_NAME
- DEFAULT_PRO_CONNECTOR_NAME
- PROVISIONING_ROLE
- IS_FEDERATION_HUB
- IS_LOCAL_CLAIM_DIALECT
- DISPLAY_NAME
IDP_ROLE
An Identity Provider may have different roles for authorization which are different from the local roles of the Identity Server. In such a situation, roles at the Identity Provider can be mapped to the local roles in the Identity Server. Such roles of the Identity Provider are stored in this table. ROLE column contains the name of the role. IDP_ID is the ID of the Identity Provider. Following are the columns of the table.
- ID
- IDP_ID
- TENANT_ID
- ROLE
IDP_ROLE_MAPPING
The mappings of local roles of the Identity Server to the roles of Identity Providers are stored in this table. LOCAL_ROLE column has the value of the role name of the local role. IDP_ROLE_ID column has the ID of the Identity Provider’s role which points to the ID column of the IDP_ROLE table.
- ID
- IDP_ROLE_ID
- TENANT_ID
- USER_STORE_ID
- LOCAL_ROLE
IDP_CLAIM
When an Identity Provider is having claims that are different from the local claims of the Identity Server, corresponding claims of the Identity Provider can be mapped to the local claims where the Identity Provider claims are stored in this table. The mapping details of the local claims are stored in IDP_CLAIM_MAPPING table. Following are the columns of the table.
- ID
- IDP_ID
- TENANT_ID
- CLAIM
IDP_CLAIM_MAPPING
The mappings of the local claims with the Identity Provider claims are stored in this table.IDP_CLAIM_ID column has the Identity Provider’s claim ID which points to the ID column of the IDP_CLAIM table. LOCAL_CLAIM column contains the claim value of the local claim in the mapping. Following are the columns of the table.
- ID
- IDP_CLAIM_ID
- TENANT_ID
- LOCAL_CLAIM
- DEFAULT_VALUE
- IS_REQUESTED
IDP_AUTHENTICATOR
The Local and Federated authenticators for each Identity Provider are stored in this table. The NAME column contains the name of the authenticator. IDP_ID is the Identity Provider’s ID which points to the ID column of the IDP table. Following are the columns of the table.
- ID
- TENANT_ID
- IDP_ID
- NAME
- IS_ENABLED
- DISPLAY_NAME
IDP_AUTHENTICATOR_PROPERTY
The properties related to the authenticators stored in IDP_AUTHENTICATOR table are stored in this table. The properties are stored as key value pairs in PROPERTY_KEY and PROPERTY_VALUE tables respectively. The associated authenticator ID is given in the AUTHENTICATOR_ID column which points to the ID column of the IDP_AUTHENTICATOR table. Following are the columns of the table.
- ID
- TENANT_ID
- AUTHENTICATOR_ID
- PROPERTY_KEY
- PROPERTY_VALUE
- IS_SECRET
IDP_PROVISIONING_CONFIG
The Outbound Provisioning Connector details for each Identity Provider is stored in this table. The Identity Provider’s ID is given in the IDP_ID column which points to the ID column of the IDP. Provisioning Connector Type is given in the PROVISIONING_CONNECTOR_TYPE column. Detailed configuration for each type of provisioning connector is stored in IDP_PROV_CONFIG_PROPERTY table. Following are the columns of this table.
- ID
- TENANT_ID
- IDP_ID
- PROVISIONING_CONNECTOR_TYPE
- IS_ENABLED
- IS_BLOCKING
IDP_PROV_CONFIG_PROPERTY
The properties for each Provisioning Connector are stored in this table as key value pairs in PROPERTY_KEY and PROPERTY_VALUE columns respectively. PROVISIONING_CONFIG_ID is the ID of the Provisioning Connector in IDP_PROVISIONING_CONFIG table. Data type of the property is stored in PROPERTY_TYPE column. Following are the columns of the table.
- ID
- TENANT_ID
- PROVISIONING_CONFIG_ID
- PROPERTY_KEY
- PROPERTY_VALUE
- PROPERTY_BLOB_VALUE
- PROPERTY_TYPE
- IS_SECRET
IDP_PROVISIONING_ENTITY
When Outbound Provisioning is enabled for an Identity Provider and a User or a Group is created inside Identity Server, this table is storing records such that the PROVISIONING_CONFIG_ID contains the ID of the Provisioning Config that points to the ID column of the IDP_PROVISIONING_CONFIG table. ENTITY_TYPE column contains the type of the entity which can be either USER or GROUP. The user store of the Identity Server where the user or group is created is added to ENTITY_LOCAL_USERSTORE column. ENTITY_NAME contains the name of the user or role created inside Identity Server. ENTITY_VALUE contains the unique identifier of the user or group created at the external provisioned Identity Provider.
- ID
- PROVISIONING_CONFIG_ID
- ENTITY_TYPE
- ENTITY_LOCAL_USERSTORE
- ENTITY_NAME
- ENTITY_VALUE
- TENANT_ID
IDP_LOCAL_CLAIM
This table is not used in the latest version of Identity Server.
- ID
- TENANT_ID
- IDP_ID
- CLAIM_URI
- DEFAULT_VALUE
- IS_REQUESTED