# Service Providers Manage third-party service providers that can use Transmit Security as an Identity Provider ## Servers Sandbox environment ``` https://api.sbx.transmitsecurity.io/cis ``` Production environment (US) ``` https://api.transmitsecurity.io/cis ``` Production environment (EU) ``` https://api.eu.transmitsecurity.io/cis ``` Production environment (CA) ``` https://api.ca.transmitsecurity.io/cis ``` Production environment (AU) ``` https://api.au.transmitsecurity.io/cis ``` ## Security ### bearer Type: http Scheme: bearer Bearer Format: JWT ### UserAccessToken A token returned upon end-user authentication, which provides access to resources and data for the user and app for which it was generated Type: http Scheme: bearer Bearer Format: JWT ### AdminAccessToken A token generated by a management application using the [token endpoint](/openapi/token.openapi/other/getaccesstoken). It provides access to all resources for the tenant and its apps Type: oauth2 ### ClientAccessToken A token generated by an end-user application using the [token endpoint](/openapi/token.openapi/other/getaccesstoken). It provides access to resources and data on the tenant level or associated with the specific application (but not other apps in the tenant) Type: oauth2 ### OrgAdminAccessToken A token returned upon B2B authentication for a user that has the organizationAdmin or organizationCreator role. Type: oauth2 ## Download OpenAPI description [Service Providers](https://developer.transmitsecurity.com/_bundle/openapi/user/service-providers.openapi.yaml) ## Other ### Create SAML provider - [POST /v1/serviceprovider/saml2](https://developer.transmitsecurity.com/openapi/user/service-providers.openapi/other/createserviceprovider.md): Create a SAML access-based service provider in a specific tenant. Required permissions: service-providers:create, apps:create, [appId]:create. ### Get SAML providers - [GET /v1/serviceprovider/saml2](https://developer.transmitsecurity.com/openapi/user/service-providers.openapi/other/getserviceprovider.md): Get all SAML access-based service providers in a specific tenant. Required permissions: service-providers:list, service-providers:read, apps:list, [appId]:list, apps:read, [appId]:read. ### Update SAML provider - [PUT /v1/serviceprovider/saml2/{serviceProviderId}](https://developer.transmitsecurity.com/openapi/user/service-providers.openapi/other/updateserviceprovider.md): Update the specified SAML service provider. Required permissions: service-providers:edit, apps:edit, [appId]:edit. ### Delete SAML provider - [DELETE /v1/serviceprovider/saml2/{serviceProviderId}](https://developer.transmitsecurity.com/openapi/user/service-providers.openapi/other/deleteserviceprovider.md): Delete the specified SAML service provider. Required permissions: service-providers:delete, apps:delete, [appId]:delete. ### SAML SSO - [GET /v1/serviceprovider/saml2/sso/{serviceProviderId}](https://developer.transmitsecurity.com/openapi/user/service-providers.openapi/other/createsamlresponse.md): Exchanges a user access token for a SAML response, used to perform an SSO login into a SAML service provider. The user access token, retrieved via a successful login with Transmit, is used to authorize this request.