External IdP Support for Portal Consumers

Swagger Studio supports external identity provider (IdP) integration for Swagger Portal consumers. It allows customers to use their own IdP to authenticate external users and grant them view-only access to the organization's Portal resources. This enhancement improves access flexibility, strengthens security, and simplifies the sign-in experience for external audiences.

Configure external IdP for Portal consumers

You can add external Portal consumers in your organization's Permissions page. Enable this option by setting up an external identity provider first to ensure secure authentication for the users.

Configure an external IdP by following these steps:

  1. Click Organization Settings on the sidebar.

  2. Select the Permissions tab.

  3. Navigate to the Portal IdP Consumers tab.

  4. Click Create IdP Configuration.

  5. Follow the onscreen guidance to set up the external IdP. Refer to Configuring Portal External IdP Connection guide for details.

  6. Provide the required JWT token settings.

  7. Save the configuration.

The Portal Consumers tab is enabled, allowing you to add and manage Portal consumers from the external IdP.

Important

If you cannot connect to the configured identity provider, open the IdP settings and verify the connection.

Manage external Portal consumers

Once you have set up an external IdP, you can add the users authenticated with that IdP as external Portal consumers. These users will have view-only access to your portal and cannot be granted internal organization roles.

Add external Portal consumers

To add external Portal consumers, do the following:

  1. Click Organization Settings on the sidebar.

  2. Select the Permissions page.

  3. Navigate to the Portal IdP Consumers tab.

  4. In the Add user input, enter an email address of a user authenticated with the external IdP. To invite multiple users, separate their email addresses with a space or a comma.

  5. Click Add.

The system validates email addresses. Successfully added users appear in the Portal IdP Consumers table, while any invalid or duplicate emails are shown in an error notification below.

Delete external Portal consumers

To delete external Portal consumers and revoke their access to the Portal, do the following:

  1. Click Organization Settings on the sidebar.

  2. Select the Permissions page.

  3. Navigate to the Portal Consumers tab.

  4. Select the Studio_icon_spectral_editor_trash_01.png delete icon at the relevant user.

  5. Click Remove member to confirm.

The selected user is removed from the Portal Consumers table.

Manage consumer roles

You can grant or restrict view-only access to a Portal product or a team for external users. A resource becomes accessible to a user once you assign them a member or consumer role in that resource.

Assign a new consumer role

To assign a role to an external user, do the following:

  1. Click Organization Settings on the sidebar.

  2. Select the Permissions page.

  3. Navigate to the Portal IdP Consumers tab.

  4. Click the member-profile.png member profile icon next to the user.

  5. Click Create Role Assignment.

  6. Select the type of resource from the Resource list.

  7. Select the specific resource from the Name list.

  8. Select the member's role in the specified resource from the Role list.

  9. Click Create.

Delete a consumer role

To delete a consumer's role in a specific resource, do the following:

  1. Click Organization Settings on the sidebar.

  2. Select the Permissions page.

  3. Navigate to the Portal IdP Consumers tab.

  4. Click the member-profile.png member profile icon next to the user.

  5. Select the Studio_icon_spectral_editor_trash_01.png delete icon at the relevant resource.

  6. In the subsequent dialog, confirm your update by clicking Remove access.

In this section:
© 2026
Publication date: