SAML

The SAML Metadata service publishes signed SAML 2.0 EntityDescriptor and EntitiesDescriptor documents for the IdentityProvider AuthStates configured in the nevisAuth instance, following the OASIS SAML V2.0 Metadata specification. Service Providers use this endpoint to automatically import IdP configuration - including endpoint URLs, supported bindings, public key material for signature verification and encryption, issued attribute names, and supported NameID formats. The metadata document is cryptographically signed using the configured signer key, allowing consumers to verify its authenticity before trusting the contained configuration. Individual entity metadata can be retrieved by SAML Entity ID via the path parameter, or all entities can be fetched in a single EntitiesDescriptor document from the base path. Responses are served as application/samlmetadata+xml.

📄️ Get metadata for all entities

Returns a signed SAML 2.0 `EntitiesDescriptor` document containing the `EntityDescriptor`

📄️ Get metadata for a single entity

Returns a signed SAML 2.0 `EntityDescriptor` for the identity provider identified by its SAML Entity ID