Inicio Explorar Ayuda
Registro Iniciar sesión
lqb
/
elasticsearch
espejo de https://gitee.com/mirrors/elasticsearch.git
1
0
Fork 0
Archivos Incidencias 0 Wiki
Árbol: b499ff745a
Ramas Etiquetas
elasticsearch
/
docs
/
reference
/
rest-api
/
security
/
saml-sp-metadata.asciidoc

saml-sp-metadata.asciidoc 2.2 KB
Histórico Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758 
  1. [role="xpack"]
    2. 

  2. [[security-api-saml-sp-metadata]]
    3. 

  3. === SAML service provider metadata API
    4. 

  4. ++++
    5. 

  5. <titleabbrev>SAML service provider metadata</titleabbrev>
    6. 

  6. ++++
    7. 

  7. 

  8. .New API reference
    9. 

  9. [sidebar]
    10. 

  10. --
    11. 

  11. For the most up-to-date API details, refer to {api-es}/group/endpoint-security[Security APIs].
    12. 

  12. --
    13. 

  13. 

  14. Generate SAML metadata for a SAML 2.0 Service Provider.
    15. 

  15. 

  16. [[security-api-saml-sp-metadata-request]]
    17. 

  17. ==== {api-request-title}
    18. 

  18. 

  19. `GET /_security/saml/metadata/<realm_name>`
    20. 

  20. 

  21. [[security-api-saml-sp-metadata-desc]]
    22. 

  22. ==== {api-description-title}
    23. 

  23. 

  24. The SAML 2.0 specification provides a mechanism for Service Providers to
    25. 

  25. describe their capabilities and configuration using a metadata file. This API
    26. 

  26. generates Service Provider metadata, based on the configuration of a SAML realm
    27. 

  27. in {es}.
    28. 

  28. 

  29. [[security-api-saml-sp-metadata-path-params]]
    30. 

  30. ==== {api-path-parms-title}
    31. 

  31. 

  32. `<realm_name>`::
    33. 

  33.   (Required, string) The name of the SAML realm in {es}.
    34. 

  34. 

  35. [[security-api-saml-sp-metadata-response-body]]
    36. 

  36. ==== {api-response-body-title}
    37. 

  37. 

  38. `metadata`::
    39. 

  39. (string) An XML string that contains a SAML Service Provider's metadata for the realm.
    40. 

  40. 

  41. [[security-api-saml-sp-metadata-example]]
    42. 

  42. ==== {api-examples-title}
    43. 

  43. 

  44. The following example generates Service Provider metadata for
    45. 

  45. SAML realm `saml1`:
    46. 

  46. 

  47. [source,console]
    48. 

  48. --------------------------------------------------
    49. 

  49. GET /_security/saml/metadata/saml1
    50. 

  50. --------------------------------------------------
    51. 

  51. The API returns the following response containing the SAML metadata as an XML string:
    52. 

  52. 

  53. [source,console-result]
    54. 

  54. --------------------------------------------------
    55. 

  55. {
    56. 

  56.     "metadata" : "<?xml version=\"1.0\" encoding=\"UTF-8\"?><md:EntityDescriptor xmlns:md=\"urn:oasis:names:tc:SAML:2.0:metadata\" entityID=\"https://kibana.org\"><md:SPSSODescriptor AuthnRequestsSigned=\"false\" WantAssertionsSigned=\"true\" protocolSupportEnumeration=\"urn:oasis:names:tc:SAML:2.0:protocol\"><md:SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect\" Location=\"https://kibana.org/logout\"/><md:AssertionConsumerService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://kibana.org/api/security/saml/callback\" index=\"1\" isDefault=\"true\"/></md:SPSSODescriptor></md:EntityDescriptor>"
    57. 

  57. }
    58. 

  58. --------------------------------------------------
    59.