Avnology ID
API ReferenceSAML (IdP)

Validate & Test Assertion

Validate an inbound SAML assertion or generate a test one without an end-user flow.

RPCs

MethodPath
ValidateAssertionPOST /v1/saml/assertions:validate
TestAssertionPOST /v1/saml/assertions:test

Base URL: https://<Domain id="api"/>

Authentication: Bearer token with saml_idp:read (validate) / :write (test).

Validate

Confirm that a raw SAML XML assertion is signed by an active Avnology IdP cert and has valid time bounds.

Test

Generate a signed test assertion for a specific (identity, SP) pair -- use during SP onboarding to verify your attribute mappings without forcing a browser flow.

Certificates

Generate, activate, and revoke SAML signing certificates.

Discovery

Resolve an identifier (email, slug, custom domain) to the organization's auth configuration -- for home-realm discovery and single-login fields.

On this page