Sonatype Nexus · Capability

Sonatype Nexus Repository Manager — Security management: SAML users

Sonatype Nexus Repository Manager — Security management: SAML users. 5 operations. Lead operation: Retrieve a list of SAML users. The response is limited to 1,000 users.. Self-contained Naftiko capability covering one Sonatype Nexus business surface.

Run with Naftiko Sonatype NexusSecurity management: SAML users

What You Can Do

GET
Getusers1 — Retrieve a list of SAML users. The response is limited to 1,000 users.
/v1/v1/security/saml/users
POST
Createuser1 — Create a new SAML user. This allows administrators to pre-create SAML users with roles before their first login.
/v1/v1/security/saml/users
DELETE
Deleteuser1 — Delete a SAML user.
/v1/v1/security/saml/users/{userid}
GET
Getuser — Retrieve a SAML user by userId.
/v1/v1/security/saml/users/{userid}
PUT
Updateuser1 — Update a SAML user's roles and attributes.
/v1/v1/security/saml/users/{userid}

MCP Tools

retrieve-list-saml-users-response

Retrieve a list of SAML users. The response is limited to 1,000 users.

read-only idempotent
create-new-saml-user-this

Create a new SAML user. This allows administrators to pre-create SAML users with roles before their first login.

delete-saml-user

Delete a SAML user.

idempotent
retrieve-saml-user-userid

Retrieve a SAML user by userId.

read-only idempotent
update-saml-user-s-roles-and

Update a SAML user's roles and attributes.

idempotent

Capability Spec

repository-security-management-saml-users.yaml Raw ↑ 
naftiko: 1.0.0-alpha2
info:
  label: 'Sonatype Nexus Repository Manager — Security management: SAML users'
  description: 'Sonatype Nexus Repository Manager — Security management: SAML users. 5 operations. Lead operation: Retrieve
    a list of SAML users. The response is limited to 1,000 users.. Self-contained Naftiko capability covering one Sonatype
    Nexus business surface.'
  tags:
  - Sonatype Nexus
  - 'Security management: SAML users'
  created: '2026-05-19'
  modified: '2026-05-19'
binds:
- namespace: env
  keys:
    SONATYPE_NEXUS_API_KEY: SONATYPE_NEXUS_API_KEY
capability:
  consumes:
  - type: http
    namespace: repository-security-management-saml-users
    baseUri: ''
    description: 'Sonatype Nexus Repository Manager — Security management: SAML users business capability. Self-contained,
      no shared references.'
    resources:
    - name: v1-security-saml-users
      path: /v1/security/saml/users
      operations:
      - name: getusers1
        method: GET
        description: Retrieve a list of SAML users. The response is limited to 1,000 users.
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: userId
          in: query
          type: string
          description: An optional term to search userids for.
      - name: createuser1
        method: POST
        description: Create a new SAML user. This allows administrators to pre-create SAML users with roles before their first
          login.
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: v1-security-saml-users-userId
      path: /v1/security/saml/users/{userId}
      operations:
      - name: deleteuser1
        method: DELETE
        description: Delete a SAML user.
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: userId
          in: path
          type: string
          description: The userid the request should apply to.
          required: true
      - name: getuser
        method: GET
        description: Retrieve a SAML user by userId.
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: userId
          in: path
          type: string
          description: The userid the request should apply to.
          required: true
      - name: updateuser1
        method: PUT
        description: Update a SAML user's roles and attributes.
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: userId
          in: path
          type: string
          description: The userid the request should apply to.
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    authentication:
      type: basic
      username: '{{env.SONATYPE_NEXUS_USER}}'
      password: '{{env.SONATYPE_NEXUS_PASS}}'
  exposes:
  - type: rest
    namespace: repository-security-management-saml-users-rest
    port: 8080
    description: 'REST adapter for Sonatype Nexus Repository Manager — Security management: SAML users. One Spectral-compliant
      resource per consumed operation, prefixed with /v1.'
    resources:
    - path: /v1/v1/security/saml/users
      name: v1-security-saml-users
      description: REST surface for v1-security-saml-users.
      operations:
      - method: GET
        name: getusers1
        description: Retrieve a list of SAML users. The response is limited to 1,000 users.
        call: repository-security-management-saml-users.getusers1
        with:
          userId: rest.userId
        outputParameters:
        - type: object
          mapping: $.
      - method: POST
        name: createuser1
        description: Create a new SAML user. This allows administrators to pre-create SAML users with roles before their first
          login.
        call: repository-security-management-saml-users.createuser1
        with:
          body: rest.body
        outputParameters:
        - type: object
          mapping: $.
    - path: /v1/v1/security/saml/users/{userid}
      name: v1-security-saml-users-userid
      description: REST surface for v1-security-saml-users-userId.
      operations:
      - method: DELETE
        name: deleteuser1
        description: Delete a SAML user.
        call: repository-security-management-saml-users.deleteuser1
        with:
          userId: rest.userId
        outputParameters:
        - type: object
          mapping: $.
      - method: GET
        name: getuser
        description: Retrieve a SAML user by userId.
        call: repository-security-management-saml-users.getuser
        with:
          userId: rest.userId
        outputParameters:
        - type: object
          mapping: $.
      - method: PUT
        name: updateuser1
        description: Update a SAML user's roles and attributes.
        call: repository-security-management-saml-users.updateuser1
        with:
          userId: rest.userId
          body: rest.body
        outputParameters:
        - type: object
          mapping: $.
  - type: mcp
    namespace: repository-security-management-saml-users-mcp
    port: 9090
    transport: http
    description: 'MCP adapter for Sonatype Nexus Repository Manager — Security management: SAML users. One tool per consumed
      operation, routed inline through this capability''s consumes block.'
    tools:
    - name: retrieve-list-saml-users-response
      description: Retrieve a list of SAML users. The response is limited to 1,000 users.
      hints:
        readOnly: true
        destructive: false
        idempotent: true
      call: repository-security-management-saml-users.getusers1
      with:
        userId: tools.userId
      outputParameters:
      - type: object
        mapping: $.
    - name: create-new-saml-user-this
      description: Create a new SAML user. This allows administrators to pre-create SAML users with roles before their first
        login.
      hints:
        readOnly: false
        destructive: false
        idempotent: false
      call: repository-security-management-saml-users.createuser1
      with:
        body: tools.body
      outputParameters:
      - type: object
        mapping: $.
    - name: delete-saml-user
      description: Delete a SAML user.
      hints:
        readOnly: false
        destructive: true
        idempotent: true
      call: repository-security-management-saml-users.deleteuser1
      with:
        userId: tools.userId
      outputParameters:
      - type: object
        mapping: $.
    - name: retrieve-saml-user-userid
      description: Retrieve a SAML user by userId.
      hints:
        readOnly: true
        destructive: false
        idempotent: true
      call: repository-security-management-saml-users.getuser
      with:
        userId: tools.userId
      outputParameters:
      - type: object
        mapping: $.
    - name: update-saml-user-s-roles-and
      description: Update a SAML user's roles and attributes.
      hints:
        readOnly: false
        destructive: false
        idempotent: true
      call: repository-security-management-saml-users.updateuser1
      with:
        userId: tools.userId
        body: tools.body
      outputParameters:
      - type: object
        mapping: $.