SAML 2.0 tjenesteudbyders metadata
Her er det metadata, som SimpleSAMLphp har genereret. Du kan sende det til dem du stoler i forbindelse med oprettelsen af en føderation.
Du kan få metadata-xml her:
https://pfsko-staff.idp-proxy.finki.ukim.mk/module.php/saml/sp/metadata.php/default-sp
Metadata
I SAML 2.0 metadata xml-format:
<?xml version="1.0"?> <md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://pfsko-staff.idp-proxy.finki.ukim.mk/module.php/saml/sp/metadata.php/default-sp"> <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol"> <md:KeyDescriptor use="signing"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate>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</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:KeyDescriptor use="encryption"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate>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</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://pfsko-staff.idp-proxy.finki.ukim.mk/module.php/saml/sp/saml2-logout.php/default-sp"/> <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://pfsko-staff.idp-proxy.finki.ukim.mk/module.php/saml/sp/saml2-acs.php/default-sp" index="0"/> <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://pfsko-staff.idp-proxy.finki.ukim.mk/module.php/saml/sp/saml1-acs.php/default-sp" index="1"/> <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://pfsko-staff.idp-proxy.finki.ukim.mk/module.php/saml/sp/saml2-acs.php/default-sp" index="2"/> <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://pfsko-staff.idp-proxy.finki.ukim.mk/module.php/saml/sp/saml1-acs.php/default-sp/artifact" index="3"/> </md:SPSSODescriptor> <md:ContactPerson contactType="technical"> <md:GivenName>FINKI</md:GivenName> <md:SurName>FCC</md:SurName> <md:EmailAddress>fcc@finki.ukim.mk</md:EmailAddress> </md:ContactPerson> </md:EntityDescriptor>
I SimpleSAMLphp flat-file format - brug dette hvis du også bruger SimpleSAMLphp i den anden ende;
$metadata['https://pfsko-staff.idp-proxy.finki.ukim.mk/module.php/saml/sp/metadata.php/default-sp'] = array ( 'SingleLogoutService' => array ( 0 => array ( 'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', 'Location' => 'https://pfsko-staff.idp-proxy.finki.ukim.mk/module.php/saml/sp/saml2-logout.php/default-sp', ), ), 'AssertionConsumerService' => array ( 0 => array ( 'index' => 0, 'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', 'Location' => 'https://pfsko-staff.idp-proxy.finki.ukim.mk/module.php/saml/sp/saml2-acs.php/default-sp', ), 1 => array ( 'index' => 1, 'Binding' => 'urn:oasis:names:tc:SAML:1.0:profiles:browser-post', 'Location' => 'https://pfsko-staff.idp-proxy.finki.ukim.mk/module.php/saml/sp/saml1-acs.php/default-sp', ), 2 => array ( 'index' => 2, 'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact', 'Location' => 'https://pfsko-staff.idp-proxy.finki.ukim.mk/module.php/saml/sp/saml2-acs.php/default-sp', ), 3 => array ( 'index' => 3, 'Binding' => 'urn:oasis:names:tc:SAML:1.0:profiles:artifact-01', 'Location' => 'https://pfsko-staff.idp-proxy.finki.ukim.mk/module.php/saml/sp/saml1-acs.php/default-sp/artifact', ), ), 'contacts' => array ( 0 => array ( 'emailAddress' => 'fcc@finki.ukim.mk', 'contactType' => 'technical', 'givenName' => 'FINKI', 'surName' => 'FCC', ), ), 'certData' => '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', );