English | EspaƱol

SAML 2.0 IdP Metadata

Here is SAML 2.0 metadata that simpleSAMLphp has generated for you. You may send this SAML 2.0 Metadata document to trusted partners to setup a trusted federation.

You can get the metadata xml on a dedicated URL:

Metadata

In SAML 2.0 Meta data XML format:

<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
	<EntityDescriptor xmlns:xsi="https://www.w3.org/2001/XMLSchema-instance" xmlns="urn:oasis:names:tc:SAML:2.0:metadata"
 entityID="https://www.rediris.es/sir/shibidp">
    <IDPSSODescriptor
        WantAuthnRequestsSigned="false"
        protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
        
		<KeyDescriptor use="signing">
			<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
				<ds:X509Data>
					<ds:X509Certificate>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</ds:X509Certificate>
				</ds:X509Data>
			</ds:KeyInfo>
		</KeyDescriptor>  
        

        
        <!-- Logout endpoints -->
        <SingleLogoutService
            Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
            Location="http://sir.rediris.es/simplesaml/saml2/idp/SingleLogoutService.php"
            ResponseLocation="http://sir.rediris.es/simplesaml/saml2/idp/SingleLogoutService.php"
            index="0" 
            isDefault="true"
            />

        
        <!-- Supported Name Identifier Formats -->
        <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
        
        <!-- AuthenticationRequest Consumer endpoint -->
        <SingleSignOnService
            Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
            Location="http://sir.rediris.es/simplesaml/saml2/idp/SSOService.php"
            index="0" 
            isDefault="true"
            />
        
    </IDPSSODescriptor>
</EntityDescriptor>

In simpleSAMLphp flat file format - use this if you are using a simpleSAMLphp entity on the other side:

	'https://www.rediris.es/sir/shibidp' =>  array(
		'name'                 => 'Type in a name for this entity',
		'description'          => 'and a proper description that would help users know when to select this IdP.',
		'SingleSignOnService'  => 'http://sir.rediris.es/simplesaml/saml2/idp/SSOService.php',
		'SingleLogoutService'  => 'http://sir.rediris.es/simplesaml/saml2/idp/SingleLogoutService.php',
		'certFingerprint'      => '628beac3dda25e225407be6cdc858ef098452736'
	),

Copyright © 2007-2008 Feide RnD