SAML 2.0 IdP Metadata
Here is SAML 2.0 metadata that simpleSAMLphp has generated for you. You may send this SAML 2.0 Metadata document to trusted partners to setup a trusted federation.
You can get the metadata xml on a dedicated URL:
Metadata
In SAML 2.0 Meta data XML format:
<?xml version="1.0" encoding="UTF-8" standalone="yes"?> <EntityDescriptor xmlns:xsi="https://www.w3.org/2001/XMLSchema-instance" xmlns="urn:oasis:names:tc:SAML:2.0:metadata" entityID="https://www.rediris.es/sir/shibidp"> <IDPSSODescriptor WantAuthnRequestsSigned="false" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> <KeyDescriptor use="signing"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate>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</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </KeyDescriptor> <!-- Logout endpoints --> <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://sir.rediris.es/simplesaml/saml2/idp/SingleLogoutService.php" ResponseLocation="https://sir.rediris.es/simplesaml/saml2/idp/SingleLogoutService.php" index="0" isDefault="true" /> <!-- Supported Name Identifier Formats --> <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat> <!-- AuthenticationRequest Consumer endpoint --> <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://sir.rediris.es/simplesaml/saml2/idp/SSOService.php" index="0" isDefault="true" /> </IDPSSODescriptor> </EntityDescriptor>
In simpleSAMLphp flat file format - use this if you are using a simpleSAMLphp entity on the other side:
'https://www.rediris.es/sir/shibidp' => array( 'name' => 'Type in a name for this entity', 'description' => 'and a proper description that would help users know when to select this IdP.', 'SingleSignOnService' => 'https://sir.rediris.es/simplesaml/saml2/idp/SSOService.php', 'SingleLogoutService' => 'https://sir.rediris.es/simplesaml/saml2/idp/SingleLogoutService.php', 'certFingerprint' => '628beac3dda25e225407be6cdc858ef098452736' ),
Copyright © 2007-2008 Feide RnD