SAML 2.0 tjenesteudbyders metadata
Her er det metadata, som SimpleSAMLphp har genereret. Du kan sende det til dem du stoler i forbindelse med oprettelsen af en føderation.
Du kan få metadata-xml her:
https://uat-saml.studi.se/module.php/saml/sp/metadata.php/studi-se-sp
Metadata
I SAML 2.0 metadata xml-format:
<?xml version="1.0"?> <md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://uat-saml.studi.se/module.php/saml/sp/metadata.php/studi-se-sp"> <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol"> <md:Extensions> <idpdisc:DiscoveryResponse xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" index="1" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://uat-saml.studi.se/module.php/saml/sp/discoresp.php" /> </md:Extensions><md:KeyDescriptor use="signing"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate>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</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:KeyDescriptor use="encryption"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate>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</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://uat-saml.studi.se/module.php/saml/sp/saml2-logout.php/studi-se-sp"/> <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://uat-saml.studi.se/module.php/saml/sp/saml2-acs.php/studi-se-sp" index="0"/> <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://uat-saml.studi.se/module.php/saml/sp/saml1-acs.php/studi-se-sp" index="1"/> <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://uat-saml.studi.se/module.php/saml/sp/saml2-acs.php/studi-se-sp" index="2"/> <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://uat-saml.studi.se/module.php/saml/sp/saml1-acs.php/studi-se-sp/artifact" index="3"/> <md:AttributeConsumingService index="0"> <md:ServiceName xml:lang="en">Binogi.se</md:ServiceName> <md:ServiceName xml:lang="sv">Binogi.se</md:ServiceName> <md:ServiceDescription xml:lang="en">Binogi consists of short animated movies. Complicated contexts are explained in an easy, fun and educational manner with clear examples and everyday situations. Both audio and subtitles are available in multiple languages.</md:ServiceDescription> <md:ServiceDescription xml:lang="sv">Binogi består av korta animerade filmer. Komplicerade sammanhang förklaras enkelt, roligt och pedagogiskt med hjälp av tydliga exempel och vardagssituationer. Både ljud och undertexter finns på flera olika språk.</md:ServiceDescription> <md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" FriendlyName="eduPersonPrincipalName" isRequired="true"/> <md:RequestedAttribute Name="urn:oid:0.9.2342.19200300.100.1.3" FriendlyName="mail" isRequired="true"/> <md:RequestedAttribute Name="urn:oid:1.2.752.194.10.2.4" FriendlyName="sisSchoolUnitCode"/> <md:RequestedAttribute Name="urn:oid:2.5.4.42" FriendlyName="givenName" isRequired="true"/> <md:RequestedAttribute Name="urn:oid:2.5.4.4" FriendlyName="surName" isRequired="true"/> <md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.6.1.2" FriendlyName="eduCourseMember"/> <md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.9" FriendlyName="eduPersonScopedAffiliation"/> <md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.1" FriendlyName="eduPersonAffiliation"/> <md:RequestedAttribute Name="urn:oid:2.16.840.1.113730.3.1.241" FriendlyName="displayName"/> <md:RequestedAttribute Name="urn:oid:1.2.752.194.10.2.2" FriendlyName="sisSchoolGrade"/> <md:RequestedAttribute Name="urn:oid:1.2.752.194.10.2.5" FriendlyName="sisSchoolCourseStudent"/> <md:RequestedAttribute Name="urn:oid:1.2.752.194.10.2.6" FriendlyName="sisSchoolCourseTeacher"/> </md:AttributeConsumingService> </md:SPSSODescriptor> <md:Organization> <md:OrganizationName xml:lang="en">Binogi AB</md:OrganizationName> <md:OrganizationName xml:lang="sv">Binogi AB</md:OrganizationName> <md:OrganizationDisplayName xml:lang="en">Binogi AB</md:OrganizationDisplayName> <md:OrganizationDisplayName xml:lang="sv">Binogi AB</md:OrganizationDisplayName> <md:OrganizationURL xml:lang="en">https://www.binogi.se</md:OrganizationURL> </md:Organization> <md:ContactPerson contactType="technical"> <md:GivenName>Binogi</md:GivenName> <md:SurName>Tech</md:SurName> <md:EmailAddress>mailto:ops@binogi.net</md:EmailAddress> </md:ContactPerson> </md:EntityDescriptor>
I SimpleSAMLphp flat-file format - brug dette hvis du også bruger SimpleSAMLphp i den anden ende;
$metadata['https://uat-saml.studi.se/module.php/saml/sp/metadata.php/studi-se-sp'] = [ 'SingleLogoutService' => [ [ 'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', 'Location' => 'https://uat-saml.studi.se/module.php/saml/sp/saml2-logout.php/studi-se-sp', ], ], 'AssertionConsumerService' => [ [ 'index' => 0, 'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', 'Location' => 'https://uat-saml.studi.se/module.php/saml/sp/saml2-acs.php/studi-se-sp', ], [ 'index' => 1, 'Binding' => 'urn:oasis:names:tc:SAML:1.0:profiles:browser-post', 'Location' => 'https://uat-saml.studi.se/module.php/saml/sp/saml1-acs.php/studi-se-sp', ], [ 'index' => 2, 'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact', 'Location' => 'https://uat-saml.studi.se/module.php/saml/sp/saml2-acs.php/studi-se-sp', ], [ 'index' => 3, 'Binding' => 'urn:oasis:names:tc:SAML:1.0:profiles:artifact-01', 'Location' => 'https://uat-saml.studi.se/module.php/saml/sp/saml1-acs.php/studi-se-sp/artifact', ], ], 'name' => [ 'en' => 'Binogi.se', 'sv' => 'Binogi.se', ], 'attributes' => [ 'urn:oid:1.3.6.1.4.1.5923.1.1.1.6', 'urn:oid:0.9.2342.19200300.100.1.3', 'urn:oid:1.2.752.194.10.2.4', 'urn:oid:2.5.4.42', 'urn:oid:2.5.4.4', 'urn:oid:1.3.6.1.4.1.5923.1.6.1.2', 'urn:oid:1.3.6.1.4.1.5923.1.1.1.9', 'urn:oid:1.3.6.1.4.1.5923.1.1.1.1', 'urn:oid:2.16.840.1.113730.3.1.241', 'urn:oid:1.2.752.194.10.2.2', 'urn:oid:1.2.752.194.10.2.5', 'urn:oid:1.2.752.194.10.2.6', ], 'attributes.required' => [ 'eduPersonPrincipalName' => 'urn:oid:1.3.6.1.4.1.5923.1.1.1.6', 'mail' => 'urn:oid:0.9.2342.19200300.100.1.3', 'givenName' => 'urn:oid:2.5.4.42', 'surName' => 'urn:oid:2.5.4.4', ], 'description' => [ 'en' => 'Binogi consists of short animated movies. Complicated contexts are explained in an easy, fun and educational manner with clear examples and everyday situations. Both audio and subtitles are available in multiple languages.', 'sv' => 'Binogi består av korta animerade filmer. Komplicerade sammanhang förklaras enkelt, roligt och pedagogiskt med hjälp av tydliga exempel och vardagssituationer. Både ljud och undertexter finns på flera olika språk.', ], 'OrganizationName' => [ 'en' => 'Binogi AB', 'sv' => 'Binogi AB', ], 'OrganizationDisplayName' => [ 'en' => 'Binogi AB', 'sv' => 'Binogi AB', ], 'OrganizationURL' => [ 'en' => 'https://www.binogi.se', ], 'contacts' => [ [ 'emailAddress' => 'ops@binogi.net', 'contactType' => 'technical', 'givenName' => 'Binogi', 'surName' => 'Tech', ], ], 'certData' => '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', ];