SAML 2.0 IdP Metadata

SimpleSAMLphp har har genererat följande metadata. För att sätta upp en betrodd federation kan du skicka metadata till de parter du har förtroende för.

Du kan hämta metadata i XML-format på dedicerad URL:

https://localdev-idp.research-work.shop/simplesaml/saml2/idp/metadata.php

Metadata

I SAML 2.0 Metadata XML-format:

<?xml version="1.0" encoding="UTF-8"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://localdev-idp.research-work.shop/simplesaml/saml2/idp/metadata.php">
  <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
    <md:KeyDescriptor use="signing">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:KeyDescriptor use="encryption">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://localdev-idp.research-work.shop/simplesaml/saml2/idp/SingleLogoutService.php"/>
    <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</md:NameIDFormat>
    <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://localdev-idp.research-work.shop/simplesaml/saml2/idp/SSOService.php"/>
  </md:IDPSSODescriptor>
  <md:ContactPerson contactType="technical">
    <md:GivenName>Administrator</md:GivenName>
    <md:EmailAddress>mailto:na@example.com</md:EmailAddress>
  </md:ContactPerson>
</md:EntityDescriptor>

I filformatet för simpleSAML, använd detta detta format om SimpleSAMLphp används i mottagende sida:

$metadata['https://localdev-idp.research-work.shop/simplesaml/saml2/idp/metadata.php'] = [
    'metadata-set' => 'saml20-idp-remote',
    'entityid' => 'https://localdev-idp.research-work.shop/simplesaml/saml2/idp/metadata.php',
    'SingleSignOnService' => [
        [
            'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect',
            'Location' => 'https://localdev-idp.research-work.shop/simplesaml/saml2/idp/SSOService.php',
        ],
    ],
    'SingleLogoutService' => [
        [
            'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect',
            'Location' => 'https://localdev-idp.research-work.shop/simplesaml/saml2/idp/SingleLogoutService.php',
        ],
    ],
    'certData' => 'MIIEyTCCAzGgAwIBAgIUWC2D8A87P1/PaBVMuNeQOu6Qsr4wDQYJKoZIhvcNAQELBQAwdDELMAkGA1UEBhMCVk4xDDAKBgNVBAgMA0hDTTEMMAoGA1UEBwwDSENNMREwDwYDVQQKDAhNb2NrLUlEUDEMMAoGA1UECwwDRGV2MSgwJgYDVQQDDB9sb2NhbGRldi1pZHAucmVzZWFyY2gtd29yay5zaG9wMB4XDTI2MDEyMDA3MzA1NFoXDTM2MDExODA3MzA1NFowdDELMAkGA1UEBhMCVk4xDDAKBgNVBAgMA0hDTTEMMAoGA1UEBwwDSENNMREwDwYDVQQKDAhNb2NrLUlEUDEMMAoGA1UECwwDRGV2MSgwJgYDVQQDDB9sb2NhbGRldi1pZHAucmVzZWFyY2gtd29yay5zaG9wMIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEA4EwqMBX5isSnKPuv2ahm1h7WU8kdBy0A4ne3FOob2YU/ndXSHAFqEHTHoQKWdVOSyBhJ8wA7BJaVD6yAn087Ld9PvZT5bZ7ihAjlDg87u92kVb5IxlK3rK4FwllnWxohmh47GvG33gxw/ldLqhdtnXr1VoXM4jrEZpyAuJlGIYkAOWT2eWcG3mW9KGDRnPjNZdl5FmpNFEQxR8eqWsephgqUmuT9n2VHLDBtWi8XSnoCqE/lPbGddMXAvL9WrKWHIn+EpEB3/O57qlyQ8ACmlPpVvqq5IDh5AH8ZrB/Wn4bMSLlnhXBU6qbdDRSlRvmupscn6e/9OMoh0g3cr7mo5T8n1gkgWq66ESnQPJ2L0SuNFtacO4SCROZ8CZWue1SKxoPs4mH0WvC7I1nBAUv5QC6/21LVSUNNmA07FzZkfH2M7tNNPj72PKOjA6jaCKe5UciO5r7vQdL/alQY5AG1mMGO6Jo47MT65Kn/8+c3dge0lbaw6RuF9pHkm+FeQBKPAgMBAAGjUzBRMB0GA1UdDgQWBBSiIqrDRYURmqS9OxReYHoYBIlVmzAfBgNVHSMEGDAWgBSiIqrDRYURmqS9OxReYHoYBIlVmzAPBgNVHRMBAf8EBTADAQH/MA0GCSqGSIb3DQEBCwUAA4IBgQBL2etmCoC1of8S/hDJyegReAgXhzRDLhy7LuyeqoMxL9XQXmlhifl21FaJWzL2ixhskWyk1zD1CYb8rh5OtHv2i4iLsdI4WQ2NIQXtKAB029mkDmmkw/ypurSxzkMP+BwdsH2oYwcuYzVYwCp1/PxLtsgQlii1HwbBozlut+cWimpTYAMMFnqjv42xEUjWNFzQLZeo6FwMsKSilRilGlmWUJcHG3raVPtJqc2Ol0ML/o7bcDXjm3bDLSTqCtZvC3Sjz6Il5DgtDzr1ZqVNtrUnUJML1O81xRDRzF/bTOWbd/VcdiWTYJmLr5thtDNee04iMaOgpwjNxulZSQZrIT+a3ZmGDU6nOqOwVhQE5pRIwwAmdwUqWQhrWUGohgQ7OLpukCAvvkDPpXUBwUC5DXSqFqYsFNybAa+t9F2L9qgo7S4qOXk9IFe9GmBvXD1lI28Xi//Kvg2PboFesQEkwTGkTfOytkoRiydkEGRYguhj/5/t5NfHx9yM4Eb/c1uoSAM=',
    'NameIDFormat' => [
        'urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified',
    ],
    'contacts' => [
        [
            'emailAddress' => 'na@example.com',
            'contactType' => 'technical',
            'givenName' => 'Administrator',
        ],
    ],
];

Certifikat

Hämta X509-certifikaten som PEM-kodade filer.

idp.crt