SAML 2.0 SP Metadata
Her er metadata generert av SimpleSAMLphp for deg. Du kan senda dette metadata-dokumentet til dine partnarar, slik at de kan setja opp ein tillitsføderasjon.
Du kan få metadata i XML på ein URL:
https://sp-dev.ilc4clarin.ilc.cnr.it/module.php/saml/sp/metadata.php/default-sp
Metadata
På SAML 2.0 metadata XML-format
<?xml version="1.0"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://sp-dev.ilc4clarin.ilc.cnr.it/module.php/saml/sp/metadata.php/default-sp">
<md:Extensions>
<mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute">
<saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
<saml:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" xsi:type="xs:string">http://www.geant.net/uri/dataprotection-code-of-conduct/v1</saml:AttributeValue>
<saml:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" xsi:type="xs:string">http://refeds.org/category/research-and-scholarship</saml:AttributeValue>
<saml:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" xsi:type="xs:string">http://clarin.eu/category/clarin-member</saml:AttributeValue>
</saml:Attribute>
</mdattr:EntityAttributes>
</md:Extensions>
<md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol">
<md:Extensions>
<mdui:UIInfo xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui">
<mdui:DisplayName xml:lang="en">ILC4Clarin Service Provider</mdui:DisplayName>
<mdui:DisplayName xml:lang="it">ILC4Clarin Service Provider</mdui:DisplayName>
<mdui:Description xml:lang="en">Test service provider for single sign on</mdui:Description>
<mdui:Description xml:lang="it">Service provider di test per single sign on</mdui:Description>
<mdui:PrivacyStatementURL xml:lang="en">https://sp-dev.ilc4clarin.ilc.cnr.it/xxx</mdui:PrivacyStatementURL>
<mdui:PrivacyStatementURL xml:lang="it">https://sp-dev.ilc4clarin.ilc.cnr.it/xxx</mdui:PrivacyStatementURL>
<mdui:Logo width="80" height="60">https://sp-dev.ilc4clarin.ilc.cnr.it/xxx.png</mdui:Logo>
<mdui:Logo width="16" height="16">https://sp-dev.ilc4clarin.ilc.cnr.it/xxx.png</mdui:Logo>
</mdui:UIInfo>
</md:Extensions>
<md:KeyDescriptor use="signing">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>MIIEZjCCA06gAwIBAgIUPmke+vkcLyceOlBCy9SzxLsNwskwDQYJKoZIhvcNAQELBQAwga8xCzAJBgNVBAYTAklUMRMwEQYDVQQIEwpDYWxpZm9ybmlhMQ0wCwYDVQQHEwRQaXNhMTswOQYDVQQKEzJJc3RpdHV0byBkaSBMaW5ndWlzdGljYSBDb21wdXRhemlvbmFsZSBBLiBaYW1wb2xsaTEUMBIGA1UECxMLRGV2ZWxvcG1lbnQxKTAnBgNVBAMTIElMQzRDTEFSSU4gU2VydmljZSBwcm92aWRlciB0ZXN0MB4XDTI0MDkxNzE0NTYwMFoXDTI1MDkxNzE0NTYwMFowga8xCzAJBgNVBAYTAklUMRMwEQYDVQQIEwpDYWxpZm9ybmlhMQ0wCwYDVQQHEwRQaXNhMTswOQYDVQQKEzJJc3RpdHV0byBkaSBMaW5ndWlzdGljYSBDb21wdXRhemlvbmFsZSBBLiBaYW1wb2xsaTEUMBIGA1UECxMLRGV2ZWxvcG1lbnQxKTAnBgNVBAMTIElMQzRDTEFSSU4gU2VydmljZSBwcm92aWRlciB0ZXN0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwmTfacOhO8rii77sOHoaPfL2EpGt7uU2fy6tU3I0f+7ER2iG/SwKZ0d8oix2NIUwHKLxX6KgeBmPzc8zGKUArfmtsKUXtGisSmXlLliQywxtUQNSnbE90vL7arAhRxz2g5NtgKOSozu9TmhwRqlSuRIx3zsc/Be9tIdsJ75/QM8Ir3nUHO4eykWgdVopMnNpOaXa7UUf/anBl7zznuHYZSMgUSdxtE/ijHYuH+DGJsd0FwpbBMx4nG+I7jglYU3PP26tWVWaxzLeKO7A+rbuUn64C0/xI3YE0l7pFL8Vx8x5mQlQBq4h3lZ6gpRZJKfv65u17MBqocFgDZsVyEKhsQIDAQABo3gwdjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwEwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUUEHBZZGZyITB/XKa+0TJzaEpn7cwIgYDVR0RBBswGYIXKi5pbGM0Y2xhcmluLmlsYy5jbnIuaXQwDQYJKoZIhvcNAQELBQADggEBAJRuLJX1XG3chBv2htF9l9QZ8hyEy3R0ONTz8uwFb0REVRySqDVMb2bnEqKuQv+BWYKZkWyqt+Kb+CoSV5VK5NZh1HY/kTJJMOjKCogdfeLo4LJRh17dPPVlOaPSnp8F4h8Hl4AxaGv3kFUBZ+qtN8X6WgcKlUis5qLd6z9SxM+PX2eaWMUQJIQsJERO55Q3Ox9bsUbwhrCNRv+RXQ7CFC6TX6JGxRzUiCn52rKc6BcTBqBes6OGhG6pHMF6n0ATa+WsTRXp5rZ/2DH3LX48S90rVegpPR2/Q3EMHAlJoK7SlOZh7BUyuh3WKzKbmf6Qs3OlvE7IPTdIJBRzSQGPQ20=</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:KeyDescriptor use="encryption">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://sp-dev.ilc4clarin.ilc.cnr.it/module.php/saml/sp/saml2-logout.php/default-sp"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://sp-dev.ilc4clarin.ilc.cnr.it/module.php/saml/sp/saml2-acs.php/default-sp" index="0"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://sp-dev.ilc4clarin.ilc.cnr.it/module.php/saml/sp/saml1-acs.php/default-sp" index="1"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://sp-dev.ilc4clarin.ilc.cnr.it/module.php/saml/sp/saml2-acs.php/default-sp" index="2"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://sp-dev.ilc4clarin.ilc.cnr.it/module.php/saml/sp/saml1-acs.php/default-sp/artifact" index="3"/>
<md:AttributeConsumingService index="0">
<md:ServiceName xml:lang="it">Test di configurazione service provider</md:ServiceName>
<md:ServiceName xml:lang="en">Configuration test service provider</md:ServiceName>
<md:ServiceDescription xml:lang="it">Test configurazione service provider</md:ServiceDescription>
<md:ServiceDescription xml:lang="en">Service provider configuration test</md:ServiceDescription>
<md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonPrincipalName" isRequired="true"/>
<md:RequestedAttribute Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="email" isRequired="true"/>
<md:RequestedAttribute Name="urn:oid:2.16.840.1.113730.3.1.241" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="displayName" isRequired="true"/>
<md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonTargetedID" isRequired="true"/>
<md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.9" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonScopedAffiliation" isRequired="true"/>
</md:AttributeConsumingService>
</md:SPSSODescriptor>
<md:Organization>
<md:OrganizationName xml:lang="en">National Research Council</md:OrganizationName>
<md:OrganizationName xml:lang="it">Consiglio Nazionale delle Ricerche</md:OrganizationName>
<md:OrganizationDisplayName xml:lang="it">CNR</md:OrganizationDisplayName>
<md:OrganizationDisplayName xml:lang="en">CNR</md:OrganizationDisplayName>
<md:OrganizationURL xml:lang="it">https://www.cnr.it/it</md:OrganizationURL>
<md:OrganizationURL xml:lang="en">https://www.cnr.it/en</md:OrganizationURL>
</md:Organization>
<md:ContactPerson contactType="support">
<md:Company>Consiglio Nazionale delle Ricerche</md:Company>
<md:GivenName>Michele</md:GivenName>
<md:SurName>Mallia</md:SurName>
<md:EmailAddress>mailto:michele.mallia@cnr.it</md:EmailAddress>
<md:TelephoneNumber>(+39)3392804180</md:TelephoneNumber>
</md:ContactPerson>
<md:ContactPerson contactType="administrative">
<md:Company>Consiglio Nazionale delle Ricerche</md:Company>
<md:GivenName>Michele</md:GivenName>
<md:SurName>Mallia</md:SurName>
<md:EmailAddress>mailto:michele.mallia@cnr.it</md:EmailAddress>
<md:TelephoneNumber>(+39)3392804180</md:TelephoneNumber>
</md:ContactPerson>
</md:EntityDescriptor>
På flat fil for SimpleSAMLphp. Bruk denne dersom du bruker SimpleSAMLphp på andre sida:
$metadata['https://sp-dev.ilc4clarin.ilc.cnr.it/module.php/saml/sp/metadata.php/default-sp'] = [
'SingleLogoutService' => [
[
'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect',
'Location' => 'https://sp-dev.ilc4clarin.ilc.cnr.it/module.php/saml/sp/saml2-logout.php/default-sp',
],
],
'AssertionConsumerService' => [
[
'index' => 0,
'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST',
'Location' => 'https://sp-dev.ilc4clarin.ilc.cnr.it/module.php/saml/sp/saml2-acs.php/default-sp',
],
[
'index' => 1,
'Binding' => 'urn:oasis:names:tc:SAML:1.0:profiles:browser-post',
'Location' => 'https://sp-dev.ilc4clarin.ilc.cnr.it/module.php/saml/sp/saml1-acs.php/default-sp',
],
[
'index' => 2,
'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact',
'Location' => 'https://sp-dev.ilc4clarin.ilc.cnr.it/module.php/saml/sp/saml2-acs.php/default-sp',
],
[
'index' => 3,
'Binding' => 'urn:oasis:names:tc:SAML:1.0:profiles:artifact-01',
'Location' => 'https://sp-dev.ilc4clarin.ilc.cnr.it/module.php/saml/sp/saml1-acs.php/default-sp/artifact',
],
],
'name' => [
'it' => 'Test di configurazione service provider',
'en' => 'Configuration test service provider',
],
'attributes' => [
'urn:oid:1.3.6.1.4.1.5923.1.1.1.6',
'urn:oid:0.9.2342.19200300.100.1.3',
'urn:oid:2.16.840.1.113730.3.1.241',
'urn:oid:1.3.6.1.4.1.5923.1.1.1.10',
'urn:oid:1.3.6.1.4.1.5923.1.1.1.9',
],
'attributes.required' => [
'urn:oid:1.3.6.1.4.1.5923.1.1.1.6',
'urn:oid:0.9.2342.19200300.100.1.3',
'urn:oid:2.16.840.1.113730.3.1.241',
'urn:oid:1.3.6.1.4.1.5923.1.1.1.10',
'urn:oid:1.3.6.1.4.1.5923.1.1.1.9',
],
'description' => [
'it' => 'Test configurazione service provider',
'en' => 'Service provider configuration test',
],
'attributes.NameFormat' => 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri',
'OrganizationName' => [
'en' => 'National Research Council',
'it' => 'Consiglio Nazionale delle Ricerche',
],
'OrganizationDisplayName' => [
'it' => 'CNR',
'en' => 'CNR',
],
'OrganizationURL' => [
'it' => 'https://www.cnr.it/it',
'en' => 'https://www.cnr.it/en',
],
'contacts' => [
[
'contactType' => 'support',
'emailAddress' => 'michele.mallia@cnr.it',
'givenName' => 'Michele',
'surName' => 'Mallia',
'telephoneNumber' => '(+39)3392804180',
'company' => 'Consiglio Nazionale delle Ricerche',
],
[
'contactType' => 'administrative',
'emailAddress' => 'michele.mallia@cnr.it',
'givenName' => 'Michele',
'surName' => 'Mallia',
'telephoneNumber' => '(+39)3392804180',
'company' => 'Consiglio Nazionale delle Ricerche',
],
],
'certData' => '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',
'EntityAttributes' => [
'{urn:oasis:names:tc:SAML:2.0:attrname-format:uri}http://macedir.org/entity-category' => [
'http://www.geant.net/uri/dataprotection-code-of-conduct/v1',
'http://refeds.org/category/research-and-scholarship',
'http://clarin.eu/category/clarin-member',
],
],
];
Copyright © 2007-2021