SAML 2.0 SP metapodaci
Ovo su metapodaci koje je SimpleSAMLphp izgenerisao za vas. Te metapodatke možete poslati davaocima servisa ili davaocima identiteta u koje imate poverenja i sa kojima želite uspostaviti federaciju.
Metapodaci su dostupni na ovoj adresi:
https://sp-dev.ilc4clarin.ilc.cnr.it/module.php/saml/sp/metadata.php/default-sp
Metapodaci
Metapodaci u SAML 2.0 XML formatu:
<?xml version="1.0"?> <md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://sp-dev.ilc4clarin.ilc.cnr.it/module.php/saml/sp/metadata.php/default-sp"> <md:Extensions> <mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute"> <saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> <saml:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" xsi:type="xs:string">http://www.geant.net/uri/dataprotection-code-of-conduct/v1</saml:AttributeValue> <saml:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" xsi:type="xs:string">http://refeds.org/category/research-and-scholarship</saml:AttributeValue> <saml:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" xsi:type="xs:string">http://clarin.eu/category/clarin-member</saml:AttributeValue> </saml:Attribute> </mdattr:EntityAttributes> </md:Extensions> <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol"> <md:Extensions> <mdui:UIInfo xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui"> <mdui:DisplayName xml:lang="en">ILC4Clarin Service Provider</mdui:DisplayName> <mdui:DisplayName xml:lang="it">ILC4Clarin Service Provider</mdui:DisplayName> <mdui:Description xml:lang="en">Test service provider for single sign on</mdui:Description> <mdui:Description xml:lang="it">Service provider di test per single sign on</mdui:Description> <mdui:PrivacyStatementURL xml:lang="en">https://sp-dev.ilc4clarin.ilc.cnr.it/xxx</mdui:PrivacyStatementURL> <mdui:PrivacyStatementURL xml:lang="it">https://sp-dev.ilc4clarin.ilc.cnr.it/xxx</mdui:PrivacyStatementURL> <mdui:Logo width="80" height="60">https://sp-dev.ilc4clarin.ilc.cnr.it/xxx.png</mdui:Logo> <mdui:Logo width="16" height="16">https://sp-dev.ilc4clarin.ilc.cnr.it/xxx.png</mdui:Logo> </mdui:UIInfo> </md:Extensions> <md:KeyDescriptor use="signing"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate>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</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:KeyDescriptor use="encryption"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate>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</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://sp-dev.ilc4clarin.ilc.cnr.it/module.php/saml/sp/saml2-logout.php/default-sp"/> <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://sp-dev.ilc4clarin.ilc.cnr.it/module.php/saml/sp/saml2-acs.php/default-sp" index="0"/> <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://sp-dev.ilc4clarin.ilc.cnr.it/module.php/saml/sp/saml1-acs.php/default-sp" index="1"/> <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://sp-dev.ilc4clarin.ilc.cnr.it/module.php/saml/sp/saml2-acs.php/default-sp" index="2"/> <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://sp-dev.ilc4clarin.ilc.cnr.it/module.php/saml/sp/saml1-acs.php/default-sp/artifact" index="3"/> <md:AttributeConsumingService index="0"> <md:ServiceName xml:lang="it">Test di configurazione service provider</md:ServiceName> <md:ServiceName xml:lang="en">Configuration test service provider</md:ServiceName> <md:ServiceDescription xml:lang="it">Test configurazione service provider</md:ServiceDescription> <md:ServiceDescription xml:lang="en">Service provider configuration test</md:ServiceDescription> <md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonPrincipalName" isRequired="true"/> <md:RequestedAttribute Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="email" isRequired="true"/> <md:RequestedAttribute Name="urn:oid:2.16.840.1.113730.3.1.241" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="displayName" isRequired="true"/> <md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonTargetedID" isRequired="true"/> <md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.9" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonScopedAffiliation" isRequired="true"/> </md:AttributeConsumingService> </md:SPSSODescriptor> <md:Organization> <md:OrganizationName xml:lang="en">National Research Council</md:OrganizationName> <md:OrganizationName xml:lang="it">Consiglio Nazionale delle Ricerche</md:OrganizationName> <md:OrganizationDisplayName xml:lang="it">CNR</md:OrganizationDisplayName> <md:OrganizationDisplayName xml:lang="en">CNR</md:OrganizationDisplayName> <md:OrganizationURL xml:lang="it">https://www.cnr.it/it</md:OrganizationURL> <md:OrganizationURL xml:lang="en">https://www.cnr.it/en</md:OrganizationURL> </md:Organization> <md:ContactPerson contactType="support"> <md:Company>Consiglio Nazionale delle Ricerche</md:Company> <md:GivenName>Michele</md:GivenName> <md:SurName>Mallia</md:SurName> <md:EmailAddress>mailto:michele.mallia@cnr.it</md:EmailAddress> <md:TelephoneNumber>(+39)3392804180</md:TelephoneNumber> </md:ContactPerson> <md:ContactPerson contactType="administrative"> <md:Company>Consiglio Nazionale delle Ricerche</md:Company> <md:GivenName>Michele</md:GivenName> <md:SurName>Mallia</md:SurName> <md:EmailAddress>mailto:michele.mallia@cnr.it</md:EmailAddress> <md:TelephoneNumber>(+39)3392804180</md:TelephoneNumber> </md:ContactPerson> </md:EntityDescriptor>
U SimpleSAMLphp formatu - koristite ovu opciju ako se na drugoj strani takođe nalazi SimpleSAMLphp entitet:
$metadata['https://sp-dev.ilc4clarin.ilc.cnr.it/module.php/saml/sp/metadata.php/default-sp'] = [ 'SingleLogoutService' => [ [ 'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', 'Location' => 'https://sp-dev.ilc4clarin.ilc.cnr.it/module.php/saml/sp/saml2-logout.php/default-sp', ], ], 'AssertionConsumerService' => [ [ 'index' => 0, 'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', 'Location' => 'https://sp-dev.ilc4clarin.ilc.cnr.it/module.php/saml/sp/saml2-acs.php/default-sp', ], [ 'index' => 1, 'Binding' => 'urn:oasis:names:tc:SAML:1.0:profiles:browser-post', 'Location' => 'https://sp-dev.ilc4clarin.ilc.cnr.it/module.php/saml/sp/saml1-acs.php/default-sp', ], [ 'index' => 2, 'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact', 'Location' => 'https://sp-dev.ilc4clarin.ilc.cnr.it/module.php/saml/sp/saml2-acs.php/default-sp', ], [ 'index' => 3, 'Binding' => 'urn:oasis:names:tc:SAML:1.0:profiles:artifact-01', 'Location' => 'https://sp-dev.ilc4clarin.ilc.cnr.it/module.php/saml/sp/saml1-acs.php/default-sp/artifact', ], ], 'name' => [ 'it' => 'Test di configurazione service provider', 'en' => 'Configuration test service provider', ], 'attributes' => [ 'urn:oid:1.3.6.1.4.1.5923.1.1.1.6', 'urn:oid:0.9.2342.19200300.100.1.3', 'urn:oid:2.16.840.1.113730.3.1.241', 'urn:oid:1.3.6.1.4.1.5923.1.1.1.10', 'urn:oid:1.3.6.1.4.1.5923.1.1.1.9', ], 'attributes.required' => [ 'urn:oid:1.3.6.1.4.1.5923.1.1.1.6', 'urn:oid:0.9.2342.19200300.100.1.3', 'urn:oid:2.16.840.1.113730.3.1.241', 'urn:oid:1.3.6.1.4.1.5923.1.1.1.10', 'urn:oid:1.3.6.1.4.1.5923.1.1.1.9', ], 'description' => [ 'it' => 'Test configurazione service provider', 'en' => 'Service provider configuration test', ], 'attributes.NameFormat' => 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'OrganizationName' => [ 'en' => 'National Research Council', 'it' => 'Consiglio Nazionale delle Ricerche', ], 'OrganizationDisplayName' => [ 'it' => 'CNR', 'en' => 'CNR', ], 'OrganizationURL' => [ 'it' => 'https://www.cnr.it/it', 'en' => 'https://www.cnr.it/en', ], 'contacts' => [ [ 'contactType' => 'support', 'emailAddress' => 'michele.mallia@cnr.it', 'givenName' => 'Michele', 'surName' => 'Mallia', 'telephoneNumber' => '(+39)3392804180', 'company' => 'Consiglio Nazionale delle Ricerche', ], [ 'contactType' => 'administrative', 'emailAddress' => 'michele.mallia@cnr.it', 'givenName' => 'Michele', 'surName' => 'Mallia', 'telephoneNumber' => '(+39)3392804180', 'company' => 'Consiglio Nazionale delle Ricerche', ], ], 'certData' => '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', 'EntityAttributes' => [ '{urn:oasis:names:tc:SAML:2.0:attrname-format:uri}http://macedir.org/entity-category' => [ 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1', 'http://refeds.org/category/research-and-scholarship', 'http://clarin.eu/category/clarin-member', ], ], ];