Afrikaans | Čeština | Dansk | Deutsch | ελληνικά | English | Español | eesti keel | Euskara | Suomeksi | Français | עִבְרִית | Hrvatski | Magyar | Bahasa Indonesia | Italiano | 日本語 | Lëtzebuergesch | Lietuvių kalba | Latviešu | Nederlands | Nynorsk | Bokmål | Język polski | Português | Português brasileiro | Românește | русский язык | Sámegiella | Slovenščina | Srpski | Svenska | Türkçe | 简体中文 | 繁體中文

Metadati SAML 2.0 IdP

Questi sono i metadati che SimpleSAMLphp ha generato e che possono essere inviati ai partner fidati per creare una federazione tra siti.

Si possono ottenere i metadati in XML dall'URL dedicata:

https://idp02.riu.edu.ar/saml2/idp/metadata.php

Metadati

Metadati SAML 2.0 in formato XML:

<?xml version="1.0"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://idp02.riu.edu.ar/saml2/idp/metadata.php" ID="pfxb391c0e9-d0d2-7fba-cfa1-109609e6d39e"><ds:Signature>
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
  <ds:Reference URI="#pfxb391c0e9-d0d2-7fba-cfa1-109609e6d39e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/><ds:DigestValue>dpIb/EUsSvV1TmJSnEx4Ez822xjL0QeLJNqZy/71zME=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>h/pN7b0gIcu11NMHyu8xP7qvBpkrA1ks7uc7IrZNJ9d6uF4/5qUBJeIN8woroQtWH7Jqj0RmWDbFCQPp+Zl1qfHWx5WgnTFDj9KDe5R6tQEwUg0hlvCiy3eYoawf7pQ3J4/48P336SXKDzBW7Tt1tJfWUYhoGMHkcGIlHrmo0Zwb7qOIHn4eqf7x5zd+BFLhhcN4uX9J3YYFLbIOTyzbwnInpnChyvb0yAQZ7ft+m4OaQD2lIqpItTSK1uDbPsq216h4KxPTKjc6JNe8780fqiYSAyHe6YbB4GL39+S18ccxMuzvS9u7l6qz6yJPk1pBtsCjFXdxYEiEJcxkoqw0nw==</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
    <md:KeyDescriptor use="signing">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:KeyDescriptor use="encryption">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp02.riu.edu.ar/saml2/idp/SingleLogoutService.php"/>
    <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
    <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp02.riu.edu.ar/saml2/idp/SSOService.php"/>
  </md:IDPSSODescriptor>
  <md:Organization>
    <md:OrganizationName xml:lang="en">Federacion - Asociacion Redes de Interconexion Universitaria</md:OrganizationName>
    <md:OrganizationName xml:lang="es">Federacion - Asociacion Redes de Interconexion Universitaria</md:OrganizationName>
    <md:OrganizationDisplayName xml:lang="en">Federacion - Asociacion Redes de Interconexion Universitaria</md:OrganizationDisplayName>
    <md:OrganizationDisplayName xml:lang="es">Federacion - Asociacion Redes de Interconexion Universitaria</md:OrganizationDisplayName>
    <md:OrganizationURL xml:lang="en">https://www.riu.edu.ar/</md:OrganizationURL>
    <md:OrganizationURL xml:lang="es">https://www.riu.edu.ar/</md:OrganizationURL>
  </md:Organization>
  <md:ContactPerson contactType="technical">
    <md:GivenName>Admin</md:GivenName>
    <md:EmailAddress>mailto:federacion@riu.edu.ar</md:EmailAddress>
  </md:ContactPerson>
</md:EntityDescriptor>

In formato flat per SimpleSAMLphp - da utilizzare se dall'altra parte c'è un'entità che utilizza SimpleSAMLphp

$metadata['https://idp02.riu.edu.ar/saml2/idp/metadata.php'] = array (
  'metadata-set' => 'saml20-idp-remote',
  'entityid' => 'https://idp02.riu.edu.ar/saml2/idp/metadata.php',
  'SingleSignOnService' => 
  array (
    0 => 
    array (
      'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect',
      'Location' => 'https://idp02.riu.edu.ar/saml2/idp/SSOService.php',
    ),
  ),
  'SingleLogoutService' => 
  array (
    0 => 
    array (
      'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect',
      'Location' => 'https://idp02.riu.edu.ar/saml2/idp/SingleLogoutService.php',
    ),
  ),
  'certData' => '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',
  'NameIDFormat' => 'urn:oasis:names:tc:SAML:2.0:nameid-format:transient',
  'OrganizationName' => 
  array (
    'en' => 'Federacion - Asociacion Redes de Interconexion Universitaria',
    'es' => 'Federacion - Asociacion Redes de Interconexion Universitaria',
  ),
  'OrganizationDisplayName' => 
  array (
    'en' => 'Federacion - Asociacion Redes de Interconexion Universitaria',
    'es' => 'Federacion - Asociacion Redes de Interconexion Universitaria',
  ),
  'OrganizationURL' => 
  array (
    'en' => 'https://www.riu.edu.ar/',
    'es' => 'https://www.riu.edu.ar/',
  ),
  'contacts' => 
  array (
    0 => 
    array (
      'emailAddress' => 'mailto:federacion@riu.edu.ar',
      'contactType' => 'technical',
      'givenName' => 'Admin',
    ),
  ),
);

Certificati

Scarica i certificati X509 come file PEM-encoded