Afrikaans | Čeština | Dansk | Deutsch | ελληνικά | English | Español | eesti keel | Euskara | Suomeksi | Français | עִבְרִית | Hrvatski | Magyar | Bahasa Indonesia | Italiano | 日本語 | Lëtzebuergesch | Lietuvių kalba | Latviešu | Nederlands | Nynorsk | Bokmål | Język polski | Português | Português brasileiro | Românește | русский язык | Sámegiella | Slovenščina | Srpski | Svenska | Türkçe | 简体中文 | 繁體中文

SAML 2.0 IdP metadata

Her er metadata som SimpleSAMLphp har generert for deg. Du må utveksle metadata med de partene du stoler på for å sette opp en føderasjon.

Du kan nå metadata i XML-format på en dedikert URL:

https://idp02.riu.edu.ar/saml2/idp/metadata.php

Metadata

I SAML 2.0 Metadata XML Format:

<?xml version="1.0"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://idp02.riu.edu.ar/saml2/idp/metadata.php" ID="pfx2fe794ce-b510-d00e-3c5d-75f494911067"><ds:Signature>
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
  <ds:Reference URI="#pfx2fe794ce-b510-d00e-3c5d-75f494911067"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/><ds:DigestValue>xVwmk2uOR7DVDUKKQvYdbuTDeMIgZgCfLyR+1kler1o=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>jjTyjdA2Px2j85r6WRZWZgybq8l0f0OB0ancRUwu6iQ6ukM4lYpiFVDDRvYwaw7oSHjWbCAt/DPmMIuKY0+ytZKApu+j+s7974p3oLgVOF3gR1axsQS1S9TAXnPxB8hoFbj9atUDtsicZitCuowyXCnaNytqfYT6iprnRkzkg0U70WVDa1i9RF85P7U6WjKXW6qjSGn3DbfjrdiQbP1nVFaUq3NWICwmg13FNZHaYEtSkkIEGTeCsUM1UjNLONUKhTvKwwJOtK7HDP3kVJSCn+4r84ze7dlobw4sIafazCj+RizCzOmDMnA3kc4BLH3XNUyO+3jITXgxrscNbnO2MA==</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
    <md:KeyDescriptor use="signing">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:KeyDescriptor use="encryption">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp02.riu.edu.ar/saml2/idp/SingleLogoutService.php"/>
    <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
    <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp02.riu.edu.ar/saml2/idp/SSOService.php"/>
  </md:IDPSSODescriptor>
  <md:Organization>
    <md:OrganizationName xml:lang="en">Federacion - Asociacion Redes de Interconexion Universitaria</md:OrganizationName>
    <md:OrganizationName xml:lang="es">Federacion - Asociacion Redes de Interconexion Universitaria</md:OrganizationName>
    <md:OrganizationDisplayName xml:lang="en">Federacion - Asociacion Redes de Interconexion Universitaria</md:OrganizationDisplayName>
    <md:OrganizationDisplayName xml:lang="es">Federacion - Asociacion Redes de Interconexion Universitaria</md:OrganizationDisplayName>
    <md:OrganizationURL xml:lang="en">https://www.riu.edu.ar/</md:OrganizationURL>
    <md:OrganizationURL xml:lang="es">https://www.riu.edu.ar/</md:OrganizationURL>
  </md:Organization>
  <md:ContactPerson contactType="technical">
    <md:GivenName>Admin</md:GivenName>
    <md:EmailAddress>mailto:federacion@riu.edu.ar</md:EmailAddress>
  </md:ContactPerson>
</md:EntityDescriptor>

I SimpleSAMLphp format - bruk denne dersom du benytter SimpleSAMLphp i den andre enden:

$metadata['https://idp02.riu.edu.ar/saml2/idp/metadata.php'] = array (
  'metadata-set' => 'saml20-idp-remote',
  'entityid' => 'https://idp02.riu.edu.ar/saml2/idp/metadata.php',
  'SingleSignOnService' => 
  array (
    0 => 
    array (
      'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect',
      'Location' => 'https://idp02.riu.edu.ar/saml2/idp/SSOService.php',
    ),
  ),
  'SingleLogoutService' => 
  array (
    0 => 
    array (
      'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect',
      'Location' => 'https://idp02.riu.edu.ar/saml2/idp/SingleLogoutService.php',
    ),
  ),
  'certData' => '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',
  'NameIDFormat' => 'urn:oasis:names:tc:SAML:2.0:nameid-format:transient',
  'OrganizationName' => 
  array (
    'en' => 'Federacion - Asociacion Redes de Interconexion Universitaria',
    'es' => 'Federacion - Asociacion Redes de Interconexion Universitaria',
  ),
  'OrganizationDisplayName' => 
  array (
    'en' => 'Federacion - Asociacion Redes de Interconexion Universitaria',
    'es' => 'Federacion - Asociacion Redes de Interconexion Universitaria',
  ),
  'OrganizationURL' => 
  array (
    'en' => 'https://www.riu.edu.ar/',
    'es' => 'https://www.riu.edu.ar/',
  ),
  'contacts' => 
  array (
    0 => 
    array (
      'emailAddress' => 'mailto:federacion@riu.edu.ar',
      'contactType' => 'technical',
      'givenName' => 'Admin',
    ),
  ),
);

Sertifikater

Last ned X509-sertifikatene som PEM-filer.