Metadati SAML 2.0 SP
Questi sono i metadati che simpleSAMLphp ha generato e che possono essere inviati ai partner fidati per creare una federazione tra siti.
Si possono ottenere i metadati in XML dall'URL dedicata:
Metadati
Metadati SAML 2.0 in formato XML:
<?xml version="1.0"?> <md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://nrenadmin.redclara.net/simplesaml/saml2/sp/metadata.php"> <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> <md:KeyDescriptor use="signing"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate>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</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:KeyDescriptor use="encryption"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate>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</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://nrenadmin.redclara.net/simplesaml/saml2/sp/SingleLogoutService.php"/> <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://nrenadmin.redclara.net/simplesaml/saml2/sp/AssertionConsumerService.php" index="0"/> </md:SPSSODescriptor> <md:ContactPerson contactType="technical"> <md:GivenName>SEG</md:GivenName> <md:SurName>RedCLARA</md:SurName> <md:EmailAddress>seg@redclara.net</md:EmailAddress> </md:ContactPerson> </md:EntityDescriptor>
In formato flat per simpleSAMLphp - da utilizzare se dall'altra parte c'è un'entità che utilizza simpleSAMLphp
$metadata['https://nrenadmin.redclara.net/simplesaml/saml2/sp/metadata.php'] = array ( 'metadata-set' => 'saml20-sp-remote', 'entityid' => 'https://nrenadmin.redclara.net/simplesaml/saml2/sp/metadata.php', 'AssertionConsumerService' => 'https://nrenadmin.redclara.net/simplesaml/saml2/sp/AssertionConsumerService.php', 'SingleLogoutService' => 'https://nrenadmin.redclara.net/simplesaml/saml2/sp/SingleLogoutService.php', 'NameIDFormat' => 'urn:oasis:names:tc:SAML:2.0:nameid-format:transient', 'certData' => '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', );