SAML 2.0 IdP Metadata
SimpleSAMLphp har har genererat följande metadata. För att sätta upp en betrodd federation kan du skicka metadata till de parter du har förtroende för.
Du kan hämta metadata i XML-format på dedicerad URL:
https://idp.ucv.ro/simplesaml/saml2/idp/metadata.php
Metadata
I SAML 2.0 Metadata XML-format:
<?xml version="1.0"?> <md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://idp.ucv.ro/simplesaml/saml2/idp/metadata.php"> <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> <md:KeyDescriptor use="signing"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate>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</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:KeyDescriptor use="encryption"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate>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</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp.ucv.ro/simplesaml/saml2/idp/SingleLogoutService.php"/> <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp.ucv.ro/simplesaml/saml2/idp/SSOService.php"/> </md:IDPSSODescriptor> <md:ContactPerson contactType="technical"> <md:GivenName>Administrator</md:GivenName> <md:EmailAddress>mailto:it@ucv.ro</md:EmailAddress> </md:ContactPerson> </md:EntityDescriptor>
I filformatet för simpleSAML, använd detta detta format om SimpleSAMLphp används i mottagende sida:
$metadata['https://idp.ucv.ro/simplesaml/saml2/idp/metadata.php'] = [ 'metadata-set' => 'saml20-idp-remote', 'entityid' => 'https://idp.ucv.ro/simplesaml/saml2/idp/metadata.php', 'SingleSignOnService' => [ [ 'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', 'Location' => 'https://idp.ucv.ro/simplesaml/saml2/idp/SSOService.php', ], ], 'SingleLogoutService' => [ [ 'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', 'Location' => 'https://idp.ucv.ro/simplesaml/saml2/idp/SingleLogoutService.php', ], ], 'certData' => 'MIIDAjCCAmugAwIBAgIJAJ3dMqHUVgjrMA0GCSqGSIb3DQEBBQUAMIGZMRMwEQYDVQQDDApzcC4xd2ViLnJvMQswCQYDVQQGEwJSTzENMAsGA1UECAwERG9sajEQMA4GA1UEBwwHQ3JhaW92YTEeMBwGA1UECgwVVW5pdmVyc2l0eSBvZiBDcmFpb3ZhMRowGAYDVQQLDBFDZW50cnVsIGRlIENhbGN1bDEYMBYGCSqGSIb3DQEJARYJaXRAdWN2LnJvMB4XDTE2MDEyMjExMDQ1N1oXDTE3MDEyMTExMDQ1N1owgZkxEzARBgNVBAMMCnNwLjF3ZWIucm8xCzAJBgNVBAYTAlJPMQ0wCwYDVQQIDAREb2xqMRAwDgYDVQQHDAdDcmFpb3ZhMR4wHAYDVQQKDBVVbml2ZXJzaXR5IG9mIENyYWlvdmExGjAYBgNVBAsMEUNlbnRydWwgZGUgQ2FsY3VsMRgwFgYJKoZIhvcNAQkBFglpdEB1Y3Yucm8wgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBALRHXqI9LxEzGda8wI1BeqU6ModyolgsaWVltpubbOxyeEaHmguxmj4wirAxjLjHgpeYXLvfdvGjLn08u+/SujsotIY6VVSooc/dMScM3QQuuzbEXtexsEclE4ZaaMyQaFM390J5viUX9YU2twutqCabUq+N/boe5/jfe/NCXGxVAgMBAAGjUDBOMB0GA1UdDgQWBBT2z+zuEWAt+u+hhq/7tI7QwddMsTAfBgNVHSMEGDAWgBT2z+zuEWAt+u+hhq/7tI7QwddMsTAMBgNVHRMEBTADAQH/MA0GCSqGSIb3DQEBBQUAA4GBAAoU4HfxRConvNmOl/cvu23wp+jvpgh2W7iV0zB915RJk+ieQRR9xxvCp242hxmrwonjDyYJgeEKuL9qq3xZYWIP2xLNKS4TYZDbiPeWILZ6p4pLyJQQ6oNMYSemvZs9+9KSKtUbwErgd27wvFNL9pUz95yZ+UfM+RFqSZ0rJnCC', 'NameIDFormat' => 'urn:oasis:names:tc:SAML:2.0:nameid-format:transient', 'contacts' => [ [ 'emailAddress' => 'it@ucv.ro', 'contactType' => 'technical', 'givenName' => 'Administrator', ], ], ];
Certifikat
Hämta X509-certifikaten som PEM-kodade filer.