SAML 2.0 IdP - Metadane

Tutaj sa metadane, które SimpleSAMLphp wygenerował dla Ciebie. Możesz je wysłać zaufanym partnerom w celu stworzenia zaufanej federacji.

Możesz pobrać metadane w formacie xml:

https://saml.esciencecenter.nl/saml2/idp/metadata.php

Metadane

W formacie SAML 2.0 Metadata XML

<?xml version="1.0"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://saml.esciencecenter.nl/saml2/idp/metadata.php">
  <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
    <md:Extensions>
      <mdui:UIInfo xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui">
        <mdui:DisplayName xml:lang="en">Netherlands eScience Center</mdui:DisplayName>
        <mdui:DisplayName xml:lang="nl">Netherlands eScience Center</mdui:DisplayName>
        <mdui:Description xml:lang="en">IdP for NLeSC</mdui:Description>
        <mdui:Description xml:lang="nl">IdP voor NLeSC</mdui:Description>
        <mdui:Keywords xml:lang="en">netherlands esciencecenter escience center nlesc</mdui:Keywords>
        <mdui:Keywords xml:lang="nl">netherlands esciencecenter escience center nlesc</mdui:Keywords>
      </mdui:UIInfo>
    </md:Extensions>
    <md:KeyDescriptor use="signing">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>MIIFETCCA/mgAwIBAgIRAP4F4Mdpb96kZMcyWOld/6cwDQYJKoZIhvcNAQEFBQAwczELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4GA1UEBxMHU2FsZm9yZDEaMBgGA1UEChMRQ09NT0RPIENBIExpbWl0ZWQxGTAXBgNVBAMTEFBvc2l0aXZlU1NMIENBIDIwHhcNMTMxMjEzMDAwMDAwWhcNMTYxMjEyMjM1OTU5WjBgMSEwHwYDVQQLExhEb21haW4gQ29udHJvbCBWYWxpZGF0ZWQxHTAbBgNVBAsTFFBvc2l0aXZlU1NMIFdpbGRjYXJkMRwwGgYDVQQDFBMqLmVzY2llbmNlY2VudGVyLm5sMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtuSOklI54TbHLPNrDngZyfStrq6wTO+M7DQ1Zm+Ogt3xOh5KemCBoR0TUBzk51lDns2sV+k3pBhUUckfO1Uo9ozvpGFbLB5uaQ7XNnLjDNxcKAHC70IIou/Im9zIhU+5hMLzsPUDZJrSDg7RrRMmtRO7WNRTYytMhEc5rrrBTtrMgs2K4+Y04Q/loVSNpPMJQepiv/u5iXYvNANFCK3X/IfUCvYCQemkIXxrOAXzA/16b3B7c/Gy3chiglKJ57OWwMm8m5EqEqYU76/CZQhdOXbqKPouwT5hisAK6q5DKderZT/CsKN55b+gSARhIY9QsMaNwY73ldC23XfiYmKNcwIDAQABo4IBsTCCAa0wHwYDVR0jBBgwFoAUmeRAX2sUXj4F2d3TY1T8Yrj3AKwwHQYDVR0OBBYEFKZQoWnsquvMK4IwUMd5ALArJuHBMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBQBgNVHSAESTBHMDsGCysGAQQBsjEBAgIHMCwwKgYIKwYBBQUHAgEWHmh0dHA6Ly93d3cucG9zaXRpdmVzc2wuY29tL0NQUzAIBgZngQwBAgEwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5jb21vZG9jYS5jb20vUG9zaXRpdmVTU0xDQTIuY3JsMGwGCCsGAQUFBwEBBGAwXjA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5jb21vZG9jYS5jb20vUG9zaXRpdmVTU0xDQTIuY3J0MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5jb21vZG9jYS5jb20wMQYDVR0RBCowKIITKi5lc2NpZW5jZWNlbnRlci5ubIIRZXNjaWVuY2VjZW50ZXIubmwwDQYJKoZIhvcNAQEFBQADggEBAEejdHrndxAahT1IJuArmqHVQrB+UVbjSRk1VsQCQf1o3S9yspdUKFcyFizpW+HaF5i6A/58qBMdwG/kKpTfZADLXxMdYUQoK/+G9Goj8dpa1iSE6kOrK8K6IX6pZbY6Y6EVuHkw3aLj++oYGRdFTv6xpOvvZwsUHeyHXAHfe7TvfV2OT2qcK4g8UIcuRtOC8X8EpIREjRWzO3ovwXHm2tj5OrpxE9IFsqwvlT8UGU5K9D93HbXdoryHL4aHZgUSU4U/QtNjoypV9ZBJsgTHIf984uhAaX94qey3t0FLFClk4+jwZYEZ9MfZDpmqF8CCrmZTdLY69rw/WwHYupS1ePg=</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:KeyDescriptor use="encryption">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://saml.esciencecenter.nl/saml2/idp/SingleLogoutService.php"/>
    <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
    <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://saml.esciencecenter.nl/saml2/idp/SSOService.php"/>
  </md:IDPSSODescriptor>
  <md:Organization>
    <md:OrganizationName xml:lang="en">Netherlands eScience Center</md:OrganizationName>
    <md:OrganizationName xml:lang="nl">Netherlands eScience Center</md:OrganizationName>
    <md:OrganizationDisplayName xml:lang="en">Netherlands eScience Center</md:OrganizationDisplayName>
    <md:OrganizationDisplayName xml:lang="nl">Netherlands eScience Center</md:OrganizationDisplayName>
    <md:OrganizationURL xml:lang="en">http://www.esciencecenter.nl/</md:OrganizationURL>
  </md:Organization>
  <md:ContactPerson contactType="technical">
    <md:GivenName>ProcoliX</md:GivenName>
    <md:EmailAddress>mailto:beheer@procolix.com</md:EmailAddress>
  </md:ContactPerson>
</md:EntityDescriptor>

In SimpleSAMLphp flat file format - use this if you are using a SimpleSAMLphp entity on the other side:

$metadata['https://saml.esciencecenter.nl/saml2/idp/metadata.php'] = [
    'metadata-set' => 'saml20-idp-remote',
    'entityid' => 'https://saml.esciencecenter.nl/saml2/idp/metadata.php',
    'SingleSignOnService' => [
        [
            'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect',
            'Location' => 'https://saml.esciencecenter.nl/saml2/idp/SSOService.php',
        ],
    ],
    'SingleLogoutService' => [
        [
            'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect',
            'Location' => 'https://saml.esciencecenter.nl/saml2/idp/SingleLogoutService.php',
        ],
    ],
    'certData' => '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',
    'NameIDFormat' => 'urn:oasis:names:tc:SAML:2.0:nameid-format:transient',
    'OrganizationName' => [
        'en' => 'Netherlands eScience Center',
        'nl' => 'Netherlands eScience Center',
    ],
    'OrganizationDisplayName' => [
        'en' => 'Netherlands eScience Center',
        'nl' => 'Netherlands eScience Center',
    ],
    'OrganizationURL' => [
        'en' => 'http://www.esciencecenter.nl/',
    ],
    'UIInfo' => [
        'DisplayName' => [
            'en' => 'Netherlands eScience Center',
            'nl' => 'Netherlands eScience Center',
        ],
        'Description' => [
            'en' => 'IdP for NLeSC',
            'nl' => 'IdP voor NLeSC',
        ],
        'Keywords' => [
            'en' => [
                'netherlands',
                'esciencecenter',
                'escience',
                'center',
                'nlesc',
            ],
            'nl' => [
                'netherlands',
                'esciencecenter',
                'escience',
                'center',
                'nlesc',
            ],
        ],
    ],
    'contacts' => [
        [
            'emailAddress' => 'beheer@procolix.com',
            'contactType' => 'technical',
            'givenName' => 'ProcoliX',
        ],
    ],
];

Certificates

Download the X509 certificates as PEM-encoded files.

idp.crt