SAML 2.0 IdP Metadata

SimpleSAMLphp har har genererat följande metadata. För att sätta upp en betrodd federation kan du skicka metadata till de parter du har förtroende för.

Du kan hämta metadata i XML-format på dedicerad URL:

https://saml.esciencecenter.nl/saml2/idp/metadata.php

Metadata

I SAML 2.0 Metadata XML-format:

<?xml version="1.0"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://saml.esciencecenter.nl/saml2/idp/metadata.php">
  <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
    <md:Extensions>
      <mdui:UIInfo xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui">
        <mdui:DisplayName xml:lang="en">Netherlands eScience Center</mdui:DisplayName>
        <mdui:DisplayName xml:lang="nl">Netherlands eScience Center</mdui:DisplayName>
        <mdui:Description xml:lang="en">IdP for NLeSC</mdui:Description>
        <mdui:Description xml:lang="nl">IdP voor NLeSC</mdui:Description>
        <mdui:Keywords xml:lang="en">netherlands esciencecenter escience center nlesc</mdui:Keywords>
        <mdui:Keywords xml:lang="nl">netherlands esciencecenter escience center nlesc</mdui:Keywords>
      </mdui:UIInfo>
    </md:Extensions>
    <md:KeyDescriptor use="signing">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:KeyDescriptor use="encryption">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://saml.esciencecenter.nl/saml2/idp/SingleLogoutService.php"/>
    <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
    <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://saml.esciencecenter.nl/saml2/idp/SSOService.php"/>
  </md:IDPSSODescriptor>
  <md:Organization>
    <md:OrganizationName xml:lang="en">Netherlands eScience Center</md:OrganizationName>
    <md:OrganizationName xml:lang="nl">Netherlands eScience Center</md:OrganizationName>
    <md:OrganizationDisplayName xml:lang="en">Netherlands eScience Center</md:OrganizationDisplayName>
    <md:OrganizationDisplayName xml:lang="nl">Netherlands eScience Center</md:OrganizationDisplayName>
    <md:OrganizationURL xml:lang="en">http://www.esciencecenter.nl/</md:OrganizationURL>
  </md:Organization>
  <md:ContactPerson contactType="technical">
    <md:GivenName>ProcoliX</md:GivenName>
    <md:EmailAddress>beheer@procolix.com</md:EmailAddress>
  </md:ContactPerson>
</md:EntityDescriptor>

I filformatet för simpleSAML, använd detta detta format om SimpleSAMLphp används i mottagende sida:

$metadata['https://saml.esciencecenter.nl/saml2/idp/metadata.php'] = array (
  'metadata-set' => 'saml20-idp-remote',
  'entityid' => 'https://saml.esciencecenter.nl/saml2/idp/metadata.php',
  'SingleSignOnService' => 
  array (
    0 => 
    array (
      'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect',
      'Location' => 'https://saml.esciencecenter.nl/saml2/idp/SSOService.php',
    ),
  ),
  'SingleLogoutService' => 
  array (
    0 => 
    array (
      'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect',
      'Location' => 'https://saml.esciencecenter.nl/saml2/idp/SingleLogoutService.php',
    ),
  ),
  'certData' => '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',
  'NameIDFormat' => 'urn:oasis:names:tc:SAML:2.0:nameid-format:transient',
  'OrganizationName' => 
  array (
    'en' => 'Netherlands eScience Center',
    'nl' => 'Netherlands eScience Center',
  ),
  'OrganizationDisplayName' => 
  array (
    'en' => 'Netherlands eScience Center',
    'nl' => 'Netherlands eScience Center',
  ),
  'OrganizationURL' => 
  array (
    'en' => 'http://www.esciencecenter.nl/',
  ),
  'UIInfo' => 
  array (
    'DisplayName' => 
    array (
      'en' => 'Netherlands eScience Center',
      'nl' => 'Netherlands eScience Center',
    ),
    'Description' => 
    array (
      'en' => 'IdP for NLeSC',
      'nl' => 'IdP voor NLeSC',
    ),
    'Keywords' => 
    array (
      'en' => 
      array (
        0 => 'netherlands',
        1 => 'esciencecenter',
        2 => 'escience',
        3 => 'center',
        4 => 'nlesc',
      ),
      'nl' => 
      array (
        0 => 'netherlands',
        1 => 'esciencecenter',
        2 => 'escience',
        3 => 'center',
        4 => 'nlesc',
      ),
    ),
  ),
  'contacts' => 
  array (
    0 => 
    array (
      'emailAddress' => 'beheer@procolix.com',
      'contactType' => 'technical',
      'givenName' => 'ProcoliX',
    ),
  ),
);

Certifikat

Hämta X509-certifikaten som PEM-kodade filer.

idp.crt