SAML 2.0 IdP Metapodatki
Tu so metapodatki, ki jih je generiral SimpleSAMLphp. Dokument lahko pošljete zaupanja vrednim partnerjem, s katerimi boste ustvarili federacijo.
XML metapodatki se nahajajo na tem naslovu:
https://sso.ytl.jp/simplesaml/saml2/idp/metadata.php
Metapodatki
V SAML 2.0 Metapodatkovni XML format:
<?xml version="1.0"?> <md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://sso.ytl.jp/simplesaml/saml2/idp/metadata.php"> <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> <md:KeyDescriptor use="signing"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate>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</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:KeyDescriptor use="encryption"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate>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</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://sso.ytl.jp/simplesaml/saml2/idp/SingleLogoutService.php"/> <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://sso.ytl.jp/simplesaml/saml2/idp/SSOService.php"/> </md:IDPSSODescriptor> </md:EntityDescriptor>
V SimpleSAMLphp "flat file" formatu - ta format uporabite, če uporabljate SimpleSAMLphp entiteto na drugi strani:
$metadata['https://sso.ytl.jp/simplesaml/saml2/idp/metadata.php'] = [ 'metadata-set' => 'saml20-idp-remote', 'entityid' => 'https://sso.ytl.jp/simplesaml/saml2/idp/metadata.php', 'SingleSignOnService' => [ [ 'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', 'Location' => 'https://sso.ytl.jp/simplesaml/saml2/idp/SSOService.php', ], ], 'SingleLogoutService' => [ [ 'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', 'Location' => 'https://sso.ytl.jp/simplesaml/saml2/idp/SingleLogoutService.php', ], ], 'certData' => 'MIIDNzCCAh+gAwIBAgIJANd1iy9rdYw4MA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAkpQMQ4wDAYDVQQIDAVUb2t5bzETMBEGA1UEAwwKaWRwMS5sb2NhbDAeFw0yMDAyMjAxNTEzNTNaFw0zMDAyMTkxNTEzNTNaMDIxCzAJBgNVBAYTAkpQMQ4wDAYDVQQIDAVUb2t5bzETMBEGA1UEAwwKaWRwMS5sb2NhbDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM+oqrYHdEWutNK88kM31U4gFwQG0MtXpVQCDo0PeKKUsI+KgESJYbkANquE1zrykJ0gzRVVOCVf6PapZ+Ef1RUppig0HjpDCEC8zbT3fTQ7lzd9j6MiK64XFpc5iu82M+8Dbfl/fIlWSUamIRFVCqQv8xz5WceOGA5ypDoaDDA/yu1eiwuXzzxpdTMTMeP4WtxXuFNRi/wryf6+WcDmgebIFuF69jwO7xeMV5RVHf3BPnvWI6NMVZNgjqkVBY2yGBd8mmG3QSHZ0DDxour4IIF9fxTIPs33ji5HMLDVxgUES0OIqMiRDwJ6W4ewyPopfPY7TCgpQgYkoEKOY6TH82cCAwEAAaNQME4wHQYDVR0OBBYEFKTLf1XGFXl7NjWgAc1MYPTMvCNqMB8GA1UdIwQYMBaAFKTLf1XGFXl7NjWgAc1MYPTMvCNqMAwGA1UdEwQFMAMBAf8wDQYJKoZIhvcNAQELBQADggEBACXXnWYeZh6Gl0+XaEHCupdtRtmZW5fUEbzCamLLVbFcwBXmLkVRWHNaCdxKPBQu04h/pEb67n/PXbPeG7cWDVbNxn+0oK9wPzz5/qnTfbQV/B6C/bcwSqnKxTkAX5GscMHgzHn9gt5x/PzNDCeG47P5N2jbmkFUoJ5ijVNz7+47LEfXlpNOq6CqWk25nRvLqRSw2Ab102U/wAKZR57pMQ4S0SCr7TtJZ11Mq0QdyJyeV45shezbcEH4xYovjc/7mOjpCHW/JE9KRSxAOtTEV1q8LjFW1XZp77cyTFs8vRGsf09nfoIK8jCjG83eCU9eOEhIqzKJTKdLFlSBIATDc3k=', 'NameIDFormat' => 'urn:oasis:names:tc:SAML:2.0:nameid-format:transient', ];
Digitalna potrdila
Prenesi X509 digitalno potrdilo v PEM datoteki.