Metadati SAML 2.0 SP

Questi sono i metadati che SimpleSAMLphp ha generato e che possono essere inviati ai partner fidati per creare una federazione tra siti.

Si possono ottenere i metadati in XML dall'URL dedicata:

https://ssp.labcliq.com/simplesamlphp/module.php/saml/sp/metadata.php/tulane-sp

Metadati

Metadati SAML 2.0 in formato XML:

<?xml version="1.0"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://ssp.labcliq.com/simplesamlphp/module.php/saml/sp/metadata.php/tulane-sp">
  <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol">
    <md:KeyDescriptor use="signing">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:KeyDescriptor use="encryption">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://ssp.labcliq.com/simplesamlphp/module.php/saml/sp/saml2-logout.php/tulane-sp"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://ssp.labcliq.com/simplesamlphp/module.php/saml/sp/saml2-acs.php/tulane-sp" index="0"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://ssp.labcliq.com/simplesamlphp/module.php/saml/sp/saml1-acs.php/tulane-sp" index="1"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://ssp.labcliq.com/simplesamlphp/module.php/saml/sp/saml2-acs.php/tulane-sp" index="2"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://ssp.labcliq.com/simplesamlphp/module.php/saml/sp/saml1-acs.php/tulane-sp/artifact" index="3"/>
    <md:AttributeConsumingService index="0">
      <md:ServiceName xml:lang="en">SafetyStratus-tulane</md:ServiceName>
      <md:ServiceName xml:lang="no">SafetyStratus-tulane</md:ServiceName>
      <md:RequestedAttribute Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="sn"/>
      <md:RequestedAttribute Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="givenName"/>
      <md:RequestedAttribute Name="urn:oid:2.16.840.1.113730.3.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="employeeNumber"/>
      <md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eppn"/>
      <md:RequestedAttribute Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="mail"/>
    </md:AttributeConsumingService>
  </md:SPSSODescriptor>
  <md:ContactPerson contactType="technical">
    <md:GivenName>Administrator</md:GivenName>
    <md:EmailAddress>admin@safetystratus.com</md:EmailAddress>
  </md:ContactPerson>
</md:EntityDescriptor>

In formato flat per SimpleSAMLphp - da utilizzare se dall'altra parte c'è un'entità che utilizza SimpleSAMLphp

$metadata['https://ssp.labcliq.com/simplesamlphp/module.php/saml/sp/metadata.php/tulane-sp'] = array (
  'SingleLogoutService' => 
  array (
    0 => 
    array (
      'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect',
      'Location' => 'https://ssp.labcliq.com/simplesamlphp/module.php/saml/sp/saml2-logout.php/tulane-sp',
    ),
  ),
  'AssertionConsumerService' => 
  array (
    0 => 
    array (
      'index' => 0,
      'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST',
      'Location' => 'https://ssp.labcliq.com/simplesamlphp/module.php/saml/sp/saml2-acs.php/tulane-sp',
    ),
    1 => 
    array (
      'index' => 1,
      'Binding' => 'urn:oasis:names:tc:SAML:1.0:profiles:browser-post',
      'Location' => 'https://ssp.labcliq.com/simplesamlphp/module.php/saml/sp/saml1-acs.php/tulane-sp',
    ),
    2 => 
    array (
      'index' => 2,
      'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact',
      'Location' => 'https://ssp.labcliq.com/simplesamlphp/module.php/saml/sp/saml2-acs.php/tulane-sp',
    ),
    3 => 
    array (
      'index' => 3,
      'Binding' => 'urn:oasis:names:tc:SAML:1.0:profiles:artifact-01',
      'Location' => 'https://ssp.labcliq.com/simplesamlphp/module.php/saml/sp/saml1-acs.php/tulane-sp/artifact',
    ),
  ),
  'name' => 
  array (
    'en' => 'SafetyStratus-tulane',
    'no' => 'SafetyStratus-tulane',
  ),
  'attributes' => 
  array (
    0 => 'urn:oid:2.5.4.4',
    1 => 'urn:oid:2.5.4.42',
    2 => 'urn:oid:2.16.840.1.113730.3.1.3',
    3 => 'urn:oid:1.3.6.1.4.1.5923.1.1.1.6',
    4 => 'urn:oid:0.9.2342.19200300.100.1.3',
  ),
  'attributes.NameFormat' => 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri',
  'contacts' => 
  array (
    0 => 
    array (
      'emailAddress' => 'admin@safetystratus.com',
      'contactType' => 'technical',
      'givenName' => 'Administrator',
    ),
  ),
  'certData' => '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',
);