SAML 2.0 IdP Metadata
Here is the metadata that simpleSAMLphp has generated for you. You may send this metadata document to trusted partners to setup a trusted federation.
You can get the metadata xml on a dedicated URL:
Metadata
In SAML 2.0 Metadata XML format:
<?xml version="1.0"?>
<EntityDescriptor xmlns="urn:oasis:names:tc:SAML:2.0:metadata" entityID="http://sso.hfu.edu.tw/simplesaml/saml2/idp/metadata.php">
<IDPSSODescriptor xmlns:ds="http://www.w3.org/2000/09/xmldsig#" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
<KeyDescriptor use="signing">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</KeyDescriptor>
<KeyDescriptor use="encryption">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</KeyDescriptor>
<SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="http://sso.hfu.edu.tw/simplesaml/saml2/idp/SingleLogoutService.php"/>
<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="http://sso.hfu.edu.tw/simplesaml/saml2/idp/SSOService.php"/>
</IDPSSODescriptor>
<ContactPerson contactType="technical">
<SurName>nss</SurName>
<EmailAddress>nss@cc.hfu.edu.tw</EmailAddress>
</ContactPerson>
</EntityDescriptor>
In simpleSAMLphp flat file format - use this if you are using a simpleSAMLphp entity on the other side:
$metadata['http://sso.hfu.edu.tw/simplesaml/saml2/idp/metadata.php'] = array ( 'SingleSignOnService' => 'http://sso.hfu.edu.tw/simplesaml/saml2/idp/SSOService.php', 'SingleLogoutService' => 'http://sso.hfu.edu.tw/simplesaml/saml2/idp/SingleLogoutService.php', 'certFingerprint' => 'c8a5eec72fed05f3154f20405437f52ece8f7772', 'NameIDFormat' => 'urn:oasis:names:tc:SAML:2.0:nameid-format:transient', );
Copyright © 2007-2009 Feide RnD