SAML 2.0 IdP Metadata
Here is the metadata that simpleSAMLphp has generated for you. You may send this metadata document to trusted partners to setup a trusted federation.
You can get the metadata xml on a dedicated URL:
Metadata
In SAML 2.0 Metadata XML format:
<?xml version="1.0"?> <EntityDescriptor xmlns="urn:oasis:names:tc:SAML:2.0:metadata" entityID="http://sso.hfu.edu.tw/simplesaml/saml2/idp/metadata.php"> <IDPSSODescriptor xmlns:ds="http://www.w3.org/2000/09/xmldsig#" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> <KeyDescriptor use="signing"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate>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</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </KeyDescriptor> <KeyDescriptor use="encryption"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate>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</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </KeyDescriptor> <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="http://sso.hfu.edu.tw/simplesaml/saml2/idp/SingleLogoutService.php"/> <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat> <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="http://sso.hfu.edu.tw/simplesaml/saml2/idp/SSOService.php"/> </IDPSSODescriptor> <ContactPerson contactType="technical"> <SurName>nss</SurName> <EmailAddress>nss@cc.hfu.edu.tw</EmailAddress> </ContactPerson> </EntityDescriptor>
In simpleSAMLphp flat file format - use this if you are using a simpleSAMLphp entity on the other side:
$metadata['http://sso.hfu.edu.tw/simplesaml/saml2/idp/metadata.php'] = array ( 'SingleSignOnService' => 'http://sso.hfu.edu.tw/simplesaml/saml2/idp/SSOService.php', 'SingleLogoutService' => 'http://sso.hfu.edu.tw/simplesaml/saml2/idp/SingleLogoutService.php', 'certFingerprint' => 'c8a5eec72fed05f3154f20405437f52ece8f7772', 'NameIDFormat' => 'urn:oasis:names:tc:SAML:2.0:nameid-format:transient', );
Copyright © 2007-2009 Feide RnD