SHARE
TWEET

Untitled

a guest Aug 28th, 2015 3 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. <?xml version="1.0" encoding="UTF-8"?>
  2. <!--
  3.      This is example metadata only. Do *NOT* supply it as is without review,
  4.      and do *NOT* provide it in real time to your partners.
  5.  
  6.      This metadata is not dynamic - it will not change as your configuration changes.
  7. -->
  8. <EntityDescriptor  xmlns="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" xmlns:xml="http://www.w3.org/XML/1998/namespace" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" entityID="https://example.com/idp/shibboleth">
  9.  
  10.     <IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0">
  11.  
  12.         <Extensions>
  13.             <shibmd:Scope regexp="false">example.com</shibmd:Scope>
  14. <!--
  15.     Fill in the details for your IdP here
  16. -->
  17.             <mdui:UIInfo>
  18.                 <mdui:DisplayName xml:lang="en"> DEV IdP</mdui:DisplayName>
  19.                 <mdui:Description xml:lang="en">Development IdP for .</mdui:Description>
  20.                 <mdui:Logo height="HeightInPixels" width="WidthInPixels">http://example.com/Path/To/Logo.png</mdui:Logo>
  21.             </mdui:UIInfo>
  22.         </Extensions>
  23.  
  24.         <KeyDescriptor use="signing">
  25.             <ds:KeyInfo>
  26.                     <ds:X509Data>
  27.                         <ds:X509Certificate>
  28.  
  29.                         </ds:X509Certificate>
  30.                     </ds:X509Data>
  31.             </ds:KeyInfo>
  32.  
  33.         </KeyDescriptor>
  34.         <KeyDescriptor use="signing">
  35.             <ds:KeyInfo>
  36.                     <ds:X509Data>
  37.                         <ds:X509Certificate>
  38.  
  39.                         </ds:X509Certificate>
  40.                     </ds:X509Data>
  41.             </ds:KeyInfo>
  42.  
  43.         </KeyDescriptor>
  44.         <KeyDescriptor use="encryption">
  45.             <ds:KeyInfo>
  46.                     <ds:X509Data>
  47.                         <ds:X509Certificate>
  48.  
  49.                         </ds:X509Certificate>
  50.                     </ds:X509Data>
  51.             </ds:KeyInfo>
  52.  
  53.         </KeyDescriptor>
  54.  
  55.         <ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="http://example.com:8080/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/>
  56.         <ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="http://example.com:8080/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/>
  57.  
  58.         <!--
  59.         <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://example.com/idp/profile/SAML2/Redirect/SLO"/>
  60.         <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://example.com/idp/profile/SAML2/POST/SLO"/>
  61.         <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://example.com/idp/profile/SAML2/POST-SimpleSign/SLO"/>
  62.         <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="http://example.com:8080/idp/profile/SAML2/SOAP/SLO"/>
  63.         -->
  64.  
  65.         <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</NameIDFormat>
  66.  
  67.         <SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="http://example.com:8080/idp/profile/Shibboleth/SSO"/>
  68.         <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="http://example.com:8080/idp/profile/SAML2/POST/SSO"/>
  69.         <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="http://example.com:8080/idp/profile/SAML2/POST-SimpleSign/SSO"/>
  70.         <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="http://example.com:8080/idp/profile/SAML2/Redirect/SSO"/>
  71.  
  72.     </IDPSSODescriptor>
  73.  
  74.  
  75.     <AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol">
  76.  
  77.         <Extensions>
  78.             <shibmd:Scope regexp="false">example.com</shibmd:Scope>
  79.         </Extensions>
  80.  
  81.         <KeyDescriptor use="signing">
  82.             <ds:KeyInfo>
  83.                     <ds:X509Data>
  84.                         <ds:X509Certificate>
  85.  
  86.                         </ds:X509Certificate>
  87.                     </ds:X509Data>
  88.             </ds:KeyInfo>
  89.  
  90.         </KeyDescriptor>
  91.         <KeyDescriptor use="signing">
  92.             <ds:KeyInfo>
  93.                     <ds:X509Data>
  94.                         <ds:X509Certificate>
  95.  
  96.                         </ds:X509Certificate>
  97.                     </ds:X509Data>
  98.             </ds:KeyInfo>
  99.  
  100.         </KeyDescriptor>
  101.         <KeyDescriptor use="encryption">
  102.             <ds:KeyInfo>
  103.                     <ds:X509Data>
  104.                         <ds:X509Certificate>
  105.  
  106.                         </ds:X509Certificate>
  107.                     </ds:X509Data>
  108.             </ds:KeyInfo>
  109.  
  110.         </KeyDescriptor>
  111.  
  112.         <AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="http://example.com:8080/idp/profile/SAML1/SOAP/AttributeQuery"/>
  113.         <AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="http://example.com:8080/idp/profile/SAML2/SOAP/AttributeQuery"/>
  114.         <!-- If you uncomment the above you should add urn:oasis:names:tc:SAML:2.0:protocol to the protocolSupportEnumeration above -->
  115.  
  116.     </AttributeAuthorityDescriptor>
  117.  
  118. </EntityDescriptor>
RAW Paste Data
Top