API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Aug 28th, 2015
21
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 5.35 KB | None | 0 0
raw download clone embed print report
  1. <?xml version="1.0" encoding="UTF-8"?>
  2. <!--
  3. This is example metadata only. Do *NOT* supply it as is without review,
  4. and do *NOT* provide it in real time to your partners.
  5.  
  6. This metadata is not dynamic - it will not change as your configuration changes.
  7. -->
  8. <EntityDescriptor xmlns="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" xmlns:xml="http://www.w3.org/XML/1998/namespace" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" entityID="https://example.com/idp/shibboleth">
  9.  
  10. <IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0">
  11.  
  12. <Extensions>
  13. <shibmd:Scope regexp="false">example.com</shibmd:Scope>
  14. <!--
  15. Fill in the details for your IdP here
  16. -->
  17. <mdui:UIInfo>
  18. <mdui:DisplayName xml:lang="en"> DEV IdP</mdui:DisplayName>
  19. <mdui:Description xml:lang="en">Development IdP for .</mdui:Description>
  20. <mdui:Logo height="HeightInPixels" width="WidthInPixels">http://example.com/Path/To/Logo.png</mdui:Logo>
  21. </mdui:UIInfo>
  22. </Extensions>
  23.  
  24. <KeyDescriptor use="signing">
  25. <ds:KeyInfo>
  26. <ds:X509Data>
  27. <ds:X509Certificate>
  28.  
  29. </ds:X509Certificate>
  30. </ds:X509Data>
  31. </ds:KeyInfo>
  32.  
  33. </KeyDescriptor>
  34. <KeyDescriptor use="signing">
  35. <ds:KeyInfo>
  36. <ds:X509Data>
  37. <ds:X509Certificate>
  38.  
  39. </ds:X509Certificate>
  40. </ds:X509Data>
  41. </ds:KeyInfo>
  42.  
  43. </KeyDescriptor>
  44. <KeyDescriptor use="encryption">
  45. <ds:KeyInfo>
  46. <ds:X509Data>
  47. <ds:X509Certificate>
  48.  
  49. </ds:X509Certificate>
  50. </ds:X509Data>
  51. </ds:KeyInfo>
  52.  
  53. </KeyDescriptor>
  54.  
  55. <ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="http://example.com:8080/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/>
  56. <ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="http://example.com:8080/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/>
  57.  
  58. <!--
  59. <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://example.com/idp/profile/SAML2/Redirect/SLO"/>
  60. <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://example.com/idp/profile/SAML2/POST/SLO"/>
  61. <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://example.com/idp/profile/SAML2/POST-SimpleSign/SLO"/>
  62. <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="http://example.com:8080/idp/profile/SAML2/SOAP/SLO"/>
  63. -->
  64.  
  65. <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</NameIDFormat>
  66.  
  67. <SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="http://example.com:8080/idp/profile/Shibboleth/SSO"/>
  68. <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="http://example.com:8080/idp/profile/SAML2/POST/SSO"/>
  69. <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="http://example.com:8080/idp/profile/SAML2/POST-SimpleSign/SSO"/>
  70. <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="http://example.com:8080/idp/profile/SAML2/Redirect/SSO"/>
  71.  
  72. </IDPSSODescriptor>
  73.  
  74.  
  75. <AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol">
  76.  
  77. <Extensions>
  78. <shibmd:Scope regexp="false">example.com</shibmd:Scope>
  79. </Extensions>
  80.  
  81. <KeyDescriptor use="signing">
  82. <ds:KeyInfo>
  83. <ds:X509Data>
  84. <ds:X509Certificate>
  85.  
  86. </ds:X509Certificate>
  87. </ds:X509Data>
  88. </ds:KeyInfo>
  89.  
  90. </KeyDescriptor>
  91. <KeyDescriptor use="signing">
  92. <ds:KeyInfo>
  93. <ds:X509Data>
  94. <ds:X509Certificate>
  95.  
  96. </ds:X509Certificate>
  97. </ds:X509Data>
  98. </ds:KeyInfo>
  99.  
  100. </KeyDescriptor>
  101. <KeyDescriptor use="encryption">
  102. <ds:KeyInfo>
  103. <ds:X509Data>
  104. <ds:X509Certificate>
  105.  
  106. </ds:X509Certificate>
  107. </ds:X509Data>
  108. </ds:KeyInfo>
  109.  
  110. </KeyDescriptor>
  111.  
  112. <AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="http://example.com:8080/idp/profile/SAML1/SOAP/AttributeQuery"/>
  113. <AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="http://example.com:8080/idp/profile/SAML2/SOAP/AttributeQuery"/>
  114. <!-- If you uncomment the above you should add urn:oasis:names:tc:SAML:2.0:protocol to the protocolSupportEnumeration above -->
  115.  
  116. </AttributeAuthorityDescriptor>
  117.  
  118. </EntityDescriptor>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!