SAML 2.0 SP Metadata
Here is the metadata that SimpleSAMLphp has generated for you. You may send this metadata document to trusted partners to setup a trusted federation.
You can get the metadata xml on a dedicated URL:
https://aai.pionier.net.pl/test/module.php/saml/sp/metadata.php/default-sp
Metadata
In SAML 2.0 Metadata XML format:
<?xml version="1.0"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://aai.pionier.net.pl/test/module.php/saml/sp/metadata.php/default-sp">
<md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol" AuthnRequestsSigned="true">
<md:Extensions>
<mdui:UIInfo xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui">
<mdui:DisplayName xml:lang="pl">Testowy Service Provider</mdui:DisplayName>
<mdui:DisplayName xml:lang="en">Test Service Provider</mdui:DisplayName>
<mdui:Description xml:lang="pl">Testowy dostawca usługi PIONIER.Id</mdui:Description>
<mdui:PrivacyStatementURL xml:lang="pl">http://aai.pionier.net.pl/index.php?page=test-sp-pp</mdui:PrivacyStatementURL>
</mdui:UIInfo>
</md:Extensions>
<md:KeyDescriptor use="signing">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:KeyDescriptor use="encryption">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://aai.pionier.net.pl/test/module.php/saml/sp/saml2-logout.php/default-sp"/>
<md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://aai.pionier.net.pl/test/module.php/saml/sp/saml2-acs.php/default-sp" index="0"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://aai.pionier.net.pl/test/module.php/saml/sp/saml1-acs.php/default-sp" index="1"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://aai.pionier.net.pl/test/module.php/saml/sp/saml2-acs.php/default-sp" index="2"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://aai.pionier.net.pl/test/module.php/saml/sp/saml1-acs.php/default-sp/artifact" index="3"/>
</md:SPSSODescriptor>
<md:ContactPerson contactType="technical">
<md:GivenName>Administrator</md:GivenName>
<md:EmailAddress>mailto:mgw@umk.pl</md:EmailAddress>
</md:ContactPerson>
</md:EntityDescriptor>
In SimpleSAMLphp flat file format - use this if you are using a SimpleSAMLphp entity on the other side:
$metadata['https://aai.pionier.net.pl/test/module.php/saml/sp/metadata.php/default-sp'] = array (
'SingleLogoutService' =>
array (
0 =>
array (
'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect',
'Location' => 'https://aai.pionier.net.pl/test/module.php/saml/sp/saml2-logout.php/default-sp',
),
),
'AssertionConsumerService' =>
array (
0 =>
array (
'index' => 0,
'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST',
'Location' => 'https://aai.pionier.net.pl/test/module.php/saml/sp/saml2-acs.php/default-sp',
),
1 =>
array (
'index' => 1,
'Binding' => 'urn:oasis:names:tc:SAML:1.0:profiles:browser-post',
'Location' => 'https://aai.pionier.net.pl/test/module.php/saml/sp/saml1-acs.php/default-sp',
),
2 =>
array (
'index' => 2,
'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact',
'Location' => 'https://aai.pionier.net.pl/test/module.php/saml/sp/saml2-acs.php/default-sp',
),
3 =>
array (
'index' => 3,
'Binding' => 'urn:oasis:names:tc:SAML:1.0:profiles:artifact-01',
'Location' => 'https://aai.pionier.net.pl/test/module.php/saml/sp/saml1-acs.php/default-sp/artifact',
),
),
'NameIDFormat' => 'urn:oasis:names:tc:SAML:2.0:nameid-format:persistent',
'contacts' =>
array (
0 =>
array (
'emailAddress' => 'mgw@umk.pl',
'contactType' => 'technical',
'givenName' => 'Administrator',
),
),
'certData' => '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',
'redirect.validate' => true,
);
Powered by