SAML 2.0 SP Metadata
Here is the metadata that SimpleSAMLphp has generated for you. You may send this metadata document to trusted partners to setup a trusted federation.
You can get the metadata xml on a dedicated URL:
https://aai.pionier.net.pl/test/module.php/saml/sp/metadata.php/default-sp
Metadata
In SAML 2.0 Metadata XML format:
<?xml version="1.0"?> <md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://aai.pionier.net.pl/test/module.php/saml/sp/metadata.php/default-sp"> <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol" AuthnRequestsSigned="true"> <md:Extensions> <mdui:UIInfo xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui"> <mdui:DisplayName xml:lang="pl">Testowy Service Provider</mdui:DisplayName> <mdui:DisplayName xml:lang="en">Test Service Provider</mdui:DisplayName> <mdui:Description xml:lang="pl">Testowy dostawca usługi PIONIER.Id</mdui:Description> <mdui:PrivacyStatementURL xml:lang="pl">http://aai.pionier.net.pl/index.php?page=test-sp-pp</mdui:PrivacyStatementURL> </mdui:UIInfo> </md:Extensions> <md:KeyDescriptor use="signing"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate>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</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:KeyDescriptor use="encryption"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate>MIIC7DCCAdQCCQCEsL1tnvROQTANBgkqhkiG9w0BAQsFADA4MQswCQYDVQQGEwJQTDEMMAoGA1UEChMDVU1LMRswGQYDVQQDExJhYWkucGlvbmllci5uZXQucGwwHhcNMjMxMDMxMTM1MTE2WhcNMzMxMDI4MTM1MTE2WjA4MQswCQYDVQQGEwJQTDEMMAoGA1UEChMDVU1LMRswGQYDVQQDExJhYWkucGlvbmllci5uZXQucGwwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCj6X/J0sKvxbKf7qYCdoKWCfTZNXN0DxkQb5j7avkOox4/CeLcttwNsbNvPUADQiNvmyJy9wiNi3gmudowOzDEdBcB+2f+T5UWU7xJnCy5sybiaNHTUt0pjdieUHfZCNfzAM7YMzfPag/GtfW1YjF19dxDToSVckvnwVYNcA0fahHqtF1PlSJ2sNjpK7TzMsWcC3MXCm1kpmihOetYLIrLVwnm6q3acB/Q+C/UwXxGbsQ5mVeeh1mFz+1r3lMC/K1iffya9EjAGoEV0JgqOf0+hDFjseMdkrioBEv7ER2qfzpdaB1hTj606uKhXx836wDPxubJbtP0y963yZ2lqhnZAgMBAAEwDQYJKoZIhvcNAQELBQADggEBAEi3cmaFIQX+hvmYRsqgS9wZ1el7MpVw4f2Wwe7mw8Upgat6R5mTgWSPUTW8CezYu8PSi+KHatR2/luVlVo463MrKAhFN/BS5/TrKGfMfYW8QP+TQD/Z420dkV/61rDwOEU5w/2T1ar5czLDAlt4/LHifGZON7pAnCy3VFDZ4GwoB0XTvtPTFCO/Lrvl0jC9k9AydBiddXjkfyim+9mteI1+uND5rzTLmYNxeLX5eJjsJ+qe51w6RqgFVbMa8yFr94worv/7GYiII9keTMAAzMgU2nYgC6FwYFuBU3DBKvVRxJqYLONPGCNKQ2TtkO1cUtrW3O4u5f2NTGERYaq6mz0=</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://aai.pionier.net.pl/test/module.php/saml/sp/saml2-logout.php/default-sp"/> <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://aai.pionier.net.pl/test/module.php/saml/sp/saml2-acs.php/default-sp" index="0"/> <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://aai.pionier.net.pl/test/module.php/saml/sp/saml1-acs.php/default-sp" index="1"/> <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://aai.pionier.net.pl/test/module.php/saml/sp/saml2-acs.php/default-sp" index="2"/> <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://aai.pionier.net.pl/test/module.php/saml/sp/saml1-acs.php/default-sp/artifact" index="3"/> </md:SPSSODescriptor> <md:ContactPerson contactType="technical"> <md:GivenName>Administrator</md:GivenName> <md:EmailAddress>mailto:mgw@umk.pl</md:EmailAddress> </md:ContactPerson> </md:EntityDescriptor>
In SimpleSAMLphp flat file format - use this if you are using a SimpleSAMLphp entity on the other side:
$metadata['https://aai.pionier.net.pl/test/module.php/saml/sp/metadata.php/default-sp'] = array ( 'SingleLogoutService' => array ( 0 => array ( 'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', 'Location' => 'https://aai.pionier.net.pl/test/module.php/saml/sp/saml2-logout.php/default-sp', ), ), 'AssertionConsumerService' => array ( 0 => array ( 'index' => 0, 'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', 'Location' => 'https://aai.pionier.net.pl/test/module.php/saml/sp/saml2-acs.php/default-sp', ), 1 => array ( 'index' => 1, 'Binding' => 'urn:oasis:names:tc:SAML:1.0:profiles:browser-post', 'Location' => 'https://aai.pionier.net.pl/test/module.php/saml/sp/saml1-acs.php/default-sp', ), 2 => array ( 'index' => 2, 'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact', 'Location' => 'https://aai.pionier.net.pl/test/module.php/saml/sp/saml2-acs.php/default-sp', ), 3 => array ( 'index' => 3, 'Binding' => 'urn:oasis:names:tc:SAML:1.0:profiles:artifact-01', 'Location' => 'https://aai.pionier.net.pl/test/module.php/saml/sp/saml1-acs.php/default-sp/artifact', ), ), 'NameIDFormat' => 'urn:oasis:names:tc:SAML:2.0:nameid-format:persistent', 'contacts' => array ( 0 => array ( 'emailAddress' => 'mgw@umk.pl', 'contactType' => 'technical', 'givenName' => 'Administrator', ), ), 'certData' => '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', 'redirect.validate' => true, );