SAML 2.0 IdP 元信息
这里是SimpleSAMLphp为你生成的元信息,你应该发送这个元信息文档给你的信任的合作伙伴以建立信任的联盟
你可以在 获取元信息XML
https://flu.idp-proxy.finki.ukim.mk/saml2/idp/metadata.php
元信息
在SAML 2.0 XML 元信息格式中:
<?xml version="1.0"?> <md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://flu.idp-proxy.finki.ukim.mk/saml2/idp/metadata.php"> <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> <md:KeyDescriptor use="signing"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate>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</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:KeyDescriptor use="encryption"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate>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</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://flu.idp-proxy.finki.ukim.mk/saml2/idp/SingleLogoutService.php"/> <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://flu.idp-proxy.finki.ukim.mk/saml2/idp/SSOService.php"/> </md:IDPSSODescriptor> <md:ContactPerson contactType="technical"> <md:GivenName>FINKI</md:GivenName> <md:SurName>FCC</md:SurName> <md:EmailAddress>fcc@finki.ukim.mk</md:EmailAddress> </md:ContactPerson> </md:EntityDescriptor>
如果你想在其他网站使用的SimpleSAMLphp,那么你应该使用SimpleSAMLphp扁平的文件格式
$metadata['https://flu.idp-proxy.finki.ukim.mk/saml2/idp/metadata.php'] = array ( 'metadata-set' => 'saml20-idp-remote', 'entityid' => 'https://flu.idp-proxy.finki.ukim.mk/saml2/idp/metadata.php', 'SingleSignOnService' => array ( 0 => array ( 'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', 'Location' => 'https://flu.idp-proxy.finki.ukim.mk/saml2/idp/SSOService.php', ), ), 'SingleLogoutService' => array ( 0 => array ( 'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', 'Location' => 'https://flu.idp-proxy.finki.ukim.mk/saml2/idp/SingleLogoutService.php', ), ), 'certData' => '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', 'NameIDFormat' => array ( 0 => 'urn:oasis:names:tc:SAML:2.0:nameid-format:persistent', ), 'contacts' => array ( 0 => array ( 'emailAddress' => 'fcc@finki.ukim.mk', 'contactType' => 'technical', 'givenName' => 'FINKI', 'surName' => 'FCC', ), ), );
证书
下载X509证书作为PEM编码的文件