SAML 2.0 IdP Metaadatok

Ezeket a metaadatokat a SimpleSAMLphp generálta. Ezt a dokumentumot küldheti el föderációs partnerei számára.

A következő címről töltheti le a metaadatokat:

Metaadatok

SAML 2.0 XML formátumban:

<?xml version="1.0"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://crmidp.aai.niif.hu/idp">
  <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
    <md:KeyDescriptor use="signing">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:KeyDescriptor use="encryption">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://crmidp.aai.niif.hu/simplesaml/saml2/idp/SingleLogoutService.php"/>
    <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
    <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://crmidp.aai.niif.hu/simplesaml/saml2/idp/SSOService.php"/>
  </md:IDPSSODescriptor>
  <md:ContactPerson contactType="technical">
    <md:GivenName>NIIFI</md:GivenName>
    <md:SurName>AAI</md:SurName>
    <md:EmailAddress>aai@niif.hu</md:EmailAddress>
  </md:ContactPerson>
</md:EntityDescriptor>

SimpleSAMLphp fájl formátumban - akkor használható, ha a másik oldalon simpleSAMLphp van:

$metadata['https://crmidp.aai.niif.hu/idp'] = array (
  'metadata-set' => 'saml20-idp-remote',
  'entityid' => 'https://crmidp.aai.niif.hu/idp',
  'SingleSignOnService' => 
  array (
    0 => 
    array (
      'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect',
      'Location' => 'https://crmidp.aai.niif.hu/simplesaml/saml2/idp/SSOService.php',
    ),
  ),
  'SingleLogoutService' => 'https://crmidp.aai.niif.hu/simplesaml/saml2/idp/SingleLogoutService.php',
  'certData' => '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',
  'NameIDFormat' => 'urn:oasis:names:tc:SAML:2.0:nameid-format:transient',
);

Tanúsítványok.

PEM formátumú X509 tanúsítvány letöltése.

idp.crt