Metadatos IdP SAML 2.0

Aquí están los metadatos que SimpleSAMLphp ha generado. Puede enviar este documento de metadatos a sus socios de confianza para configurar una federación.

Puede obtener una URL con los metadatos xml:

https://idpx.pdn.ac.lk/saml2/idp/metadata.php

Metadatos

En formato xml de metadatos SAML 2.0:

<?xml version="1.0"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://idpx.pdn.ac.lk/saml2/idp/metadata.php">
  <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
    <md:KeyDescriptor use="signing">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:KeyDescriptor use="encryption">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idpx.pdn.ac.lk/saml2/idp/SingleLogoutService.php"/>
    <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
    <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idpx.pdn.ac.lk/saml2/idp/SSOService.php"/>
  </md:IDPSSODescriptor>
  <md:ContactPerson contactType="technical">
    <md:GivenName>Administrator</md:GivenName>
    <md:EmailAddress>mailto:noc@pdn.ac.lk</md:EmailAddress>
  </md:ContactPerson>
</md:EntityDescriptor>

En un fichero de formato SimpleSAMLphp - utilice esta opción si está usando una entidad SimpleSAMLphp en el otro extremo:

$metadata['https://idpx.pdn.ac.lk/saml2/idp/metadata.php'] = [
    'metadata-set' => 'saml20-idp-remote',
    'entityid' => 'https://idpx.pdn.ac.lk/saml2/idp/metadata.php',
    'SingleSignOnService' => [
        [
            'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect',
            'Location' => 'https://idpx.pdn.ac.lk/saml2/idp/SSOService.php',
        ],
    ],
    'SingleLogoutService' => [
        [
            'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect',
            'Location' => 'https://idpx.pdn.ac.lk/saml2/idp/SingleLogoutService.php',
        ],
    ],
    'certData' => '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',
    'NameIDFormat' => 'urn:oasis:names:tc:SAML:2.0:nameid-format:transient',
    'contacts' => [
        [
            'emailAddress' => 'noc@pdn.ac.lk',
            'contactType' => 'technical',
            'givenName' => 'Administrator',
        ],
    ],
];

Certificados

Descargar los certificados X509 en formato PEM.

idp.crt