Métadonnées d'IdP SAML 2.0
Voici les métadonnées générées par SimpleSAMLphp. Vous pouvez les envoyer à vos partenaires de confiances pour construire une fédération d'identité.
Vous pouvez obtenir ces métadonnées XML depuis une URL dédiée:
https://auth.interfoodcoop.net/saml2/idp/metadata.php
Métadonnées
Au format XML de métadonnées SAML 2.0
<?xml version="1.0"?> <md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://auth.interfoodcoop.net/saml2/idp/metadata.php"> <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> <md:KeyDescriptor use="signing"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate>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</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:KeyDescriptor use="encryption"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate>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</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://auth.interfoodcoop.net/saml2/idp/SingleLogoutService.php"/> <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://auth.interfoodcoop.net/saml2/idp/SSOService.php"/> </md:IDPSSODescriptor> <md:ContactPerson contactType="technical"> <md:GivenName>Paul</md:GivenName> <md:SurName>B.</md:SurName> <md:EmailAddress>mailto:paul@bonaud.fr</md:EmailAddress> </md:ContactPerson> </md:EntityDescriptor>
Au format à plat SimpleSAMLphp - à utiliser si vous avez une installation SimpleSAMLphp sur la partie adverse :
$metadata['https://auth.interfoodcoop.net/saml2/idp/metadata.php'] = array ( 'metadata-set' => 'saml20-idp-remote', 'entityid' => 'https://auth.interfoodcoop.net/saml2/idp/metadata.php', 'SingleSignOnService' => array ( 0 => array ( 'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', 'Location' => 'https://auth.interfoodcoop.net/saml2/idp/SSOService.php', ), ), 'SingleLogoutService' => array ( 0 => array ( 'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', 'Location' => 'https://auth.interfoodcoop.net/saml2/idp/SingleLogoutService.php', ), ), 'certData' => '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', 'NameIDFormat' => 'urn:oasis:names:tc:SAML:2.0:nameid-format:transient', 'contacts' => array ( 0 => array ( 'emailAddress' => 'paul@bonaud.fr', 'contactType' => 'technical', 'givenName' => 'Paul', 'surName' => 'B.', ), ), );
Certificats
Télécharger les certificats X509 en tant que fichiers encodés PEM.