SAML 2.0 IdP 元信息
这里是SimpleSAMLphp为你生成的元信息,你应该发送这个元信息文档给你的信任的合作伙伴以建立信任的联盟
你可以在 获取元信息XML
https://brnoid.cz/identity/saml2/idp/metadata.php
元信息
在SAML 2.0 XML 元信息格式中:
<?xml version="1.0"?> <md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://brnoid.cz/identity/saml2/idp/metadata.php"> <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> <md:KeyDescriptor use="signing"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate>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</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:KeyDescriptor use="encryption"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate>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</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://brnoid.cz/identity/saml2/idp/SingleLogoutService.php"/> <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://brnoid.cz/identity/saml2/idp/SSOService.php"/> </md:IDPSSODescriptor> <md:ContactPerson contactType="technical"> <md:GivenName>Administrator</md:GivenName> <md:EmailAddress>mailto:odehnal@inqool.cz</md:EmailAddress> </md:ContactPerson> </md:EntityDescriptor>
如果你想在其他网站使用的SimpleSAMLphp,那么你应该使用SimpleSAMLphp扁平的文件格式
$metadata['https://brnoid.cz/identity/saml2/idp/metadata.php'] = [ 'metadata-set' => 'saml20-idp-remote', 'entityid' => 'https://brnoid.cz/identity/saml2/idp/metadata.php', 'SingleSignOnService' => [ [ 'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', 'Location' => 'https://brnoid.cz/identity/saml2/idp/SSOService.php', ], ], 'SingleLogoutService' => [ [ 'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', 'Location' => 'https://brnoid.cz/identity/saml2/idp/SingleLogoutService.php', ], ], 'certData' => 'MIIFqzCCA5OgAwIBAgIJALOQe0Rj35/0MA0GCSqGSIb3DQEBCwUAMGwxCzAJBgNVBAYTAkNaMQ0wCwYDVQQHDARCcm5vMRQwEgYDVQQKDAtpblFvb2wgYS5zLjEWMBQGA1UEAwwNd3d3LmJybm9pZC5jejEgMB4GCSqGSIb3DQEJARYRb2RlaG5hbEBpbnFvb2wuY3owHhcNMjEwODE2MTI1NDAxWhcNMjIwODE2MTI1NDAxWjBsMQswCQYDVQQGEwJDWjENMAsGA1UEBwwEQnJubzEUMBIGA1UECgwLaW5Rb29sIGEucy4xFjAUBgNVBAMMDXd3dy5icm5vaWQuY3oxIDAeBgkqhkiG9w0BCQEWEW9kZWhuYWxAaW5xb29sLmN6MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvGtU8WsvoLM00QyD4EaoMdsCP6MGNDZcgBtZF2gHFodOitmBJ0q1kw3VMZ/ozzgz8I50xUFhTl+3WZ9F++GRNbMq3ZB8cuSS/jPxA/eLDNwRVruu6RmAZnEieWdQ+/sMB9iIGMqwOan6wR+oh5PciWGM1DXNd6FeNy4luO4OdKQljfnQnJF+Vid1aWgjtFQiNMqoKY2gyf0OwXYDqts3xhTfhNvrRp52AMRQs7WjsjqsP2YZKtUehyi+K1wjDA5LXDrikIdgqdDzzrYSSGFTKr1V9LKQHhoYG2A+XdXQO6tZ7YnuBd/wf4i4MLTrQBPlEOdDAJ3CdHn4YCJOQBskFmFUoW5CtkIgsxo+RunC6KKVc/GwH4/5oCueRc2k5wZZpEGEo5ty7D92bNJ0aubyrNgV1SLny+N/USrLpz+iCST4XvuGQ7M9Q+F4J7ROQWC0MptEzSLemhRVn6DwabkJ9D8tqpinBDuG/9y14RpYKtM1dxQtM3Cd0tGhKU8GrxDxawto3r/94wPWv2IgcvW3hoyf5Bjc15Jx/BsRqKvORCoB+U1O0XShXZX5cjnxsmpSl0ikjqCH9f9SzHPDb3Sf6bE7tZEsaMXgkaCsU9k4q0sWTS/kSaCBj7ycnZuWLg7JeyE/Vv8EkgCJrYnDb0J0IAc5eKaKp6A/PEU3ZOucLkUCAwEAAaNQME4wHQYDVR0OBBYEFFmTAVWgId5NvYq8RU5u1s30vmUKMB8GA1UdIwQYMBaAFFmTAVWgId5NvYq8RU5u1s30vmUKMAwGA1UdEwQFMAMBAf8wDQYJKoZIhvcNAQELBQADggIBAKNTXutsAS6xnDwQl1tbsSN3g+TpNGMC8kRi2F+cEbKlKyIj/wX6TErlmHPPfI2H04YIgxRziaifOFJ2LCqMMPajkDEg0Zck8Tv+o4HkNbhzICN1+3UTTMO2HjYJM72nGKRaBSJnaZdF09T+7SzVaxLeX1oEQFPcAHc0oDMMlj82m8Ai7p37SdC5XLvwJSFJ83Rw/OIshuPj43654c2G0R58zQP2tznvHn1UaO1PjjVbO4yTwMFc3lA0Uxf/7NxuCmpF8V2YGMyB1A9YEHEysOFfwyHNrpoVkf+WLBWhGU9qXne49NIz+lNZURKrM89gDi38Pf9IuLFNYkhZssnCegdELe1J0eD4OGQB+gcVBbKkf8QOvMeZTUxEksPlaWWW0OWAAvSOA3eKaZahabsNpQnRyLLpvaa1KikrhSrocPJyaFxOD+5fzryeQWATRny7Xw0OEoS6slU9vMRLveq/6hi5jeOiW4en53m1gRXNgFGQp9rpSGG3b8rPbPSMpKzhW5FTH+c6GsnDbMYfaoxWJTOHblfm4RgbnSQE4WboiRg/g1vGpEfjyhmOkFOzMbI5iZhvinKVaaI7BiZkOHrQl6EGbyB3dEZ1twoZqILPxo5ZC43zQJcCx44OufWcBqPmoX9aHlmQ7pDEpLt360EH4zRH4uVeogalahpXemo7M1t3', 'NameIDFormat' => 'urn:oasis:names:tc:SAML:2.0:nameid-format:transient', 'contacts' => [ [ 'emailAddress' => 'odehnal@inqool.cz', 'contactType' => 'technical', 'givenName' => 'Administrator', ], ], ];
证书
下载X509证书作为PEM编码的文件