Metadati SAML 2.0 IdP

Questi sono i metadati che SimpleSAMLphp ha generato e che possono essere inviati ai partner fidati per creare una federazione tra siti.

Si possono ottenere i metadati in XML dall'URL dedicata:

https://saml.preprod.qualipad.fr/saml2/idp/metadata.php

Metadati

Metadati SAML 2.0 in formato XML:

<?xml version="1.0"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://saml.preprod.qualipad.fr/saml2/idp/metadata.php">
  <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
    <md:KeyDescriptor use="signing">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>MIIFATCCA2mgAwIBAgIUGhRQy5/zX9OtqBmlYaYB+jMGroUwDQYJKoZIhvcNAQELBQAwgY8xCzAJBgNVBAYTAkZSMQ8wDQYDVQQIDAZGcmFuY2UxDjAMBgNVBAcMBVBhcmlzMRAwDgYDVQQKDAdEZXYgdGVtMREwDwYDVQQLDAhEZXYgdGVhbTEWMBQGA1UEAwwNY2xlbWVudCBCb3llcjEiMCAGCSqGSIb3DQEJARYTY2xlbWVudEBxdWFsaWpvYi5mcjAeFw0yMzAxMTYxMTE2MjNaFw0zMzAxMTUxMTE2MjNaMIGPMQswCQYDVQQGEwJGUjEPMA0GA1UECAwGRnJhbmNlMQ4wDAYDVQQHDAVQYXJpczEQMA4GA1UECgwHRGV2IHRlbTERMA8GA1UECwwIRGV2IHRlYW0xFjAUBgNVBAMMDWNsZW1lbnQgQm95ZXIxIjAgBgkqhkiG9w0BCQEWE2NsZW1lbnRAcXVhbGlqb2IuZnIwggGiMA0GCSqGSIb3DQEBAQUAA4IBjwAwggGKAoIBgQDDGI76CNnEJrL0um/iBdBHhzI27Vr8YyeQI0wrdxNkI4jqMFKau4wDjtYY3AAXiFrO9HWsCX5Gqy2CXxyZh6tFEx2sZhkTlqXOOcDAo7I4ijIzrOHCeLa/5qjxNV07MYkGdfWoVtSqClJHIwrwKF2LVjO3uzxYxlD6Ttzx9FHMyiV0ogP6VKaIfLh2c2OD76i4Yve4htDmSSLq5udPZ9IscpiWlyTEJ7Zvtxxdbz8ZD1Ve70r+5egf4F3RaafdBRxfF7i7pgKDeqnhvhJxczlG0GT3AaU+8itVJiWbUusjhDBlTLpj/zAk5xqXGguGnHILzBleJVhxJiZN6bzQKBqG0NV+yuAOVTmEJjJ4jZbHLnLPYiRwxs3RcFySfU/qexSvpDyds44o30qh2aKZcZrZi3ttMR+3FeKzPW39YB8WgH5rKlZUC7PcjIrGtQd17sdtEmi/MYdu+Vd/4pnlo5S5AQp9L0EkLLtwg5BXwc0nWqYW3GdbWq2bYZhXxvvAscMCAwEAAaNTMFEwHQYDVR0OBBYEFMHADTD4HkVnc2j6rUP5whAJsC3bMB8GA1UdIwQYMBaAFMHADTD4HkVnc2j6rUP5whAJsC3bMA8GA1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQELBQADggGBAGUDhenkfSZ7IXGl2F4rbUItwNvz7XyMOIDVrxUn7pD54Q4sZBF4l+8fxN3HQahaVing6A4EzFHsI0S8+RpbYFi9SHSvo28cq1egG+DfLzGMHG0PjC15roY4YIcNaBW/JL+Rr29Zdgf4yeqwNZfWO7Kd9DHAQjXj0I65GBa4SEb/Z6OMsSdbmbVJomD9ZOI0pXv360qCohv5T/yjKB7Uz4dQeLHProkXBb232LrR0NeAsVqAOVS91HdszbcPNS4vKl7jAG1Pl5+Wm3jBSzJylq9X7hK3ClFrtbkUe/V+FNdl9QEZsS5GVBnDLT/2omPmnafRQDLMVxkHr4ngpZnbtniKu3MPAKaV8ZyEWL/Cx6evYFaURgaOhABVUc8nh+qfD5Lq5F6UfmnAkuBe/LwpIXq+j2hmE6M9h8I6A7woHxt/mHRFohqVhxLA37l7po8BERplGVMUCDcT/A5tEajq0B++6iobbo7SUjyhwrJpdKLs6xJI4PwMysbRdWWFAjI5Qg==</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:KeyDescriptor use="encryption">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://saml.preprod.qualipad.fr/saml2/idp/SingleLogoutService.php"/>
    <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
    <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://saml.preprod.qualipad.fr/saml2/idp/SSOService.php"/>
  </md:IDPSSODescriptor>
  <md:ContactPerson contactType="technical">
    <md:GivenName>Administrator</md:GivenName>
    <md:EmailAddress>mailto:clement@qualijob.fr</md:EmailAddress>
  </md:ContactPerson>
</md:EntityDescriptor>

In formato flat per SimpleSAMLphp - da utilizzare se dall'altra parte c'è un'entità che utilizza SimpleSAMLphp

$metadata['https://saml.preprod.qualipad.fr/saml2/idp/metadata.php'] = [
    'metadata-set' => 'saml20-idp-remote',
    'entityid' => 'https://saml.preprod.qualipad.fr/saml2/idp/metadata.php',
    'SingleSignOnService' => [
        [
            'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect',
            'Location' => 'https://saml.preprod.qualipad.fr/saml2/idp/SSOService.php',
        ],
    ],
    'SingleLogoutService' => [
        [
            'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect',
            'Location' => 'https://saml.preprod.qualipad.fr/saml2/idp/SingleLogoutService.php',
        ],
    ],
    'certData' => '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',
    'NameIDFormat' => 'urn:oasis:names:tc:SAML:2.0:nameid-format:transient',
    'contacts' => [
        [
            'emailAddress' => 'clement@qualijob.fr',
            'contactType' => 'technical',
            'givenName' => 'Administrator',
        ],
    ],
];

Certificati

Scarica i certificati X509 come file PEM-encoded

idp.crt