2014-11-26 21:09:30 +01:00
|
|
|
<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
|
|
|
|
<EntityDescriptor
|
|
|
|
entityID="%{base_url}/saml2-metadata"
|
|
|
|
xmlns="urn:oasis:names:tc:SAML:2.0:metadata">
|
|
|
|
<SPSSODescriptor
|
|
|
|
AuthnRequestsSigned="true"
|
|
|
|
WantAssertionsSigned="true"
|
|
|
|
protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
|
2014-12-03 01:33:54 +01:00
|
|
|
<KeyDescriptor use="signing"><ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"><ds:X509Data><ds:X509Certificate>%{certificate}</ds:X509Certificate></ds:X509Data></ds:KeyInfo></KeyDescriptor><KeyDescriptor use="encryption"><ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"><ds:X509Data><ds:X509Certificate>%{certificate}</ds:X509Certificate></ds:X509Data></ds:KeyInfo></KeyDescriptor>
|
2014-11-26 21:09:30 +01:00
|
|
|
<SingleLogoutService
|
|
|
|
Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP"
|
|
|
|
Location="%{base_url}/saml2-sls" />
|
|
|
|
<SingleLogoutService
|
|
|
|
Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
|
|
|
|
Location="%{base_url}/saml2-sls" />
|
|
|
|
<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
|
|
|
|
<AssertionConsumerService
|
|
|
|
index="0"
|
|
|
|
isDefault="true"
|
|
|
|
Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
|
|
|
|
Location="%{base_url}/saml2-signon-post" />
|
|
|
|
<AssertionConsumerService
|
|
|
|
index="1"
|
|
|
|
Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact"
|
|
|
|
Location="%{base_url}/saml2/artifactResponse" />
|
|
|
|
</SPSSODescriptor>
|
|
|
|
</EntityDescriptor>
|