Du har nå kommet til et test-oppsett. Dette oppsettet for autentisering er kun til bruk for testing og pre-produksjon verifikasjon. Hvis noen sendte deg en link som pekte hit, og du ikke er en tester så fikk du nok en feil link, og skulle ikke vært her.
SAML 2.0 IdP metadata
Her er metadata som SimpleSAMLphp har generert for deg. Du må utveksle metadata med de partene du stoler på for å sette opp en føderasjon.
Du kan nå metadata i XML-format på en dedikert URL:
http://login.medhub.com/simplesaml/saml2/idp/metadata.php
Metadata
I SAML 2.0 Metadata XML Format:
<?xml version="1.0"?> <md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://login.medhub.com/simplesaml/saml2/idp/metadata.php"> <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> <md:KeyDescriptor use="signing"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate>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</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:KeyDescriptor use="encryption"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate>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</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="http://login.medhub.com/simplesaml/saml2/idp/SingleLogoutService.php"/> <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="http://login.medhub.com/simplesaml/saml2/idp/SSOService.php"/> </md:IDPSSODescriptor> <md:Organization> <md:OrganizationName xml:lang="en">MedHub LLC</md:OrganizationName> <md:OrganizationDisplayName xml:lang="en">MedHub LLC</md:OrganizationDisplayName> <md:OrganizationURL xml:lang="en">https://www.medhub.com</md:OrganizationURL> </md:Organization> <md:ContactPerson contactType="technical"> <md:GivenName>Ben</md:GivenName> <md:SurName>Sayer</md:SurName> <md:EmailAddress>mailto:support@medhub.com</md:EmailAddress> </md:ContactPerson> </md:EntityDescriptor>
I SimpleSAMLphp format - bruk denne dersom du benytter SimpleSAMLphp i den andre enden:
$metadata['https://login.medhub.com/simplesaml/saml2/idp/metadata.php'] = [ 'metadata-set' => 'saml20-idp-remote', 'entityid' => 'https://login.medhub.com/simplesaml/saml2/idp/metadata.php', 'SingleSignOnService' => [ [ 'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', 'Location' => 'http://login.medhub.com/simplesaml/saml2/idp/SSOService.php', ], ], 'SingleLogoutService' => [ [ 'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', 'Location' => 'http://login.medhub.com/simplesaml/saml2/idp/SingleLogoutService.php', ], ], 'certData' => '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', 'NameIDFormat' => 'urn:oasis:names:tc:SAML:2.0:nameid-format:transient', 'OrganizationName' => [ 'en' => 'MedHub LLC', ], 'OrganizationDisplayName' => [ 'en' => 'MedHub LLC', ], 'OrganizationURL' => [ 'en' => 'https://www.medhub.com', ], 'contacts' => [ [ 'emailAddress' => 'support@medhub.com', 'contactType' => 'technical', 'givenName' => 'Ben', 'surName' => 'Sayer', ], ], ];
Sertifikater
Last ned X509-sertifikatene som PEM-filer.