15c7b2dc674367d5f86eb1b4394e477559f8ff36
[java-idp.git] / resources / conf / relying-party.xml
1 <?xml version="1.0" encoding="UTF-8"?>
2
3 <!--
4     This file specifies relying party dependent configurations for the IdP, for example, whether SAML assertions to a 
5     particular relying party should be signed.  It also includes metadata provider and credential definitions used 
6     when answering requests to a relying party.
7 -->
8
9 <RelyingPartyGroup xmlns="urn:mace:shibboleth:2.0:relying-party"
10                    xmlns:saml="urn:mace:shibboleth:2.0:relying-party:saml"
11                    xmlns:metadata="urn:mace:shibboleth:2.0:metadata"
12                    xmlns:credential="urn:mace:shibboleth:2.0:credential"
13                    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
14                    xsi:schemaLocation="urn:mace:shibboleth:2.0:relying-party classpath:/schema/shibboleth-2.0-relying-party.xsd
15                                        urn:mace:shibboleth:2.0:relying-party:saml classpath:/schema/shibboleth-2.0-relying-party-saml.xsd
16                                        urn:mace:shibboleth:2.0:metadata classpath:/schema/shibboleth-2.0-metadata.xsd
17                                        urn:mace:shibboleth:2.0:credential classpath:/schema/shibboleth-2.0-credential.xsd">
18                                        
19     <AnonymousRelyingParty provider="http://example.org/IdP" />
20     
21     <DefaultRelyingParty provider="http://example.org/IdP" />
22     
23     <RelyingParty id="urn:mace:incommon"
24                   provider="http://example.org/IdP" 
25                   defaultSigningCredentialRef="MySigningKey">
26         <ProfileConfiguration xsi:type="saml:ShibbolethSSOProfile" />
27         <ProfileConfiguration xsi:type="saml:SAML2SSOProfile" />
28     </RelyingParty>
29     
30     <MetadataProvider xsi:type="FileBackedURLMetadataProvider" xmlns="urn:mace:shibboleth:2.0:metadata"
31                       id="incommon-metadata"
32                       metadataUrl="https://wayf.incommonfederation.org/InCommon/InCommon-metadata.xml"
33                       backingFile="$IDP_HOME/temp/metadata/incommon.xml"/>
34     
35     <Credential xsi:type="InlineCredential" xmlns="urn:mace:shibboleth:2.0:credential"
36                 id="MySigningKey">
37         <PrivateKey>
38             <!-- Encoded key -->
39         </PrivateKey>
40         <PublicKey>
41             <!-- Encoded key -->
42         </PublicKey>
43     </Credential>
44
45 </RelyingPartyGroup>