Bug fixing - round two... now with working shib SSO
[java-idp.git] / resources / conf / relying-party.xml
1 <?xml version="1.0" encoding="UTF-8"?>
2
3 <!--
4     This file specifies relying party dependent configurations for the IdP, for example, whether SAML assertions to a 
5     particular relying party should be signed.  It also includes metadata provider and credential definitions used 
6     when answering requests to a relying party.
7 -->
8
9 <RelyingPartyGroup xmlns="urn:mace:shibboleth:2.0:relying-party"
10                    xmlns:saml="urn:mace:shibboleth:2.0:relying-party:saml"
11                    xmlns:metadata="urn:mace:shibboleth:2.0:metadata"
12                    xmlns:credential="urn:mace:shibboleth:2.0:credential"
13                    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
14                    xsi:schemaLocation="urn:mace:shibboleth:2.0:relying-party classpath:/schema/shibboleth-2.0-relying-party.xsd
15                                        urn:mace:shibboleth:2.0:relying-party:saml classpath:/schema/shibboleth-2.0-relying-party-saml.xsd
16                                        urn:mace:shibboleth:2.0:metadata classpath:/schema/shibboleth-2.0-metadata.xsd
17                                        urn:mace:shibboleth:2.0:credential classpath:/schema/shibboleth-2.0-credential.xsd
18                                        urn:oasis:names:tc:SAML:2.0:metadata classpath:/schema/saml-schema-metadata-2.0.xsd">
19                                        
20     <AnonymousRelyingParty provider="http://example.org/IdP" />
21     
22     <DefaultRelyingParty provider="http://example.org/IdP" />
23     
24     <RelyingParty id="urn:example.org:unitTestFed"
25                   provider="urn:example.org:unitTest:idp1">
26         <ProfileConfiguration xsi:type="saml:SAML2AttributeQueryProfile" />
27         <ProfileConfiguration xsi:type="saml:SAML2SSOProfile" />
28     </RelyingParty>
29     
30     <MetadataProvider id="UnitTestConf1" xsi:type="InlineMetadataProvider" xmlns="urn:mace:shibboleth:2.0:metadata">
31         <EntitiesDescriptor xmlns="urn:oasis:names:tc:SAML:2.0:metadata">
32             <EntityDescriptor entityID="urn:example.org:unitTest:idp1">
33                 <IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
34                     <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://example.org/myIdP" />
35                 </IDPSSODescriptor>
36             </EntityDescriptor>
37             <EntityDescriptor entityID="urn:example.org:unitTest:sp1">
38                 <SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
39                     <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://example.org/mySP" index="0" />
40                     <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://example.org/mySP" index="0" />
41                 </SPSSODescriptor>
42             </EntityDescriptor>
43             <EntitiesDescriptor Name="urn:example.org:unitTestFed" xmlns="urn:oasis:names:tc:SAML:2.0:metadata">
44                 <EntityDescriptor entityID="urn:example.org:unitTestFed:sp2">
45                     <SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
46                         <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://example.org/mySP" index="0" />
47                         <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://example.org/mySP" index="0" />
48                     </SPSSODescriptor>
49                 </EntityDescriptor>
50             </EntitiesDescriptor>
51         </EntitiesDescriptor>
52     </MetadataProvider>
53
54 </RelyingPartyGroup>