Make the example metadata actually work for authN.
[java-idp.git] / src / conf / IQ-sites.xml
1 <EntitiesDescriptor
2     xmlns="urn:oasis:names:tc:SAML:2.0:metadata"
3     xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
4     xsi:schemaLocation="urn:oasis:names:tc:SAML:2.0:metadata ../schemas/sstc-saml-schema-metadata-2.0.xsd urn:mace:shibboleth:metadata:1.0 ../schemas/shibboleth-metadata-1.0.xsd"
5     Name="urn:mace:inqueue"
6     validUntil="2010-01-01T00:00:00Z">
7
8         <!--
9         This is a starter set of metadata for the example system used within the
10         InQueue test federation. The InQueue deployment guide describes how to use
11         metadatatool or siterefresh to pick up the most current signed files.
12         Ordinarily a single EntityDescriptor would contain IdP/AA or SP information,
13         but not both.
14         -->
15         
16                 <Extensions>
17                 <KeyAuthority xmlns="urn:mace:shibboleth:metadata:1.0">
18                         <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
19                                 <ds:X509Data>
20                                          <ds:X509Certificate>MIICNDCCAaECEAKtZn5ORf5eV288mBle3cAwDQYJKoZIhvcNAQECBQAwXzELMAkG
21 A1UEBhMCVVMxIDAeBgNVBAoTF1JTQSBEYXRhIFNlY3VyaXR5LCBJbmMuMS4wLAYD
22 VQQLEyVTZWN1cmUgU2VydmVyIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTk0
23 MTEwOTAwMDAwMFoXDTEwMDEwNzIzNTk1OVowXzELMAkGA1UEBhMCVVMxIDAeBgNV
24 BAoTF1JTQSBEYXRhIFNlY3VyaXR5LCBJbmMuMS4wLAYDVQQLEyVTZWN1cmUgU2Vy
25 dmVyIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MIGbMA0GCSqGSIb3DQEBAQUAA4GJ
26 ADCBhQJ+AJLOesGugz5aqomDV6wlAXYMra6OLDfO6zV4ZFQD5YRAUcm/jwjiioII
27 0haGN1XpsSECrXZogZoFokvJSyVmIlZsiAeP94FZbYQHZXATcXY+m3dM41CJVphI
28 uR2nKRoTLkoRWZweFdVJVCxzOmmCsZc5nG1wZ0jl3S3WyB57AgMBAAEwDQYJKoZI
29 hvcNAQECBQADfgBl3X7hsuyw4jrg7HFGmhkRuNPHoLQDQCYCPgmc4RKz0Vr2N6W3
30 YQO2WxZpO8ZECAyIUwxrl0nHPjXcbLm7qt9cuzovk2C2qUtN8iD3zV9/ZHuO3ABc
31 1/p3yjkWWW8O6tO1g39NTUJWdrTJXwT4OPjr0l91X817/OWOgHz8UA==
32 </ds:X509Certificate>
33                                 </ds:X509Data>
34                         </ds:KeyInfo>
35                 </KeyAuthority>
36         </Extensions>
37
38         
39
40         <EntityDescriptor entityID="urn:mace:inqueue:example.edu">
41                 <IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0">
42                         <Extensions>
43                         <shib:Scope xmlns:shib="urn:mace:shibboleth:metadata:1.0">example.edu</shib:Scope>
44                         </Extensions>
45                         <KeyDescriptor use="signing">
46                             <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
47                                 <ds:KeyName>wayf.internet2.edu</ds:KeyName>
48                             </ds:KeyInfo>
49                         </KeyDescriptor>
50                         <NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>
51                         <SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest"
52                             Location="https://wayf.internet2.edu/shibboleth-1.2/HS"/>
53                 </IDPSSODescriptor>
54                 <AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol">
55                         <Extensions>
56                         <shib:Scope xmlns:shib="urn:mace:shibboleth:metadata:1.0">example.edu</shib:Scope>
57                         </Extensions>
58                         <AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding"
59                             Location="https://wayf.internet2.edu/shibboleth-1.2/AA"/>
60                         <NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>
61                 </AttributeAuthorityDescriptor>
62                 <SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol">
63                         <KeyDescriptor>
64                             <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
65                                 <ds:KeyName>wayf.internet2.edu</ds:KeyName>
66                             </ds:KeyInfo>
67                         </KeyDescriptor>
68                         <NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>
69                     <AssertionConsumerService index="0"
70                         Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post"
71                         Location="https://wayf.internet2.edu/Shibboleth.shire"/>
72                 </SPSSODescriptor>
73                 <Organization>
74                     <OrganizationName xml:lang="en">Example State University</OrganizationName>
75                     <OrganizationDisplayName xml:lang="en">Example State University</OrganizationDisplayName>
76                     <OrganizationURL xml:lang="en">http://shibboleth.internet2.edu/</OrganizationURL>
77                 </Organization>
78                 <ContactPerson contactType="technical">
79                     <SurName>InQueue Support</SurName>
80                     <EmailAddress>inqueue-support@internet2.edu</EmailAddress>
81                 </ContactPerson>
82         </EntityDescriptor>
83
84 </EntitiesDescriptor>