explicitly state support for unspec name ID format
[java-idp.git] / resources / metadata / idp-metadata.xml
index 1da7ff8..4e8ef58 100644 (file)
@@ -20,17 +20,18 @@ $IDP_CERTIFICATE$
             </ds:KeyInfo>
 
         </KeyDescriptor>
-
-        <NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>
-        <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
         
         <ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding"
-                                   Location="https://$IDP_HOSTNAME$/idp/profile/SAML1/SOAP/ArtifactResolution" 
+                                   Location="https://$IDP_HOSTNAME$:8443/idp/profile/SAML1/SOAP/ArtifactResolution" 
                                    index="1"/>
 
         <ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP"
-                                   Location="https://$IDP_HOSTNAME$/idp/profile/SAML2/SOAP/ArtifactResolution" 
+                                   Location="https://$IDP_HOSTNAME$:8443/idp/profile/SAML2/SOAP/ArtifactResolution" 
                                    index="2"/>
+                                   
+        <NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>
+        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</NameIDFormat>
+        <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
 
         <SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" 
                              Location="https://$IDP_HOSTNAME$/idp/profile/Shibboleth/SSO" />
@@ -64,12 +65,13 @@ $IDP_CERTIFICATE$
         </KeyDescriptor>
 
         <AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" 
-                          Location="https://$IDP_HOSTNAME$/idp/profile/SAML1/SOAP/AttributeQuery" />
+                          Location="https://$IDP_HOSTNAME$:8443/idp/profile/SAML1/SOAP/AttributeQuery" />
         
         <AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP"
-                          Location="https://$IDP_HOSTNAME$/idp/profile/SAML2/SOAP/AttributeQuery" />
+                          Location="https://$IDP_HOSTNAME$:8443/idp/profile/SAML2/SOAP/AttributeQuery" />
         
         <NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>
+        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</NameIDFormat>
         <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>    
     </AttributeAuthorityDescriptor>