„HREF Key Rollover 2020” változatai közötti eltérés

Innen: KIFÜ Wiki
(Shibboleth Service Provider key rollover)
a (Shibboleth Service Provider)
1. sor: 1. sor:
 
== Shibboleth Service Provider  ==
 
== Shibboleth Service Provider  ==
 +
 +
https://wiki.shibboleth.net/confluence/display/SP3/MetadataProvider
  
 
=== XML ===
 
=== XML ===

A lap 2020. szeptember 7., 20:17-kori változata

Shibboleth Service Provider

https://wiki.shibboleth.net/confluence/display/SP3/MetadataProvider

XML

 1 <MetadataProvider type="Chaining">
 2     <MetadataProvider type="XML" id="href-2011" url="http://metadata.eduid.hu/current/href.xml" backingFilePath="href-2011.xml">
 3         <MetadataFilter type="Signature" certificate="href-metadata-signer-2011.crt"/>
 4         <MetadataFilter type="RequireValidUntil" maxValidityInterval="864000"/>
 5     </MetadataProvider>
 6     <MetadataProvider type="XML" id="href-2020" url="http://metadata.eduid.hu/current/href.xml" backingFilePath="href-2020.xml">
 7         <MetadataFilter type="Signature" certificate="href-metadata-signer-2020.crt"/>
 8         <MetadataFilter type="RequireValidUntil" maxValidityInterval="864000"/>
 9     </MetadataProvider>
10 </MetadataProvider>

MDX

Shibboleth 3.X

1 <MetadataProvider type="MDQ" id="href-2015" ignoreTransport="true" baseUrl="https://mdx.eduid.hu/">
2     <MetadataFilter type="Signature" certificate="mdx-test-signer-2015.crt"/>
3     <MetadataFilter type="RequireValidUntil" maxValidityInterval="864000"/>
4 </MetadataProvider>
5 <MetadataProvider type="MDQ" id="href-2020" ignoreTransport="true" baseUrl="https://mdx.eduid.hu/">
6     <MetadataFilter type="Signature" certificate="href-metadata-signer-2020.crt"/>
7     <MetadataFilter type="RequireValidUntil" maxValidityInterval="864000"/>
8 </MetadataProvider>

Shibboleth 2.X

1 <MetadataProvider type="Dynamic" id="href-2015" ignoreTransport="true">
2     <Subst>https://mdx.eduid.hu/entities/$entityID</Subst>
3     <MetadataFilter type="Signature" certificate="mdx-test-signer-2015.crt"/>
4 </MetadataProvider>
5 <MetadataProvider type="Dynamic" id="href-2020" ignoreTransport="true">
6     <Subst>https://mdx.eduid.hu/entities/$entityID</Subst>
7     <MetadataFilter type="Signature" certificate="href-metadata-signer-2020.crt"/>
8 </MetadataProvider>

SimpleSAMLphp Certificate Rollover

https://simplesamlphp.org/docs/stable/saml:keyrollover