„HREF Key Rollover 2020” változatai közötti eltérés

Innen: KIFÜ Wiki
47. sor: 47. sor:
  
 
== SimpleSAMLphp ==  
 
== SimpleSAMLphp ==  
 +
 +
=== MDX ===
  
 
<syntaxhighlight lang="php" line>
 
<syntaxhighlight lang="php" line>
 
+
//config/config.php
 
'metadata.sources' => [
 
'metadata.sources' => [
 
     ['type' => 'flatfile'], // ez a *-hosted metadata konfiguráció betöltése miatt szükséges
 
     ['type' => 'flatfile'], // ez a *-hosted metadata konfiguráció betöltése miatt szükséges
64. sor: 66. sor:
 
         'validateFingerprint' => 'C3:72:DC:75:4C:FA:BA:65:63:52:D9:6B:47:5B:44:7E:AA:F6:45:61'
 
         'validateFingerprint' => 'C3:72:DC:75:4C:FA:BA:65:63:52:D9:6B:47:5B:44:7E:AA:F6:45:61'
 
     ],
 
     ],
 +
],
 +
</syntaxhighlight>
 +
 +
=== metarefresh ===
 +
 +
<syntaxhighlight lang="php" line>
 +
// config/config-metarefresh.php
 +
$config = [
 +
  'sets' => [
 +
      'href-2011' => [
 +
          'cron'      => ['hourly'],
 +
          'sources'  => [
 +
              [
 +
                  'src' => 'https://metadata.eduid.hu/current/href.xml',
 +
                  'validateFingerprint' => 'FE:AE:0B:E8:FB:59:ED:F7:CB:7F:69:DF:19:4F:8B:6D:C7:F6:96:66',
 +
              ],
 +
          ],
 +
          'expireAfter'      => 60*60*24*7, // Maximum 4 days cache time.
 +
          'outputDir'    => 'metadata/metarefresh-href-2011/',
 +
          'outputFormat' => 'flatfile',
 +
      ],
 +
      'href-2020' => [
 +
          'cron'      => ['hourly'],
 +
          'sources'  => [
 +
              [
 +
                  'src' => 'https://metadata.eduid.hu/current/href.xml',
 +
                  'validateFingerprint' => 'C3:72:DC:75:4C:FA:BA:65:63:52:D9:6B:47:5B:44:7E:AA:F6:45:61',
 +
              ],
 +
          ],
 +
          'expireAfter'      => 60*60*24*7, // Maximum 4 days cache time.
 +
          'outputDir'    => 'metadata/metarefresh-href-2020/',
 +
          'outputFormat' => 'flatfile',
 +
      ],
 +
    ],
 +
];
 +
</syntaxhighlight>
 +
 +
<syntaxhighlight lang="php" line>
 +
// config/config.php
 +
'metadata.sources' => [
 +
    ['type' => 'flatfile'],
 +
    ['type' => 'flatfile', 'directory' => 'metadata/metarefresh-href-2011'],
 +
    ['type' => 'flatfile', 'directory' => 'metadata/metarefresh-href-2020'],
 
],
 
],
 
</syntaxhighlight>
 
</syntaxhighlight>

A lap 2020. szeptember 7., 21:39-kori változata

Shibboleth Service Provider

https://wiki.shibboleth.net/confluence/display/SP3/MetadataProvider

XML

 1 <MetadataProvider type="Chaining">
 2     <MetadataProvider type="XML" id="href-2011" url="http://metadata.eduid.hu/current/href.xml" backingFilePath="href-2011.xml">
 3         <MetadataFilter type="Signature" certificate="href-metadata-signer-2011.crt"/>
 4         <MetadataFilter type="RequireValidUntil" maxValidityInterval="864000"/>
 5     </MetadataProvider>
 6     <MetadataProvider type="XML" id="href-2020" url="http://metadata.eduid.hu/current/href.xml" backingFilePath="href-2020.xml">
 7         <MetadataFilter type="Signature" certificate="href-metadata-signer-2020.crt"/>
 8         <MetadataFilter type="RequireValidUntil" maxValidityInterval="864000"/>
 9     </MetadataProvider>
10 </MetadataProvider>

MDX

Shibboleth 3.X

1 <MetadataProvider type="MDQ" id="href-2015" ignoreTransport="true" baseUrl="https://mdx.eduid.hu/">
2     <MetadataFilter type="Signature" certificate="mdx-test-signer-2015.crt"/>
3     <MetadataFilter type="RequireValidUntil" maxValidityInterval="864000"/>
4 </MetadataProvider>
5 <MetadataProvider type="MDQ" id="href-2020" ignoreTransport="true" baseUrl="https://mdx.eduid.hu/">
6     <MetadataFilter type="Signature" certificate="href-metadata-signer-2020.crt"/>
7     <MetadataFilter type="RequireValidUntil" maxValidityInterval="864000"/>
8 </MetadataProvider>

Shibboleth 2.X

1 <MetadataProvider type="Dynamic" id="href-2015" ignoreTransport="true">
2     <Subst>https://mdx.eduid.hu/entities/$entityID</Subst>
3     <MetadataFilter type="Signature" certificate="mdx-test-signer-2015.crt"/>
4 </MetadataProvider>
5 <MetadataProvider type="Dynamic" id="href-2020" ignoreTransport="true">
6     <Subst>https://mdx.eduid.hu/entities/$entityID</Subst>
7     <MetadataFilter type="Signature" certificate="href-metadata-signer-2020.crt"/>
8 </MetadataProvider>

SimpleSAMLphp

MDX

 1 //config/config.php
 2 'metadata.sources' => [
 3      ['type' => 'flatfile'], // ez a *-hosted metadata konfiguráció betöltése miatt szükséges
 4      [
 5          'type' => 'mdq',
 6          'server' => 'https://mdx.eduid.hu',
 7          /* --- */
 8          'validateFingerprint' => '91:81:AD:2B:F1:C1:4E:47:93:A2:9D:49:34:B7:77:62:4F:2F:98:43'
 9      ],
10      [
11          'type' => 'mdq',
12          'server' => 'https://mdx.eduid.hu',
13          /* --- */
14          'validateFingerprint' => 'C3:72:DC:75:4C:FA:BA:65:63:52:D9:6B:47:5B:44:7E:AA:F6:45:61'
15      ],
16 ],

metarefresh

 1 // config/config-metarefresh.php
 2 $config = [
 3    'sets' => [
 4        'href-2011' => [
 5            'cron'      => ['hourly'],
 6            'sources'   => [
 7                [
 8                    'src' => 'https://metadata.eduid.hu/current/href.xml',
 9                    'validateFingerprint' => 'FE:AE:0B:E8:FB:59:ED:F7:CB:7F:69:DF:19:4F:8B:6D:C7:F6:96:66',
10                ],
11            ],
12            'expireAfter'       => 60*60*24*7, // Maximum 4 days cache time.
13            'outputDir'     => 'metadata/metarefresh-href-2011/',
14            'outputFormat' => 'flatfile',
15        ],
16        'href-2020' => [
17            'cron'      => ['hourly'],
18            'sources'   => [
19                [
20                    'src' => 'https://metadata.eduid.hu/current/href.xml',
21                    'validateFingerprint' => 'C3:72:DC:75:4C:FA:BA:65:63:52:D9:6B:47:5B:44:7E:AA:F6:45:61',
22                ],
23            ],
24            'expireAfter'       => 60*60*24*7, // Maximum 4 days cache time.
25            'outputDir'     => 'metadata/metarefresh-href-2020/',
26            'outputFormat' => 'flatfile',
27        ],
28     ],
29 ];
1 // config/config.php
2 'metadata.sources' => [
3     ['type' => 'flatfile'],
4     ['type' => 'flatfile', 'directory' => 'metadata/metarefresh-href-2011'],
5     ['type' => 'flatfile', 'directory' => 'metadata/metarefresh-href-2020'],
6 ],