shibboleth-dev - Re: Metadata Generator
Subject: Shibboleth Developers
List archive
- From: Tom Scavo <>
- To:
- Subject: Re: Metadata Generator
- Date: Wed, 10 Aug 2005 18:01:29 -0400
- Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=K37l0XQ7XSYtuRWIzLM+O/oEaQfelSm8dto6JWQNk+vIae5McRxhDBAblPnYzLiO1hhkTYFQb8Ualul8XnHv7zViwbaE+r4D9toeEweAmmsyZUoLQCmGurloOUaSXuZnENzyqBum+jk4atuUzNbq7hMmW09Zg05l1ONTLrkSYyA=
On 8/10/05, Nate Klingenstein
<>
wrote:
> I have no idea how to do this. Tell me the modifications necessary or
> point me towards a good example and it's done.
The opening <EntityDescriptor> tag would look something like this:
<md:EntityDescriptor
xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata"
xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
xmlns:shibmd="urn:mace:shibboleth:metadata:1.0"
xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
entityID="[INSERT PROVIDERID HERE]">
I think the md: prefix should be explicit, but I know there's not
universal agreement on that, so you and Scott can decide. The other
namespace prefixes are required, except the saml: prefix, which is
only needed for and saml:AttributeValue (which are not used right
now, but hopefully will be some day).
> The reason the AA descriptor element was all screwed up was because of
> the presumed need to include a second copy of the certificate there; I
> probably didn't write the concatenation right. I took this assumption
> from example-metadata.xml; is it valid?
example-metadata.xml is valid, but the output of the generator is not
(but only when an optional cert is input).
Tom
- RE: Metadata Generator, (continued)
- RE: Metadata Generator, Scott Cantor, 08/10/2005
- Re: Metadata Generator, Nate Klingenstein, 08/10/2005
- RE: Metadata Generator, Scott Cantor, 08/10/2005
- Re: Metadata Generator, Nate Klingenstein, 08/10/2005
- RE: Metadata Generator, Scott Cantor, 08/10/2005
- Re: Metadata Generator, Tom Scavo, 08/10/2005
- RE: Metadata Generator, Scott Cantor, 08/10/2005
- Re: Metadata Generator, Nate Klingenstein, 08/10/2005
- RE: Metadata Generator, Scott Cantor, 08/10/2005
- Re: Metadata Generator, Tom Scavo, 08/10/2005
- RE: Metadata Generator, Scott Cantor, 08/10/2005
- Re: Metadata Generator, Nate Klingenstein, 08/10/2005
- Re: Metadata Generator, Tom Scavo, 08/10/2005
- RE: Metadata Generator, Scott Cantor, 08/10/2005
- RE: Metadata Generator, Scott Cantor, 08/10/2005
- Re: Metadata Generator, Tom Scavo, 08/10/2005
- Re: Metadata Generator, Jim Fox, 08/15/2005
- RE: Metadata Generator, Scott Cantor, 08/15/2005
- RE: Metadata Generator, Jim Fox, 08/15/2005
- Re: Metadata Generator, Nate Klingenstein, 08/15/2005
- Re: Metadata Generator, Jim Fox, 08/15/2005
- Re: Metadata Generator, Nate Klingenstein, 08/15/2005
- Re: Metadata Generator, Nate Klingenstein, 08/15/2005
- Re: Metadata Generator, Jim Fox, 08/15/2005
- Re: Metadata Generator, Alistair Young, 08/16/2005
- RE: Metadata Generator, Scott Cantor, 08/15/2005
Archive powered by MHonArc 2.6.16.