-
Jaime Perez Crespo authored
Change the extension of the documentation files from .txt to .md so that they can processed as markdown and displayed in github.
677c3b0b
Code owners
Assign users and groups as approvers for specific file changes. Learn more.
simplesamlphp-metadata-endpoints.md 2.06 KiB
Metadata endpoints
This document gives a short introduction to the various methods forms metadata endpoints can take in SimpleSAMLphp.
The endpoints we have are:
| Endpoint | Indexed | Default binding |
|---|---|---|
ArtifactResolutionService |
Y | SOAP |
AssertionConsumerService |
Y | HTTP-POST |
SingleLogoutService |
N | HTTP-Redirect |
SingleSignOnService |
N | HTTP-Redirect |
The various endpoints can be specified in three different ways:
- A single string.
- Array of strings.
- Array of arrays.
A single string
'AssertionConsumerService' => 'https://sp.example.org/ACS',This is the simplest endpoint format. It can be used when there is only a single endpoint that uses the default binding.
Array of strings
'AssertionConsumerService' => array(
'https://site1.example.org/ACS',
'https://site2.example.org/ACS',
),This endpoint format can be used to represent multiple endpoints, all of which use the default binding.
Array of arrays
'AssertionConsumerService' => array(
array(
'index' => 1,
'isDefault' => TRUE,
'Location' => 'https://sp.example.org/ACS',
'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST',
),
array(
'index' => 2,
'Location' => 'https://sp.example.org/ACS',
'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact',
),
),This endpoint format allows for specifying multiple endpoints with different bindings.
It can also be used to specify the ResponseLocation attribute on endpoints, e.g. on SingleLogoutService:
'SingleLogoutService' => array(
array(
'Location' => 'https://sp.example.org/LogoutRequest',
'ResponseLocation' => 'https://sp.example.org/LogoutResponse',
'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect',
),
),