lemonldap-ng/modules/lemonldap-ng-portal/example/skins/common/saml2-metadata.tpl

<?xml version="1.0"?>
<EntityDescriptor xmlns="urn:oasis:names:tc:SAML:2.0:metadata"
    xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
    xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
    entityID="<TMPL_VAR NAME="samlEntityID">">

  <IDPSSODescriptor
      WantAuthnRequestsSigned="<TMPL_VAR NAME="samlIDPSSODescriptorWantAuthnRequestsSigned">"
      protocolSupportEnumeration="<TMPL_VAR NAME="samlIDPSSODescriptorProtocolSupportEnumeration">">
    <KeyDescriptor use="signing">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:KeyValue>
          <TMPL_VAR NAME="samlIDPSSODescriptorKeyDescriptorSigning">
        </ds:KeyValue>
      </ds:KeyInfo>
    </KeyDescriptor>
    <KeyDescriptor use="encryption">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:KeyValue>
          <TMPL_VAR NAME="samlIDPSSODescriptorKeyDescriptorSigning">
        </ds:KeyValue>
      </ds:KeyInfo>
    </KeyDescriptor>
    <ArtifactResolutionService
      isDefault="<TMPL_VAR NAME="samlIDPSSODescriptorArtifactResolutionServiceArtifactDefault">"
      index="<TMPL_VAR NAME="samlIDPSSODescriptorArtifactResolutionServiceArtifactIndex">"
      Binding="<TMPL_VAR NAME="samlIDPSSODescriptorArtifactResolutionServiceArtifactBinding">"
      Location="<TMPL_VAR NAME="samlIDPSSODescriptorArtifactResolutionServiceArtifactLocation">" />
    <SingleLogoutService
      Binding="<TMPL_VAR NAME="samlIDPSSODescriptorSingleLogoutServiceSOAPBinding">"
      Location="<TMPL_VAR NAME="samlIDPSSODescriptorSingleLogoutServiceSOAPLocation">" />
    <SingleLogoutService
      Binding="<TMPL_VAR NAME="samlIDPSSODescriptorSingleLogoutServiceHTTPBinding">"
      Location="<TMPL_VAR NAME="samlIDPSSODescriptorSingleLogoutServiceHTTPLocation">"
      <TMPL_IF NAME="samlIDPSSODescriptorSingleLogoutServiceHTTPResponseLocation">
      ResponseLocation="<TMPL_VAR NAME="samlIDPSSODescriptorSingleLogoutServiceHTTPResponseLocation">" />
      </TMPL_IF>
    <ManageNameIDService
      Binding="<TMPL_VAR NAME="samlIDPSSODescriptorManageNameIDServiceSOAPBinding">"
      Location="<TMPL_VAR NAME="samlIDPSSODescriptorManageNameIDServiceSOAPLocation">" />
    <ManageNameIDService
      Binding="<TMPL_VAR NAME="samlIDPSSODescriptorManageNameIDServiceHTTPBinding">"
      Location="<TMPL_VAR NAME="samlIDPSSODescriptorManageNameIDServiceHTTPLocation">"
      <TMPL_IF NAME="samlIDPSSODescriptorManageNameIDServiceHTTPResponseLocation">
      ResponseLocation="<TMPL_VAR NAME="samlIDPSSODescriptorManageNameIDServiceHTTPResponseLocation">"
      </TMPL_IF>/>
    <SingleSignOnService
      Binding="<TMPL_VAR NAME="samlIDPSSODescriptorSingleSignOnServiceSOAPBinding">"
      Location="<TMPL_VAR NAME="samlIDPSSODescriptorSingleSignOnServiceSOAPLocation">" />
    <SingleSignOnService
      Binding="<TMPL_VAR NAME="samlIDPSSODescriptorSingleSignOnServiceHTTPBinding">"
      Location="<TMPL_VAR NAME="samlIDPSSODescriptorSingleSignOnServiceHTTPLocation">" />
<TMPL_IF NAME="samlIDPSSODescriptorNameIDFormatX509SubjectName">
    <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName</NameIDFormat>
</TMPL_IF>
<TMPL_IF NAME="samlIDPSSODescriptorNameIDFormatPersistent">
    <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</NameIDFormat>
</TMPL_IF>
<TMPL_IF NAME="samlIDPSSODescriptorNameIDFormatTransient">
    <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
</TMPL_IF>
  </IDPSSODescriptor>

  <SPSSODescriptor
      AuthnRequestsSigned="<TMPL_VAR NAME="samlSPSSODescriptorAuthnRequestsSigned">"
      protocolSupportEnumeration="<TMPL_VAR NAME="samlSPSSODescriptorProtocolSupportEnumeration">">
    <KeyDescriptor use="signing">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:KeyValue>
          <TMPL_VAR NAME="samlSPSSODescriptorKeyDescriptorSigning">
        </ds:KeyValue>
      </ds:KeyInfo>
    </KeyDescriptor>
    <KeyDescriptor use="encryption">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:KeyValue>
          <TMPL_VAR NAME="samlSPSSODescriptorKeyDescriptorSigning">
        </ds:KeyValue>
      </ds:KeyInfo>
    </KeyDescriptor>
    <SingleLogoutService
      Binding="<TMPL_VAR NAME="samlSPSSODescriptorSingleLogoutServiceSOAPBinding">"
      Location="<TMPL_VAR NAME="samlSPSSODescriptorSingleLogoutServiceSOAPLocation">" />
    <SingleLogoutService
      Binding="<TMPL_VAR NAME="samlSPSSODescriptorSingleLogoutServiceHTTPBinding">"
      Location="<TMPL_VAR NAME="samlSPSSODescriptorSingleLogoutServiceHTTPLocation">"
      <TMPL_IF NAME="samlSPSSODescriptorSingleLogoutServiceHTTPResponseLocation">
      ResponseLocation="<TMPL_VAR NAME="samlSPSSODescriptorSingleLogoutServiceHTTPResponseLocation">"
      </TMPL_IF>/>
    <AssertionConsumerService
      isDefault="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPArtifactDefault">"
      index="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPArtifactIndex">"
      Binding="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPArtifactBinding">"
      Location="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPArtifactLocation">" />
    <AssertionConsumerService
      isDefault="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPPostDefault">"
      index="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPPostIndex">"
      Binding="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPPostBinding">"
      Location="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPPostLocation">" />
    <AssertionConsumerService
      isDefault="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPRedirectDefault">"
      index="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPRedirectIndex">"
      Binding="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPRedirectBinding">"
      Location="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPRedirectLocation">" />
<TMPL_IF NAME="samlSPSSODescriptorNameIDFormatX509SubjectName">
    <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName</NameIDFormat>
</TMPL_IF>
<TMPL_IF NAME="samlSPSSODescriptorNameIDFormatPersistent">
    <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</NameIDFormat>
</TMPL_IF>
<TMPL_IF NAME="samlSPSSODescriptorNameIDFormatTransient">
    <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
</TMPL_IF>
  </SPSSODescriptor>

  <Organization>
    <OrganizationName xml:lang="en"><TMPL_VAR NAME="samlOrganizationName"></OrganizationName>
    <OrganizationDisplayName xml:lang="en"><TMPL_VAR NAME="samlOrganizationDisplayName"></OrganizationDisplayName>
    <OrganizationURL xml:lang="en"><TMPL_VAR NAME="samlOrganizationURL"></OrganizationURL>
  </Organization>

</EntityDescriptor>
add files needed by Metadata.pm to export metadata from conf to XML 2010-02-05 16:49:52 +01:00			`<?xml version="1.0"?>`
			`<EntityDescriptor xmlns="urn:oasis:names:tc:SAML:2.0:metadata"`
			`xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"`
			`xmlns:ds="http://www.w3.org/2000/09/xmldsig#"`
SAML Metadata: * Do not publish private key in metadata! * perltidy * typo on EntityID template param 2010-02-08 16:27:20 +01:00			`entityID="<TMPL_VAR NAME="samlEntityID">">`
add files needed by Metadata.pm to export metadata from conf to XML 2010-02-05 16:49:52 +01:00
			`<IDPSSODescriptor`
			`WantAuthnRequestsSigned="<TMPL_VAR NAME="samlIDPSSODescriptorWantAuthnRequestsSigned">"`
			`protocolSupportEnumeration="<TMPL_VAR NAME="samlIDPSSODescriptorProtocolSupportEnumeration">">`
			`<KeyDescriptor use="signing">`
			`<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">`
			`<ds:KeyValue>`
			`<TMPL_VAR NAME="samlIDPSSODescriptorKeyDescriptorSigning">`
			`</ds:KeyValue>`
			`</ds:KeyInfo>`
			`</KeyDescriptor>`
			`<KeyDescriptor use="encryption">`
			`<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">`
			`<ds:KeyValue>`
SAML Metadata: * Do not publish private key in metadata! * perltidy * typo on EntityID template param 2010-02-08 16:27:20 +01:00			`<TMPL_VAR NAME="samlIDPSSODescriptorKeyDescriptorSigning">`
add files needed by Metadata.pm to export metadata from conf to XML 2010-02-05 16:49:52 +01:00			`</ds:KeyValue>`
			`</ds:KeyInfo>`
			`</KeyDescriptor>`
			`<ArtifactResolutionService`
			`isDefault="<TMPL_VAR NAME="samlIDPSSODescriptorArtifactResolutionServiceArtifactDefault">"`
			`index="<TMPL_VAR NAME="samlIDPSSODescriptorArtifactResolutionServiceArtifactIndex">"`
			`Binding="<TMPL_VAR NAME="samlIDPSSODescriptorArtifactResolutionServiceArtifactBinding">"`
			`Location="<TMPL_VAR NAME="samlIDPSSODescriptorArtifactResolutionServiceArtifactLocation">" />`
			`<SingleLogoutService`
			`Binding="<TMPL_VAR NAME="samlIDPSSODescriptorSingleLogoutServiceSOAPBinding">"`
			`Location="<TMPL_VAR NAME="samlIDPSSODescriptorSingleLogoutServiceSOAPLocation">" />`
			`<SingleLogoutService`
			`Binding="<TMPL_VAR NAME="samlIDPSSODescriptorSingleLogoutServiceHTTPBinding">"`
			`Location="<TMPL_VAR NAME="samlIDPSSODescriptorSingleLogoutServiceHTTPLocation">"`
			`<TMPL_IF NAME="samlIDPSSODescriptorSingleLogoutServiceHTTPResponseLocation">`
			`ResponseLocation="<TMPL_VAR NAME="samlIDPSSODescriptorSingleLogoutServiceHTTPResponseLocation">" />`
			`</TMPL_IF>`
			`<ManageNameIDService`
			`Binding="<TMPL_VAR NAME="samlIDPSSODescriptorManageNameIDServiceSOAPBinding">"`
			`Location="<TMPL_VAR NAME="samlIDPSSODescriptorManageNameIDServiceSOAPLocation">" />`
			`<ManageNameIDService`
			`Binding="<TMPL_VAR NAME="samlIDPSSODescriptorManageNameIDServiceHTTPBinding">"`
			`Location="<TMPL_VAR NAME="samlIDPSSODescriptorManageNameIDServiceHTTPLocation">"`
			`<TMPL_IF NAME="samlIDPSSODescriptorManageNameIDServiceHTTPResponseLocation">`
SAML: NameID management 2010-02-09 21:49:23 +01:00			`ResponseLocation="<TMPL_VAR NAME="samlIDPSSODescriptorManageNameIDServiceHTTPResponseLocation">"`
			`</TMPL_IF>/>`
add files needed by Metadata.pm to export metadata from conf to XML 2010-02-05 16:49:52 +01:00			`<SingleSignOnService`
			`Binding="<TMPL_VAR NAME="samlIDPSSODescriptorSingleSignOnServiceSOAPBinding">"`
			`Location="<TMPL_VAR NAME="samlIDPSSODescriptorSingleSignOnServiceSOAPLocation">" />`
			`<SingleSignOnService`
			`Binding="<TMPL_VAR NAME="samlIDPSSODescriptorSingleSignOnServiceHTTPBinding">"`
			`Location="<TMPL_VAR NAME="samlIDPSSODescriptorSingleSignOnServiceHTTPLocation">" />`
SAML: NameID management 2010-02-09 21:49:23 +01:00			`<TMPL_IF NAME="samlIDPSSODescriptorNameIDFormatX509SubjectName">`
SAML: no \r \n in metadata text content 2010-03-12 15:31:42 +01:00			`<NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName</NameIDFormat>`
SAML: NameID management 2010-02-09 21:49:23 +01:00			`</TMPL_IF>`
			`<TMPL_IF NAME="samlIDPSSODescriptorNameIDFormatPersistent">`
SAML: no \r \n in metadata text content 2010-03-12 15:31:42 +01:00			`<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</NameIDFormat>`
SAML: NameID management 2010-02-09 21:49:23 +01:00			`</TMPL_IF>`
			`<TMPL_IF NAME="samlIDPSSODescriptorNameIDFormatTransient">`
SAML: no \r \n in metadata text content 2010-03-12 15:31:42 +01:00			`<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>`
SAML: NameID management 2010-02-09 21:49:23 +01:00			`</TMPL_IF>`
add files needed by Metadata.pm to export metadata from conf to XML 2010-02-05 16:49:52 +01:00			`</IDPSSODescriptor>`

			`<SPSSODescriptor`
			`AuthnRequestsSigned="<TMPL_VAR NAME="samlSPSSODescriptorAuthnRequestsSigned">"`
			`protocolSupportEnumeration="<TMPL_VAR NAME="samlSPSSODescriptorProtocolSupportEnumeration">">`
			`<KeyDescriptor use="signing">`
			`<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">`
			`<ds:KeyValue>`
			`<TMPL_VAR NAME="samlSPSSODescriptorKeyDescriptorSigning">`
			`</ds:KeyValue>`
			`</ds:KeyInfo>`
			`</KeyDescriptor>`
			`<KeyDescriptor use="encryption">`
			`<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">`
			`<ds:KeyValue>`
SAML Metadata: * Do not publish private key in metadata! * perltidy * typo on EntityID template param 2010-02-08 16:27:20 +01:00			`<TMPL_VAR NAME="samlSPSSODescriptorKeyDescriptorSigning">`
add files needed by Metadata.pm to export metadata from conf to XML 2010-02-05 16:49:52 +01:00			`</ds:KeyValue>`
			`</ds:KeyInfo>`
			`</KeyDescriptor>`
			`<SingleLogoutService`
			`Binding="<TMPL_VAR NAME="samlSPSSODescriptorSingleLogoutServiceSOAPBinding">"`
			`Location="<TMPL_VAR NAME="samlSPSSODescriptorSingleLogoutServiceSOAPLocation">" />`
			`<SingleLogoutService`
			`Binding="<TMPL_VAR NAME="samlSPSSODescriptorSingleLogoutServiceHTTPBinding">"`
			`Location="<TMPL_VAR NAME="samlSPSSODescriptorSingleLogoutServiceHTTPLocation">"`
			`<TMPL_IF NAME="samlSPSSODescriptorSingleLogoutServiceHTTPResponseLocation">`
SAML: NameID management 2010-02-09 21:49:23 +01:00			`ResponseLocation="<TMPL_VAR NAME="samlSPSSODescriptorSingleLogoutServiceHTTPResponseLocation">"`
			`</TMPL_IF>/>`
add files needed by Metadata.pm to export metadata from conf to XML 2010-02-05 16:49:52 +01:00			`<AssertionConsumerService`
			`isDefault="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPArtifactDefault">"`
			`index="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPArtifactIndex">"`
			`Binding="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPArtifactBinding">"`
			`Location="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPArtifactLocation">" />`
			`<AssertionConsumerService`
			`isDefault="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPPostDefault">"`
			`index="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPPostIndex">"`
			`Binding="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPPostBinding">"`
			`Location="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPPostLocation">" />`
			`<AssertionConsumerService`
			`isDefault="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPRedirectDefault">"`
			`index="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPRedirectIndex">"`
			`Binding="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPRedirectBinding">"`
			`Location="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPRedirectLocation">" />`
SAML: NameID management 2010-02-09 21:49:23 +01:00			`<TMPL_IF NAME="samlSPSSODescriptorNameIDFormatX509SubjectName">`
SAML: no \r \n in metadata text content 2010-03-12 15:31:42 +01:00			`<NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName</NameIDFormat>`
SAML: NameID management 2010-02-09 21:49:23 +01:00			`</TMPL_IF>`
			`<TMPL_IF NAME="samlSPSSODescriptorNameIDFormatPersistent">`
SAML: no \r \n in metadata text content 2010-03-12 15:31:42 +01:00			`<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</NameIDFormat>`
SAML: NameID management 2010-02-09 21:49:23 +01:00			`</TMPL_IF>`
			`<TMPL_IF NAME="samlSPSSODescriptorNameIDFormatTransient">`
SAML: no \r \n in metadata text content 2010-03-12 15:31:42 +01:00			`<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>`
SAML: NameID management 2010-02-09 21:49:23 +01:00			`</TMPL_IF>`
add files needed by Metadata.pm to export metadata from conf to XML 2010-02-05 16:49:52 +01:00			`</SPSSODescriptor>`

			`<Organization>`
SAML: no \r \n in metadata text content 2010-03-12 15:31:42 +01:00			`<OrganizationName xml:lang="en"><TMPL_VAR NAME="samlOrganizationName"></OrganizationName>`
			`<OrganizationDisplayName xml:lang="en"><TMPL_VAR NAME="samlOrganizationDisplayName"></OrganizationDisplayName>`
			`<OrganizationURL xml:lang="en"><TMPL_VAR NAME="samlOrganizationURL"></OrganizationURL>`
add files needed by Metadata.pm to export metadata from conf to XML 2010-02-05 16:49:52 +01:00			`</Organization>`

			`</EntityDescriptor>`