nameid-format:unspecified for relying party
Tom Scavo
trscavo at gmail.com
Thu Jul 12 08:41:47 EDT 2018
On Wed, Jul 11, 2018 at 11:01 PM, Baron Fujimoto <baron at hawaii.edu> wrote:
>
> NameIDFormat specified in the ArcGIS metadata:
>
> <?xml version="1.0" encoding="UTF-8" standalone="no"?>
> <md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" entityID="arcgis.example.edu">
> <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol">
> <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://arcgis.example.edu/portal/sharing/rest/oauth2/saml/signout"/>
> <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://arcgis.example.edu/portal/sharing/rest/oauth2/saml/signin" index="1"/>
> <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://arcgis.example.edu/portal/sharing/rest/oauth2/saml/signin" index="2"/>
> <md:NameIDFormat>"urn:oid:0.9.2342.19200300.100.1.1"</md:NameIDFormat>
> </md:SPSSODescriptor>
> <md:Organization xml:lang="en">
> <md:OrganizationName xml:lang="en">ArcGIS Enterprise</md:OrganizationName>
> <md:OrganizationDisplayName xml:lang="en">ArcGIS Enterprise</md:OrganizationDisplayName>
> <md:OrganizationURL xml:lang="en">https://arcgis.example.edu/portal</md:OrganizationURL>
> </md:Organization>
> </md:EntityDescriptor>
I don't know if it matters but that metadata is not schema-valid. The
<md:NameIDFormat> element is out of place. Also, its contents should
not be quoted.
Tom
More information about the users
mailing list