Encryption works against samltest.id but not local Shibboleth IdP
Raymond DeCampo
ray at decampo.org
Thu Jul 30 16:15:46 UTC 2020
On Thu, Jul 30, 2020 at 11:44 AM Cantor, Scott <cantor.2 at osu.edu> wrote:
> On 7/30/20, 11:33 AM, "users on behalf of Raymond DeCampo" <
> users-bounces at shibboleth.net on behalf of ray at decampo.org> wrote:
>
> > So when you said no-one should use it, I thought you meant there was
> something about the contents or configuration
> > choices of the metadata within the file itself whereas if I understand
> you correctly, you were objecting to the means of
> > obtaining the metadata.
>
> It's not really in any sense right, or inherently correct, so other than
> as a formatting example to help out, it's not worth much otherwise. People
> also get confused when they make changes and it doesn't reflect them (or
> more to the point they think it will, and it doesn't).
>
> It's historical and if we were starting now it wouldn't exist. There are
> better ways to get an example metadata file produced if that were the goal
> (like a trivial CGI script sitting on a web server that takes a few
> parameters).
>
I feel like I am missing something, is there a tool that will generate IdP
metadata from a Shibboleth IdP instance?
I found the sample metadata very helpful in terms of starting from scratch
with an installation and no prior experience with SAML. All the keys are
put in the right places and all the URLs defined. And it was clear from
the warning at the top that it wasn't a configuration file. So I hope you
keep it in some form.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20200730/04677e4e/attachment.htm>
More information about the users
mailing list