ILIAS  release_5-3 Revision v5.3.23-19-g915713cf615
SAMLBuilder.php
Go to the documentation of this file.
1<?php
2
3
11class SimpleSAML_Metadata_SAMLBuilder
12{
13
14
20 private $entityDescriptor;
21
22
28 private $maxCache = null;
29
30
36 private $maxDuration = null;
37
38
47 public function __construct($entityId, $maxCache = null, $maxDuration = null)
48 {
49 assert('is_string($entityId)');
50
51 $this->maxCache = $maxCache;
52 $this->maxDuration = $maxDuration;
53
54 $this->entityDescriptor = new \SAML2\XML\md\EntityDescriptor();
55 $this->entityDescriptor->entityID = $entityId;
56 }
57
58
59 private function setExpiration($metadata)
60 {
61 if (array_key_exists('expire', $metadata)) {
62 if ($metadata['expire'] - time() < $this->maxDuration) {
63 $this->maxDuration = $metadata['expire'] - time();
64 }
65 }
66
67 if ($this->maxCache !== null) {
68 $this->entityDescriptor->cacheDuration = 'PT'.$this->maxCache.'S';
69 }
70 if ($this->maxDuration !== null) {
71 $this->entityDescriptor->validUntil = time() + $this->maxDuration;
72 }
73 }
74
75
81 public function getEntityDescriptor()
82 {
83 $xml = $this->entityDescriptor->toXML();
84 $xml->ownerDocument->appendChild($xml);
85
86 return $xml;
87 }
88
89
99 public function getEntityDescriptorText($formatted = true)
100 {
101 assert('is_bool($formatted)');
102
103 $xml = $this->getEntityDescriptor();
104 if ($formatted) {
105 SimpleSAML\Utils\XML::formatDOMElement($xml);
106 }
107
108 return $xml->ownerDocument->saveXML();
109 }
110
111
117 public function addSecurityTokenServiceType($metadata)
118 {
119 assert('is_array($metadata)');
120 assert('isset($metadata["entityid"])');
121 assert('isset($metadata["metadata-set"])');
122
123 $metadata = SimpleSAML_Configuration::loadFromArray($metadata, $metadata['entityid']);
124 $defaultEndpoint = $metadata->getDefaultEndpoint('SingleSignOnService');
125 $e = new sspmod_adfs_SAML2_XML_fed_SecurityTokenServiceType();
126 $e->Location = $defaultEndpoint['Location'];
127
128 $this->addCertificate($e, $metadata);
129
130 $this->entityDescriptor->RoleDescriptor[] = $e;
131 }
132
133
140 private function addExtensions(SimpleSAML_Configuration $metadata, \SAML2\XML\md\RoleDescriptor $e)
141 {
142 if ($metadata->hasValue('tags')) {
143 $a = new \SAML2\XML\saml\Attribute();
144 $a->Name = 'tags';
145 foreach ($metadata->getArray('tags') as $tag) {
146 $a->AttributeValue[] = new \SAML2\XML\saml\AttributeValue($tag);
147 }
148 $e->Extensions[] = $a;
149 }
150
151 if ($metadata->hasValue('hint.cidr')) {
152 $a = new \SAML2\XML\saml\Attribute();
153 $a->Name = 'hint.cidr';
154 foreach ($metadata->getArray('hint.cidr') as $hint) {
155 $a->AttributeValue[] = new \SAML2\XML\saml\AttributeValue($hint);
156 }
157 $e->Extensions[] = $a;
158 }
159
160 if ($metadata->hasValue('scope')) {
161 foreach ($metadata->getArray('scope') as $scopetext) {
162 $s = new \SAML2\XML\shibmd\Scope();
163 $s->scope = $scopetext;
164 // Check whether $ ^ ( ) * | \ are in a scope -> assume regex.
165 if (1 === preg_match('/[\$\^\‍)\‍(\*\|\\\\]/', $scopetext)) {
166 $s->regexp = true;
167 } else {
168 $s->regexp = false;
169 }
170 $e->Extensions[] = $s;
171 }
172 }
173
174 if ($metadata->hasValue('EntityAttributes')) {
175 $ea = new \SAML2\XML\mdattr\EntityAttributes();
176 foreach ($metadata->getArray('EntityAttributes') as $attributeName => $attributeValues) {
177 $a = new \SAML2\XML\saml\Attribute();
178 $a->Name = $attributeName;
179 $a->NameFormat = 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri';
180
181 // Attribute names that is not URI is prefixed as this: '{nameformat}name'
182 if (preg_match('/^\{(.*?)\}(.*)$/', $attributeName, $matches)) {
183 $a->Name = $matches[2];
184 $nameFormat = $matches[1];
185 if ($nameFormat !== \SAML2\Constants::NAMEFORMAT_UNSPECIFIED) {
186 $a->NameFormat = $nameFormat;
187 }
188 }
189 foreach ($attributeValues as $attributeValue) {
190 $a->AttributeValue[] = new \SAML2\XML\saml\AttributeValue($attributeValue);
191 }
192 $ea->children[] = $a;
193 }
194 $this->entityDescriptor->Extensions[] = $ea;
195 }
196
197 if ($metadata->hasValue('RegistrationInfo')) {
198 $ri = new \SAML2\XML\mdrpi\RegistrationInfo();
199 foreach ($metadata->getArray('RegistrationInfo') as $riName => $riValues) {
200 switch ($riName) {
201 case 'authority':
202 $ri->registrationAuthority = $riValues;
203 break;
204 case 'instant':
205 $ri->registrationInstant = \SAML2\Utils::xsDateTimeToTimestamp($riValues);
206 break;
207 case 'policies':
208 $ri->RegistrationPolicy = $riValues;
209 break;
210 }
211 }
212 $this->entityDescriptor->Extensions[] = $ri;
213 }
214
215 if ($metadata->hasValue('UIInfo')) {
216 $ui = new \SAML2\XML\mdui\UIInfo();
217 foreach ($metadata->getArray('UIInfo') as $uiName => $uiValues) {
218 switch ($uiName) {
219 case 'DisplayName':
220 $ui->DisplayName = $uiValues;
221 break;
222 case 'Description':
223 $ui->Description = $uiValues;
224 break;
225 case 'InformationURL':
226 $ui->InformationURL = $uiValues;
227 break;
228 case 'PrivacyStatementURL':
229 $ui->PrivacyStatementURL = $uiValues;
230 break;
231 case 'Keywords':
232 foreach ($uiValues as $lang => $keywords) {
233 $uiItem = new \SAML2\XML\mdui\Keywords();
234 $uiItem->lang = $lang;
235 $uiItem->Keywords = $keywords;
236 $ui->Keywords[] = $uiItem;
237 }
238 break;
239 case 'Logo':
240 foreach ($uiValues as $logo) {
241 $uiItem = new \SAML2\XML\mdui\Logo();
242 $uiItem->url = $logo['url'];
243 $uiItem->width = $logo['width'];
244 $uiItem->height = $logo['height'];
245 if (isset($logo['lang'])) {
246 $uiItem->lang = $logo['lang'];
247 }
248 $ui->Logo[] = $uiItem;
249 }
250 break;
251 }
252 }
253 $e->Extensions[] = $ui;
254 }
255
256 if ($metadata->hasValue('DiscoHints')) {
257 $dh = new \SAML2\XML\mdui\DiscoHints();
258 foreach ($metadata->getArray('DiscoHints') as $dhName => $dhValues) {
259 switch ($dhName) {
260 case 'IPHint':
261 $dh->IPHint = $dhValues;
262 break;
263 case 'DomainHint':
264 $dh->DomainHint = $dhValues;
265 break;
266 case 'GeolocationHint':
267 $dh->GeolocationHint = $dhValues;
268 break;
269 }
270 }
271 $e->Extensions[] = $dh;
272 }
273 }
274
275
283 public function addOrganization(array $orgName, array $orgDisplayName, array $orgURL)
284 {
285 $org = new \SAML2\XML\md\Organization();
286
287 $org->OrganizationName = $orgName;
288 $org->OrganizationDisplayName = $orgDisplayName;
289 $org->OrganizationURL = $orgURL;
290
291 $this->entityDescriptor->Organization = $org;
292 }
293
294
300 public function addOrganizationInfo(array $metadata)
301 {
302 if (
303 empty($metadata['OrganizationName']) ||
304 empty($metadata['OrganizationDisplayName']) ||
305 empty($metadata['OrganizationURL'])
306 ) {
307 // empty or incomplete organization information
308 return;
309 }
310
311 $orgName = SimpleSAML\Utils\Arrays::arrayize($metadata['OrganizationName'], 'en');
312 $orgDisplayName = SimpleSAML\Utils\Arrays::arrayize($metadata['OrganizationDisplayName'], 'en');
313 $orgURL = SimpleSAML\Utils\Arrays::arrayize($metadata['OrganizationURL'], 'en');
314
315 $this->addOrganization($orgName, $orgDisplayName, $orgURL);
316 }
317
318
327 private static function createEndpoints(array $endpoints, $indexed)
328 {
329 assert('is_bool($indexed)');
330
331 $ret = array();
332
333 foreach ($endpoints as &$ep) {
334 if ($indexed) {
335 $t = new \SAML2\XML\md\IndexedEndpointType();
336 } else {
337 $t = new \SAML2\XML\md\EndpointType();
338 }
339
340 $t->Binding = $ep['Binding'];
341 $t->Location = $ep['Location'];
342 if (isset($ep['ResponseLocation'])) {
343 $t->ResponseLocation = $ep['ResponseLocation'];
344 }
345 if (isset($ep['hoksso:ProtocolBinding'])) {
346 $t->setAttributeNS(
347 \SAML2\Constants::NS_HOK,
348 'hoksso:ProtocolBinding',
349 \SAML2\Constants::BINDING_HTTP_REDIRECT
350 );
351 }
352
353 if ($indexed) {
354 if (!isset($ep['index'])) {
355 // Find the maximum index
356 $maxIndex = -1;
357 foreach ($endpoints as $ep) {
358 if (!isset($ep['index'])) {
359 continue;
360 }
361
362 if ($ep['index'] > $maxIndex) {
363 $maxIndex = $ep['index'];
364 }
365 }
366
367 $ep['index'] = $maxIndex + 1;
368 }
369
370 $t->index = $ep['index'];
371 }
372
373 $ret[] = $t;
374 }
375
376 return $ret;
377 }
378
379
386 private function addAttributeConsumingService(
387 \SAML2\XML\md\SPSSODescriptor $spDesc,
388 SimpleSAML_Configuration $metadata
389 ) {
390 $attributes = $metadata->getArray('attributes', array());
391 $name = $metadata->getLocalizedString('name', null);
392
393 if ($name === null || count($attributes) == 0) {
394 // we cannot add an AttributeConsumingService without name and attributes
395 return;
396 }
397
398 $attributesrequired = $metadata->getArray('attributes.required', array());
399
400 /*
401 * Add an AttributeConsumingService element with information as name and description and list
402 * of requested attributes
403 */
404 $attributeconsumer = new \SAML2\XML\md\AttributeConsumingService();
405
406 $attributeconsumer->index = 0;
407
408 $attributeconsumer->ServiceName = $name;
409 $attributeconsumer->ServiceDescription = $metadata->getLocalizedString('description', array());
410
411 $nameFormat = $metadata->getString('attributes.NameFormat', \SAML2\Constants::NAMEFORMAT_UNSPECIFIED);
412 foreach ($attributes as $friendlyName => $attribute) {
413 $t = new \SAML2\XML\md\RequestedAttribute();
414 $t->Name = $attribute;
415 if (!is_int($friendlyName)) {
416 $t->FriendlyName = $friendlyName;
417 }
418 if ($nameFormat !== \SAML2\Constants::NAMEFORMAT_UNSPECIFIED) {
419 $t->NameFormat = $nameFormat;
420 }
421 if (in_array($attribute, $attributesrequired, true)) {
422 $t->isRequired = true;
423 }
424 $attributeconsumer->RequestedAttribute[] = $t;
425 }
426
427 $spDesc->AttributeConsumingService[] = $attributeconsumer;
428 }
429
430
437 public function addMetadata($set, $metadata)
438 {
439 assert('is_string($set)');
440 assert('is_array($metadata)');
441
442 $this->setExpiration($metadata);
443
444 switch ($set) {
445 case 'saml20-sp-remote':
446 $this->addMetadataSP20($metadata);
447 break;
448 case 'saml20-idp-remote':
449 $this->addMetadataIdP20($metadata);
450 break;
451 case 'shib13-sp-remote':
452 $this->addMetadataSP11($metadata);
453 break;
454 case 'shib13-idp-remote':
455 $this->addMetadataIdP11($metadata);
456 break;
457 case 'attributeauthority-remote':
458 $this->addAttributeAuthority($metadata);
459 break;
460 default:
461 SimpleSAML\Logger::warning('Unable to generate metadata for unknown type \''.$set.'\'.');
462 }
463 }
464
465
472 public function addMetadataSP20($metadata, $protocols = array(\SAML2\Constants::NS_SAMLP))
473 {
474 assert('is_array($metadata)');
475 assert('is_array($protocols)');
476 assert('isset($metadata["entityid"])');
477 assert('isset($metadata["metadata-set"])');
478
479 $metadata = SimpleSAML_Configuration::loadFromArray($metadata, $metadata['entityid']);
480
481 $e = new \SAML2\XML\md\SPSSODescriptor();
482 $e->protocolSupportEnumeration = $protocols;
483
484 if ($metadata->hasValue('saml20.sign.assertion')) {
485 $e->WantAssertionsSigned = $metadata->getBoolean('saml20.sign.assertion');
486 }
487
488 if ($metadata->hasValue('redirect.validate')) {
489 $e->AuthnRequestsSigned = $metadata->getBoolean('redirect.validate');
490 } elseif ($metadata->hasValue('validate.authnrequest')) {
491 $e->AuthnRequestsSigned = $metadata->getBoolean('validate.authnrequest');
492 }
493
494 $this->addExtensions($metadata, $e);
495
496 $this->addCertificate($e, $metadata);
497
498 $e->SingleLogoutService = self::createEndpoints($metadata->getEndpoints('SingleLogoutService'), false);
499
500 $e->NameIDFormat = $metadata->getArrayizeString('NameIDFormat', array());
501
502 $endpoints = $metadata->getEndpoints('AssertionConsumerService');
503 foreach ($metadata->getArrayizeString('AssertionConsumerService.artifact', array()) as $acs) {
504 $endpoints[] = array(
505 'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact',
506 'Location' => $acs,
507 );
508 }
509 $e->AssertionConsumerService = self::createEndpoints($endpoints, true);
510
511 $this->addAttributeConsumingService($e, $metadata);
512
513 $this->entityDescriptor->RoleDescriptor[] = $e;
514
515 foreach ($metadata->getArray('contacts', array()) as $contact) {
516 if (array_key_exists('contactType', $contact) && array_key_exists('emailAddress', $contact)) {
517 $this->addContact($contact['contactType'], \SimpleSAML\Utils\Config\Metadata::getContact($contact));
518 }
519 }
520 }
521
522
528 public function addMetadataIdP20($metadata)
529 {
530 assert('is_array($metadata)');
531 assert('isset($metadata["entityid"])');
532 assert('isset($metadata["metadata-set"])');
533
534 $metadata = SimpleSAML_Configuration::loadFromArray($metadata, $metadata['entityid']);
535
536 $e = new \SAML2\XML\md\IDPSSODescriptor();
537 $e->protocolSupportEnumeration[] = 'urn:oasis:names:tc:SAML:2.0:protocol';
538
539 if ($metadata->hasValue('sign.authnrequest')) {
540 $e->WantAuthnRequestsSigned = $metadata->getBoolean('sign.authnrequest');
541 } elseif ($metadata->hasValue('redirect.sign')) {
542 $e->WantAuthnRequestsSigned = $metadata->getBoolean('redirect.sign');
543 }
544
545 $this->addExtensions($metadata, $e);
546
547 $this->addCertificate($e, $metadata);
548
549 if ($metadata->hasValue('ArtifactResolutionService')) {
550 $e->ArtifactResolutionService = self::createEndpoints(
551 $metadata->getEndpoints('ArtifactResolutionService'),
552 true
553 );
554 }
555
556 $e->SingleLogoutService = self::createEndpoints($metadata->getEndpoints('SingleLogoutService'), false);
557
558 $e->NameIDFormat = $metadata->getArrayizeString('NameIDFormat', array());
559
560 $e->SingleSignOnService = self::createEndpoints($metadata->getEndpoints('SingleSignOnService'), false);
561
562 $this->entityDescriptor->RoleDescriptor[] = $e;
563
564 foreach ($metadata->getArray('contacts', array()) as $contact) {
565 if (array_key_exists('contactType', $contact) && array_key_exists('emailAddress', $contact)) {
566 $this->addContact($contact['contactType'], \SimpleSAML\Utils\Config\Metadata::getContact($contact));
567 }
568 }
569 }
570
571
577 public function addMetadataSP11($metadata)
578 {
579 assert('is_array($metadata)');
580 assert('isset($metadata["entityid"])');
581 assert('isset($metadata["metadata-set"])');
582
583 $metadata = SimpleSAML_Configuration::loadFromArray($metadata, $metadata['entityid']);
584
585 $e = new \SAML2\XML\md\SPSSODescriptor();
586 $e->protocolSupportEnumeration[] = 'urn:oasis:names:tc:SAML:1.1:protocol';
587
588 $this->addCertificate($e, $metadata);
589
590 $e->NameIDFormat = $metadata->getArrayizeString('NameIDFormat', array());
591
592 $endpoints = $metadata->getEndpoints('AssertionConsumerService');
593 foreach ($metadata->getArrayizeString('AssertionConsumerService.artifact', array()) as $acs) {
594 $endpoints[] = array(
595 'Binding' => 'urn:oasis:names:tc:SAML:1.0:profiles:artifact-01',
596 'Location' => $acs,
597 );
598 }
599 $e->AssertionConsumerService = self::createEndpoints($endpoints, true);
600
601 $this->addAttributeConsumingService($e, $metadata);
602
603 $this->entityDescriptor->RoleDescriptor[] = $e;
604 }
605
606
612 public function addMetadataIdP11($metadata)
613 {
614 assert('is_array($metadata)');
615 assert('isset($metadata["entityid"])');
616 assert('isset($metadata["metadata-set"])');
617
618 $metadata = SimpleSAML_Configuration::loadFromArray($metadata, $metadata['entityid']);
619
620 $e = new \SAML2\XML\md\IDPSSODescriptor();
621 $e->protocolSupportEnumeration[] = 'urn:oasis:names:tc:SAML:1.1:protocol';
622 $e->protocolSupportEnumeration[] = 'urn:mace:shibboleth:1.0';
623
624 $this->addCertificate($e, $metadata);
625
626 $e->NameIDFormat = $metadata->getArrayizeString('NameIDFormat', array());
627
628 $e->SingleSignOnService = self::createEndpoints($metadata->getEndpoints('SingleSignOnService'), false);
629
630 $this->entityDescriptor->RoleDescriptor[] = $e;
631 }
632
633
640 public function addAttributeAuthority(array $metadata)
641 {
642 assert('is_array($metadata)');
643 assert('isset($metadata["entityid"])');
644 assert('isset($metadata["metadata-set"])');
645
646 $metadata = SimpleSAML_Configuration::loadFromArray($metadata, $metadata['entityid']);
647
648 $e = new \SAML2\XML\md\AttributeAuthorityDescriptor();
649 $e->protocolSupportEnumeration = $metadata->getArray('protocols', array(\SAML2\Constants::NS_SAMLP));
650
651 $this->addExtensions($metadata, $e);
652 $this->addCertificate($e, $metadata);
653
654 $e->AttributeService = self::createEndpoints($metadata->getEndpoints('AttributeService'), false);
655 $e->AssertionIDRequestService = self::createEndpoints(
656 $metadata->getEndpoints('AssertionIDRequestService'),
657 false
658 );
659
660 $e->NameIDFormat = $metadata->getArrayizeString('NameIDFormat', array());
661
662 $this->entityDescriptor->RoleDescriptor[] = $e;
663 }
664
665
679 public function addContact($type, $details)
680 {
681 assert('is_string($type)');
682 assert('is_array($details)');
683 assert('in_array($type, array("technical", "support", "administrative", "billing", "other"), TRUE)');
684
685 // TODO: remove this check as soon as getContact() is called always before calling this function
686 $details = \SimpleSAML\Utils\Config\Metadata::getContact($details);
687
688 $e = new \SAML2\XML\md\ContactPerson();
689 $e->contactType = $type;
690
691 if (!empty($details['attributes'])) {
692 $e->ContactPersonAttributes = $details['attributes'];
693 }
694
695 if (isset($details['company'])) {
696 $e->Company = $details['company'];
697 }
698 if (isset($details['givenName'])) {
699 $e->GivenName = $details['givenName'];
700 }
701 if (isset($details['surName'])) {
702 $e->SurName = $details['surName'];
703 }
704
705 if (isset($details['emailAddress'])) {
706 $eas = $details['emailAddress'];
707 if (!is_array($eas)) {
708 $eas = array($eas);
709 }
710 foreach ($eas as $ea) {
711 $e->EmailAddress[] = $ea;
712 }
713 }
714
715 if (isset($details['telephoneNumber'])) {
716 $tlfNrs = $details['telephoneNumber'];
717 if (!is_array($tlfNrs)) {
718 $tlfNrs = array($tlfNrs);
719 }
720 foreach ($tlfNrs as $tlfNr) {
721 $e->TelephoneNumber[] = $tlfNr;
722 }
723 }
724
725 $this->entityDescriptor->ContactPerson[] = $e;
726 }
727
728
736 private function addX509KeyDescriptor(\SAML2\XML\md\RoleDescriptor $rd, $use, $x509data)
737 {
738 assert('in_array($use, array("encryption", "signing"), TRUE)');
739 assert('is_string($x509data)');
740
741 $keyDescriptor = \SAML2\Utils::createKeyDescriptor($x509data);
742 $keyDescriptor->use = $use;
743 $rd->KeyDescriptor[] = $keyDescriptor;
744 }
745
746
755 private function addCertificate(\SAML2\XML\md\RoleDescriptor $rd, SimpleSAML_Configuration $metadata)
756 {
757 $keys = $metadata->getPublicKeys();
758 if ($keys !== null) {
759 foreach ($keys as $key) {
760 if ($key['type'] !== 'X509Certificate') {
761 continue;
762 }
763 if (!isset($key['signing']) || $key['signing'] === true) {
764 $this->addX509KeyDescriptor($rd, 'signing', $key['X509Certificate']);
765 }
766 if (!isset($key['encryption']) || $key['encryption'] === true) {
767 $this->addX509KeyDescriptor($rd, 'encryption', $key['X509Certificate']);
768 }
769 }
770 }
771
772 if ($metadata->hasValue('https.certData')) {
773 $this->addX509KeyDescriptor($rd, 'signing', $metadata->getString('https.certData'));
774 }
775 }
776}
$metadata
$metadata['__DYNAMIC:1__']
Definition: adfs-idp-hosted.php:3
php
An exception for terminatinating execution or to throw for unit testing.
SAML2\Utils\xsDateTimeToTimestamp
static xsDateTimeToTimestamp($time)
This function converts a SAML2 timestamp on the form yyyy-mm-ddThh:mm:ss(.s+)?Z to a UNIX timestamp.
Definition: Utils.php:721
SimpleSAML\Logger\warning
static warning($string)
Definition: Logger.php:179
SimpleSAML\Utils\Arrays\arrayize
static arrayize($data, $index=0)
Put a non-array variable into an array.
Definition: Arrays.php:24
SimpleSAML_Configuration
Definition: Configuration.php:11
SimpleSAML_Configuration\loadFromArray
static loadFromArray($config, $location='[ARRAY]', $instance=null)
Loads a configuration from the given array.
Definition: Configuration.php:269
SimpleSAML_Metadata_SAMLBuilder
Definition: SAMLBuilder.php:12
SimpleSAML_Metadata_SAMLBuilder\$maxCache
$maxCache
Definition: SAMLBuilder.php:28
SimpleSAML_Metadata_SAMLBuilder\getEntityDescriptorText
getEntityDescriptorText($formatted=true)
Retrieve the EntityDescriptor as text.
Definition: SAMLBuilder.php:99
SimpleSAML_Metadata_SAMLBuilder\addExtensions
addExtensions(SimpleSAML_Configuration $metadata, \SAML2\XML\md\RoleDescriptor $e)
Add extensions to the metadata.
Definition: SAMLBuilder.php:140
SimpleSAML_Metadata_SAMLBuilder\__construct
__construct($entityId, $maxCache=null, $maxDuration=null)
Initialize the SAML builder.
Definition: SAMLBuilder.php:47
SimpleSAML_Metadata_SAMLBuilder\addCertificate
addCertificate(\SAML2\XML\md\RoleDescriptor $rd, SimpleSAML_Configuration $metadata)
Add a certificate.
Definition: SAMLBuilder.php:755
SimpleSAML_Metadata_SAMLBuilder\$entityDescriptor
$entityDescriptor
Definition: SAMLBuilder.php:20
SimpleSAML_Metadata_SAMLBuilder\addOrganizationInfo
addOrganizationInfo(array $metadata)
Add an Organization element based on metadata array.
Definition: SAMLBuilder.php:300
SimpleSAML_Metadata_SAMLBuilder\addMetadataSP11
addMetadataSP11($metadata)
Add metadata of a SAML 1.1 service provider.
Definition: SAMLBuilder.php:577
SimpleSAML_Metadata_SAMLBuilder\setExpiration
setExpiration($metadata)
Definition: SAMLBuilder.php:59
SimpleSAML_Metadata_SAMLBuilder\getEntityDescriptor
getEntityDescriptor()
Retrieve the EntityDescriptor element which is generated for this entity.
Definition: SAMLBuilder.php:81
SimpleSAML_Metadata_SAMLBuilder\addAttributeAuthority
addAttributeAuthority(array $metadata)
Add metadata of a SAML attribute authority.
Definition: SAMLBuilder.php:640
SimpleSAML_Metadata_SAMLBuilder\addMetadataIdP11
addMetadataIdP11($metadata)
Add metadata of a SAML 1.1 identity provider.
Definition: SAMLBuilder.php:612
SimpleSAML_Metadata_SAMLBuilder\addSecurityTokenServiceType
addSecurityTokenServiceType($metadata)
Add a SecurityTokenServiceType for ADFS metadata.
Definition: SAMLBuilder.php:117
SimpleSAML_Metadata_SAMLBuilder\addAttributeConsumingService
addAttributeConsumingService(\SAML2\XML\md\SPSSODescriptor $spDesc, SimpleSAML_Configuration $metadata)
Add an AttributeConsumingService element to the metadata.
Definition: SAMLBuilder.php:386
SimpleSAML_Metadata_SAMLBuilder\addMetadata
addMetadata($set, $metadata)
Add a specific type of metadata to an entity.
Definition: SAMLBuilder.php:437
SimpleSAML_Metadata_SAMLBuilder\addOrganization
addOrganization(array $orgName, array $orgDisplayName, array $orgURL)
Add an Organization element based on data passed as parameters.
Definition: SAMLBuilder.php:283
SimpleSAML_Metadata_SAMLBuilder\createEndpoints
static createEndpoints(array $endpoints, $indexed)
Add a list of endpoints to metadata.
Definition: SAMLBuilder.php:327
SimpleSAML_Metadata_SAMLBuilder\addMetadataSP20
addMetadataSP20($metadata, $protocols=array(\SAML2\Constants::NS_SAMLP))
Add SAML 2.0 SP metadata.
Definition: SAMLBuilder.php:472
SimpleSAML_Metadata_SAMLBuilder\addMetadataIdP20
addMetadataIdP20($metadata)
Add metadata of a SAML 2.0 identity provider.
Definition: SAMLBuilder.php:528
SimpleSAML_Metadata_SAMLBuilder\$maxDuration
$maxDuration
Definition: SAMLBuilder.php:36
sspmod_adfs_SAML2_XML_fed_SecurityTokenServiceType
Definition: SecurityTokenServiceType.php:8
$lang
$lang
Definition: consent.php:3
https
foreach( $name as $i=> $nameSection)( $i==count( $name) - 1)( $nameSection) ?></span ><?php else from https
Definition: header.html.php:45
$tag
if(function_exists( 'posix_getuid') &&posix_getuid()===0) if(!array_key_exists('t', $options)) $tag
Definition: cron.php:35
$orgName
if($name !==null &&!empty($attributes)) $orgName
Definition: metadata.php:170
$name
if($format !==null) $name
Definition: metadata.php:146
$entityId
if( $source===null) if(!($source instanceof sspmod_saml_Auth_Source_SP)) $entityId
Definition: metadata.php:22
$xml
$xml
Definition: metadata.php:240
$ret
$ret
Definition: parser.php:6
$type
$type
Definition: proxy_ylocal.php:10
$s
$s
Definition: pwgen.php:45
$attributes
$attributes
Definition: serviceValidate.php:33