KNF:SimpleSAMLphp-sp/en: verschil tussen versies
Naar navigatie springen
Naar zoeken springen
(Nieuwe pagina aangemaakt met '===Installation=== *[http://simplesamlphp.org/docs/stable/simplesamlphp-install Installation documentation SimpleSAMLphp] *[http://simplesamlphp.org/docs/stable/si...') |
|||
| Regel 13: | Regel 13: | ||
'saml:SP', |
'saml:SP', |
||
| − | // Insert your |
+ | // Insert your application entityID (usually the unique url of your service) |
'entityID' => 'http://domainname.com', |
'entityID' => 'http://domainname.com', |
||
Versie van 23 jan 2014 15:57
Installation
Configuration
The Kennisnet Federation requires a couple of specific configurations within SimpleSAMLphp.
NOTE The following examples are additions or changes to the original. The php tags are not included.
authsources.php
'default-sp' => array(
'saml:SP',
// Insert your application entityID (usually the unique url of your service)
'entityID' => 'http://domainname.com',
// Certificate generated in step 1.1 in the Quickstart
'privatekey' => 'saml.pem',
'certificate' => 'saml.crt',
// Rule out the standard menu for Identity Providers and redirect them to the Kennisnet Federation
// NOTE: The configuration below is set for the Entree staging environment. When going live the value should be changed to aselect.entree.kennisnet.nl
'idp' => 'aselect-s.entree.kennisnet.nl',
// Changing the Kennisnet Federation attribute formats
'NameIDFormat' => 'urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified',
'AttributeNameFormat' => 'urn:oasis:names:tc:SAML:2.0:nameid-format:unspecified',
// Optional configuration pre-login which can be called by the Identity provider
// 'IDPList' => array( 'entityidofidp', ),
// 'ProxyCount' => 1,
),